Wednesday, September 23, 2015



Complete DHS Report for September 23, 2015

Daily Report                                            

Top Stories

 • Multiple highways and the Ben Franklin Bridge will close and traffic will be restricted in Philadelphia September 25 before, during, and after Pope Francis’ visit to the city. – WPVI 6 Philadelphia

4. September 21, WPVI 6 Philadelphia – (Pennsylvania) Major highway closures in Philadelphia for papal visit. Multiple highways and the Ben Franklin Bridge will close and traffic will be restricted in Philadelphia September 25 before, during, and after Pope Francis’ visit to the city. The highways being closed include the Ben Franklin Parkway, Interstate 76 eastbound from I-476 to I-95, US Route 1, and several others. Source: http://6abc.com/religion/major-highways-to-close-later-this-week-for-papal-visit/904413/

 • Federal and Florida State officials reported September 22 that 85 square miles of farmland were quarantined and a state of emergency was declared after 160 Oriental fruit flies threatening over 400 crops were found on farms. – National Public Radio

8. September 22, National Public Radio – (Florida) This pest has shut down south Florida’s $700 million fruit industry. Federal and Florida State officials reported September 22 that 85 square miles of farmland in Redland were quarantined and a state of emergency was declared after 160 Oriental fruit flies, which have the potential to harm over 400 crops, were found on farms. Officials are working to eradicate the flies by stripping the fruit and destroying the areas where the flies were found. Source: http://www.npr.org/sections/thesalt/2015/09/22/442329655/this-pest-has-shut-down-south-floridas-700-million-fruit-industry

 • Check Point researchers discovered a new type of malware packaged with the BrainTest Android Application that employs persistence and advanced detection evasion techniques, and has infected up to 1 million users’ devices. – Help Net Security See item 18 below in the Information Technology Sector

 • Tenants from 151 units at a residential downtown Los Angeles high-rise building were evacuated after a water main broke and 6-inch pipe ruptured, flooding 16 floors. – KABC 7 Los Angeles

24. September 21, KABC 7 Los Angeles – (California) Flooding from broken water main prompts high-rise evacuation in downtown LA. Authorities reported September 21 that tenants from 151 units at a residential high-rise building in downtown Los Angeles were evacuated after a water main broke and a 6-inch pipe ruptured, flooding 16 floors. The building was yellow tagged and residents were not allowed back into the building while officials investigated the cause of the leak and the extent of the damage. Source: http://abc7.com/news/flooding-from-broken-water-main-prompts-high-rise-evacuation-in-dtla/995201/

Financial Services Sector

2. September 21, Reuters – (National) Ex-Morgan Stanley adviser pleads guilty in connection with data breach. A former Morgan Stanley financial adviser pleaded guilty September 21 to taking confidential data including names, addresses, account numbers, and investment information from 730,000 accounts from a bank computer without permission between 2011 and 2014. No clients lost money as a result of the breach. Source: http://www.reuters.com/article/2015/09/21/us-morgan-stanley-breach-plea-idUSKCN0RL22920150921

Information Technology Sector

17. September 22, Securityweek – (International) Adobe patches 23 vulnerabilities in Flash Player. Adobe released updates for Flash Player addressing 23 information disclosure, security bypass, memory leak, type confusion, use-after-free, buffer overflow, stack corruption, and memory corruption vulnerabilities, and includes additional validation checks to ensure rejection of malicious content from vulnerable JSONP callback Application Program Interfaces (APIs), among other improvements. Source: http://www.securityweek.com/adobe-patches-23-vulnerabilities-flash-player

18. September 22, Help Net Security – (International) Malware-infected game discovered on Google Play, up to 1 million users at risk. Security researchers from Check Point discovered a new type of malware employing persistence and advanced detection evasion techniques, found packaged within the BrainTest Android game application. The malware can download and execute any code remotely and has infected about 200,000 – 1 million users. Source: http://www.net-security.org/malware_news.php?id=3108

19. September 21, Threatpost – (International) Apple watchOS2 includes host of code-execution patches. Apple released updates addressing over 12 code execution
vulnerabilities in watchOS2 and other Apple Watch components, as well as certificate validation issues and vulnerabilities in CFNetwork, and a bug in the system’s dynamic linker, among others. Source: https://threatpost.com/apple-watchos2-includes-host-of-code-execution-patches/114754/

20. September 20, PCWorld – (International) Nasty URL bug brings Google Chrome to a screeching halt. Security researchers discovered a Uniform Resource Locator (URL) denial-of-service (DoS) vulnerability in the Google Chrome Web browser in which mousing over “%%30%30” appended to the end of a URL causes the browser to hang and crash. The issue affects both Windows and OS X current versions of Chrome. Source: http://www.pcworld.com/article/2984907/security/nasty-url-bug-brings-google-chrome-to-a-screeching-halt.html

For another story, see item 21 below in the Communications Sector

Communications Sector
 
21. September 22, The Register – (International) Shattered Skype slowly staggers to its feet after 15-hour outage outrage. Microsoft’s Skype experienced a worldwide outage for approximately 15 hours September 21 that prevented users from logging in and using the video-voice call service due to a network issue. The Skype Twitter feed reported that crews were working to reconnect users and restore service. Source: http://www.theregister.co.uk/2015/09/22/skype_working/

22. September 21, Raleigh News & Observer – (North Carolina) Construction accident disrupts Verizon, Time Warner service. Thousands of Verizon and Time Warner cable customers in Wake, Durham, and Orange counties in North Carolina lost cell and Internet Service for more than 6 hours September 21 due to a construction accident that damaged telecommunications fiber cable in Raleigh. Source: http://www.newsobserver.com/news/local/counties/wake-county/article36022797.html

For another story, see item 18 above in the Information Technology Sector