Thursday, July 14, 2016
Complete DHS Report for July 14, 2016
• The Hanford Atomic Metal Trades Council issued a “stop work” order for employees at the Hanford Nuclear Reservation site in Washington July 11 until air respirators are made mandatory for all work in the Hanford tank farms. – Associated Press
2. July 12, Associated Press – (Washington) Work stoppage continues at Hanford Nuclear Reservation over vapors. The president of the Hanford Atomic Metal Trades Council issued a “stop work” order for employees at the Hanford Nuclear Reservation site in Washington July 11 when workers were not provided with air respirators after reporting that chemical vapors escaping from tanks storing radioactive waste were making them sick. The council president stated that the order would be lifted when air respirators supplied by the nuclear site were made mandatory for all work in the Hanford tank farms. Source: http://katu.com/news/local/work-stoppage-continues-at-hanford-nuclear-reservation-over-vapors
• New York City officials reported July 13 that it recorded a spike in emergency room visits related to synthetic marijuana, K2, connected to an incident where 33 people were transported to area hospitals in an apparent mass drug overdose. – Associated Press
12. July 13, Associated Press – (New York) 33 sickened in apparent mass drug overdose in New York City. The New York City Department of Health and Mental Hygiene reported July 13 that it recorded a spike in emergency room visits related to synthetic marijuana, K2, connected to an incident in Brooklyn where 33 people were transported to area hospitals with injuries in an apparent mass drug overdose in the Bedford-Stuyvesant neighborhood. Authorities are investigating the incident. Source: http://www.foxnews.com/health/2016/07/13/33-sickened-in-apparent-mass-drug-overdose-in-new-york-city.html
• The Baton Rouge Police chief announced July 12 that three suspects were arrested for stealing several handguns as part of an alleged plot to harm police officers in the Baton Rouge, Louisiana area. – Associated Press
15. July 13, Associated Press – (Louisiana) 3 arrests made in alleged plot to harm officers, police say. The Baton Rouge Police chief announced July 12 that three suspects were arrested for stealing several handguns as part of an alleged plot to harm police officers in the Baton Rouge area. Officers discovered the alleged plot while responding to a burglary at a pawn shop July 9 after surveillance video showed the suspects attempting to break into the building. Source: http://www.msn.com/en-us/news/us/3-arrests-made-in-alleged-plot-to-harm-officers-police-say/ar-BBuhABw
• Comcast Corporation reported July 12 that it is working to ensure that services are fully restored following an issue in the network that knocked out inbound and outbound phone service for Comcast Business customers nationwide. – Across America Patch See item 21 below in the Communications Sector
Financial Services Sector
Nothing to report
Information Technology Sector
17. July 13, SecurityWeek – (International) SAP patches critical Clickjacking vulnerabilities. SAP released 10 Security Patch Day Notes and 26 Support Package Notes addressing several vulnerabilities, including a critical Clickjacking flaw in multiple SAP frameworks and technologies, denial of service flaws, missing authorization checks, code injection, and a cross-site scripting (XSS) issue, among other vulnerabilities.
18. July 13, Softpedia – (International) New Stampado ransomware advertised on the Dark Web for only $39. Heimdal Security researchers spotted a new version of ransomware on the Dark Web dubbed, Stampado, which is offered via Ransomware-as-a-Service (RaaS) model and locks files with a “.locked” file extension, similar to other ransomware families. Stampado is being offered for $39 for a lifetime license and mimics the Jigsaw ransomware, in that it deletes a random file from the infected computer every 6 hours in order to scare the victim into paying the ransom.
19. July 12, SecurityWeek – (International) Microsoft patches critical flaws in Internet Explorer, Edge. Microsoft released 11 bulletins addressing 15 bugs in Internet Explorer, 13 bugs in Edge, and several other flaws in Office, Jscript, VBScript, and .NET Framework including a remote code execution (RCE) bug, an elevation of privilege issue in Windows Print Spooler, and a scripting engine memory corruption vulnerability in Jscript and VBScript, among others.
20. July 12, SecurityWeek – (International) Adobe patches critical vulnerabilities in Flash, Acrobat, Reader. Adobe released security updates for Flash Player, Acrobat, Reader, and XMP Toolkit for Java patching more than 82 bugs affecting Microsoft Windows, Mac OS X, ChromeOS, and Linux users, including an integer overflow issue, a user-after-free vulnerability, a heap buffer overflow bug, and multiple memory corruption vulnerabilities, among others. Source: http://www.securityweek.com/adobe-patches-critical-vulnerabilities-flash-acrobat-reader
21. July 12, Across America Patch – (National) Comcast business outages reported nationwide. Comcast Corporation reported July 12 that it is working to ensure that services are fully restored after crews fixed an issue in the network that knocked out inbound and outbound phone service for Comcast Business customers nationwide for several hours.