Complete DHS Report for April 25, 2016
Daily Report
Top Stories
• Volkswagen officials agreed April 21 to fix or buy back nearly
480,000 of its Volkswagen, Audi A3, and Porsche model years 2008 – 2015 with
2-liter or 3-liter diesel engines that were equipped with illegal emissions
software. – New York Times
4. April 22,
New York Times – (National) Volkswagen reached deal in U.S. over emissions
scandal. Volkswagen officials agreed April 21 to fix or buy back nearly
480, 000 of its Volkswagen, Audi A3, and Porsche model years 2008 – 2015 with
2-liter or 3-liter diesel engines sold in the U.S. that were equipped with
illegal emissions software. Federal officials were negotiating the total amount
of fines and compensation Volkswagen will have to pay. Source: http://www.nytimes.com/2016/04/22/business/international/volkswagen-emissions-settlement.html
• Nissan Motor Company Ltd., issued a recall April 21 for 12,616
of its Nissan Murano crossovers and Maxima sedan vehicles due to faulty
Anti-Lock Brake System (ABS) actuators that may have been assembled with a
damaged O-ring. – TheCarConnection.com
6. April 21,
TheCarConnection.com – (National) 2016 Nissan Murano, Maxima recalled for braking
problem. Nissan Motor Company Ltd., issued a recall April 21 for 12,616 of
its model year 2016 Nissan Murano crossovers and Maxima sedan vehicles sold in
the U.S. due to faulty Anti-Lock Brake System (ABS) actuators that may have
been assembled with a damaged O-ring which can cause the brake fluid pressure
to be improperly controlled during ABS and Vehicle Dynamic Control (VDC)
activation, thereby increasing the required vehicle stopping time and
increasing the risk of an accident. Source: http://www.thecarconnection.com/news/1103536_2016-nissan-murano-maxima-recalled-for-braking-problem
• Wyoming Medical Center in Casper notified 3,184 patients April
20 that their personal and medical information may have been potentially
exposed in a phishing scam that targeted 2 employees February 22. – Casper
Star-Tribune
12. April 21,
Casper Star-Tribune – (Wyoming) Wyoming Medical Center informs 3,200 patients of
email breach. Wyoming Medical Center in Casper notified 3,184 patients
April 20 that their personal and medical information may have been potentially
exposed in a phishing scam that targeted 2 employees February 22. Medical
center officials do not believe any of the information was misused, and stated
that the access was immediately blocked upon discovery of the scheme.
• A Lincoln woman was charged April 21 for illegally obtaining
credit card information from business accounts in several States to purchase
about $193,000 worth of Apple MacBook Pro laptops from February 25 – March 23.
– Lincoln Star Journal
19. April 22,
Lincoln Star Journal – (National) Police: Woman buys $190,000 worth of laptops with
stolen credit cards. Officials arrested and charged a Lincoln woman April
21 for 9 counts of theft after she allegedly obtained credit card information
from business accounts in several States and used the information to illegally
purchase about $193,000 worth of Apple MacBook Pro laptops from February 25 –
March 23. Source: http://journalstar.com/news/local/911/police-woman-buys-worth-of-laptops-with-stolen-credit-cards/article_0775c624-30e8-50c1-bf9d-24298d96b2cc.html
Financial Services Sector
Nothing
to report
Information Technology Sector
16. April 22,
SecurityWeek – (International) Adobe patches flaw in analytics
AppMeasurement for Flash Library. Adobe release its Analytics
AppMeasurement for Flash library version 4.0.1 which patched a Document Object
Model (DOM)-based cross-site scripting (XSS) vulnerability after a security
researcher discovered the vulnerability when the debug Tracking feature was
enabled. The flaw affects version 4.0 and earlier platforms. Source: http://www.securityweek.com/adobe-patches-flaw-analytics-appmeasurement-flash-library
17. April 21,
Softpedia – (International) Law enforcement, government agencies see
phishing as main cyber risk. The Global Cyber Alliance (GCA), a group of
government representatives from the U.S. and the United Kingdom, agreed to
promote the usage of Domain-based Message Authentication, Reporting &
Conformance (DMARC) protocol to make it more difficult for attackers to tamper
with original documents as phishing attacks were ranked as the top cyber threat
following research that revealed spear-phishing campaigns increased by 55
percent from 2015. Source: http://news.softpedia.com/news/law-enforcement-government-agencies-see-phishing-as-main-cyber-risk-503272.shtml
18. April 21,
SecurityWeek – (International) DDoS attacks continue to rise in power and
sophistication. Imperva released its Global DDoS Threat Landscape Q1 2016
report which revealed that distributed denial of service (DDoS) attacks were
more advanced and sophisticated after an analysis revealed that attackers
increased the use of browser-like DDoS bots with capabilities of bypassing
security challenges by 36.6 percent and attackers were seen executing new ways
to perform application layer assaults including Hypertext Transfer Protocol
Secure (HTTPS) POST flood. Source: http://www.securityweek.com/ddos-attacks-continue-rise-power-and-sophistication
Communications Sector
Nothing to report