Tuesday, May 24, 2016

Complete DHS Report for May 24, 2016

Daily Report                                            

Top Stories

•Fiat Chrysler Automobiles issued a recall May 20 for 80,000 of its model years 2012 –2016 Fiat 500 manual transmissions vehicles after discovering that excessive clutch travel can damage the vehicle’s transmission. – TheCarConnection.com

2. May 20, TheCarConnection.com – (International) 2012-2016 Fiat 500 recalled for transmission problems: 80,000 cars affected. Fiat Chrysler Automobiles issued a recall May 20 for 39,217 of its model years 2012 – 2016 Fiat 500 vehicles equipped with manual transmissions sold in the U.S. after it was discovered that excessive clutch travel can damage the vehicle’s transmission, thereby limiting a driver’s ability to change gears. The recall affects 7,834 vehicles in Canada, 7,155 in Mexico, and 26,268 elsewhere. Source: http://www.thecarconnection.com/news/1104078_2012-2016-fiat-500-recalled-for-transmission-problems-80000-cars-affected

•A former Scott Credit Union employee in Illinois plead guilty May 19 after defrauding the bank out of $12 million by embezzling funds, creating fraudulent loans, and increasing credit limits on unapproved loans, among other fraudulent actions from November 2005 –December 2014. – Monroe County Republic-Times See item 3 below in the Financial Service Sector

•State Route 330 in Highland, California, was shut down for several hours May 22 after ashuttle bus overturned on the highway, leaving 14 people with minor injuries and 6 otherswith serious injuries. – Associated Press

4. May 23, Associated Press – (California) California bus crash leaves 20 injured, 6 seriously. A 16-mile stretch of State Route 330 in Highland, California, was shut down for several hours May 22 after a shuttle bus overturned on the highway when it made contact with another vehicle, leaving 14 people with minor injuries and 6 others with serious injuries. Source: http://www.foxnews.com/us/2016/05/23/california-bus-crash-leaves-20-injured-6-seriously.html

•Federal regulators approved a new “Nutrition-Facts” label May 20, which lists the numberof grams of sugar manufactures add to packaged food and drink products to pressurecompanies into making healthier products. – Wall Street Journal

9. May 20, Wall Street Journal – (National) FDA approves new nutrition panel that highlights sugar levels. The U.S. Food and Drug Administration approved a new “Nutrition-Facts” label May 20 that will list the number of grams of sugar that were added to packaged food and beverage products by manufacturers, and what percentage of the recommended daily maximum the numbers represent as part of an effort to pressure companies to make less-fattening products and to help consumers avoid health problems. The new labels must also declare the amounts of potassium and vitamin D, and include larger and easier to read serving size and caloric intake data. Source: http://www.wsj.com/articles/fda-approves-controversial-changes-to-nutrition-facts-panel-1463750195

  

Financial Services Sector

3. May 19, Monroe County Republic-Times – (Illinois) Columbia man guilty of federal bank, loan fraud. A former employee at Scott Credit Union in Illinois pleaded guilty May 19 to Federal charges after he defrauded the bank out of $12 million by embezzling credit union funds, creating fraudulent loans, paying loans through the misapplications of funds from other loans, and increasing credit limits on loans that did not have board approval, among other fraudulent actions from November 2005 – December 2014. Officials stated the man also knowingly submitted a fraudulent report to the bank for the third quarter of 2014 that misstated loan balances, omitted loan amounts, and severely underreported loans. Source: http://www.republictimes.net/columbia-man-guilty-of-federal-bank-loan-fraud/

Information Technology Sector

17. May 23, SecurityWeek – (International) Exploit for recently patched flash flaw added to Magnitude EK. A French security researcher discovered that attackers were integrating the Magnitude exploit flaw against previously patched Flash Player 21.0.0.213 installations to potentially deliver various pieces of malware, including Locky and Cerber ransomware. The exploit was not fully implemented in Magnitude and researchers advised users to be cautious of the exploit.

Source: http://www.securityweek.com/exploit-recently-patched-flash-flaw-added-magnitude-ek

18. May 21, Softpedia – (International) Ransomware adds DDoS capabilities to annoy other people, not just you. Security researchers from Invincea reported that the Cerber ransomware was discovered to have a new payload capability to launch network packets to a network subnet, which is a specific capability to distributed denial-of-service (DDoS) botnets. The ransomware was detected by 37 out of the 57 antivirus engines and spreads via weaponized rich text format (RTF) files.

Source: http://news.softpedia.com/news/ransomware-adds-ddos-capabilities-for-annoying-other-people-not-just-you-504323.shtml

19. May 21, Softpedia – (International) Crooks used SQL injections to hack Drupal sites and install fake ransomware. Chief executive officer (CEO) and co-founder of Forkbombus Labs reported that attackers were leveraging a structured query language (SQL) injection vulnerability in Drupal 7.x installations prior to version 7.32 content management system (CMS) platform to compromise Web sites and install Web-based ransomware by scanning the Drupal site version and leveraging the flaw to break into the affected Web sites and change the admin user’s password.

Source: http://news.softpedia.com/news/crooks-used-sql-injections-to-hack-drupal-sites-and-install-web-ransomware-504300.shtml

Communications Sector

Nothing to report