Wednesday, February 10, 2016



Complete DHS Report for February 10, 2016

Daily Report                                            

Top Stories

• Continental Automotive Systems issued a recall February 4 for 1.5 – 2 million vehicles sold in the U.S. that are supplied with potentially defective air bag control units. – Reuters

4. February 5, Reuters – (International) Continental says 5 mln vehicles worldwide may have faulty air bags. Continental Automotive Systems issued a recall February 4 for 1.5 – 2 million vehicles sold in the U.S. after it supplied potentially defective air bag control units built between 2006 and 2010 to Honda, Fiat Chrysler, Mercedes-Benz, and three other manufacturers, which can cause air bags to inadvertently deploy without warning or fail to deploy in a crash. Honda Motor Co has reported two injuries related to the defect involving 5 million vehicles worldwide. Source: http://in.reuters.com/article/autos-continental-idINL2N15J11L

• Federal and State officials are investigating a February 7 explosion at the JCG Farms feed plant in Rockmart, Georgia, which caused $3 million in damages. – Rome News-Tribune

9. February 9, Rome News-Tribune – (Georgia) $3 million in damage reported at JCG Farms after explosion that killed 1, injured 5. Officials from the Federal Bureau of Alcohol, Tobacco, Firearms and Explosives, the Georgia State fire marshal, and the Rockmart Fire Department are investigating a February 7 explosion at the JCG Farms feed plant in Rockmart, Georgia, which left one worker dead, injured five others, and caused $3 million in heavy structural damages to the warehouse, plant, and offices. Source: http://www.northwestgeorgianews.com/rome/news/local/million-in-damage-reported-at-jcg-farms-after-explosion-that/article_5a9d8486-ceec-11e5-a93d-3fa6513877f0.html

• The U.S. Centers for Disease Control and Prevention announced February 8 that its emergency operations center in Atlanta was on its highest level of alert in response to the Zika virus, which is being monitored and investigated. – Washington Post

17. February 8, Washington Post – (National) $1.8 billion to fight Zika: CDC moves to highest alert level. The U.S. Centers for Disease Control and Prevention announced February 8 that its emergency operations center in Atlanta was on its highest level of alert in response to the Zika virus, which is being monitored and investigated. The U.S. President’s administration will ask Federal legislatures to approve $1.8 billion to respond to the virus abroad and within the U.S. Source: https://www.washingtonpost.com/news/post-politics/wp/2016/02/08/obama-to-ask-congress-for-1-8-billion-to-combat-zika-virus/

• Kaspersky Lab security researchers reported that a remote access trojan (RAT) dubbed Adwind RAT had infected approximately 443,000 victims by 2015 and targets Windows, Linux, Mac OS X, and other platforms that run Java. – SecurityWeek See item 22 below in the Information Technology Sector

Financial Services Sector

5. February 6, Associated Press – (Illinois) Chicago FBI: ‘Pinball Bandit’ suspected in 5 bank robberies. The FBI is searching for a man dubbed the “Pinball Bandit” suspected of carrying out 5 robberies at 4 Chicago banks from January 13 – January 25. The suspect is considered armed and dangerous. Source: http://www.nwherald.com/2016/02/07/chicago-fbi-pinball-bandit-suspected-in-5-bank-robberies/agmvuds/

Information Technology Sector

22. February 9, SecurityWeek – (International) Cross-platform backdoor adwind hits 443,000 users: Kaspersky. Security researchers from Kaspersky Lab reported that a remote access trojan (RAT) dubbed Adwind RAT had infected approximately 443,000 victims by 2015 and targets Windows, Linux, Mac OS X, and other platforms that run Java, to log keystrokes and steal virtual private network (VPN) certificates, cryptocurrency wallet keys, passwords and other data from web forms, among other malicious actions via spear-phishing campaigns. The trojan also uses command and control (C&C) servers to execute commands and relies on free Dynamic Domain Name System (DNS) providers. Source: http://www.securityweek.com/cross-platform-backdoor-adwind-hit-443000-users-kaspersky

23. February 9, Softpedia – (International) Download firmware 1.1.00.20 for NETGEAR’s D6200 modem router. NETGEAR released new firmware version 1.100.20 for its D6200 modem router that removes a flaw that disabled wireless connections when the region was assigned as WW in flash, fixes the unit’s currentsetting.htm page to show the correct information in the region field, and removes a debug file (/tmp/yuziven1) and fixes unterminated tries when checkfw fails. Source: http://drivers.softpedia.com/blog/download-firmware-1-1-00-20-for-netgear-s-d6200-modem-router-500135.shtml

24. February 8, SecurityWeek – (International) Advantech failed to patch serious flaws in SCADA. The Zero Day Initiative (ZDI) published advisories that stated several unpatched vulnerabilities were affecting Advantech’s WebAccess 8.0 industrial automation SCADA/HMI products after researchers found unrestricted file upload, path traversal, improper access control, cross-site scripting (XSS), and SQL injections, among other vulnerabilities, that were reported to be patched, but were improperly patched. The unpatched flaws can be exploited by a remote, authenticated attacker to execute arbitrary code on a victim’s system. Source: http://www.securityweek.com/advantech-failed-patch-serious-flaws-scada-product

Communications Sector

Nothing to report