Tuesday, September 13, 2016



Complete DHS Report for September 13, 2016

Daily Report                                            

Top Stories

• The U.S. Environmental Protection Agency announced September 8 a $39,100 settlement with Southern California Edison to resolve allegations that the utility improperly managed and stored hazardous waste at its facility on Catalina Island in California without proper permits. – Southern California City News Service

3. September 8, Southern California City News Service – (California) HazMat danger on Catalina: Feds force Edison to pay up. The U.S. Environmental Protection Agency (EPA) announced September 8 a $39,100 settlement with Southern California Edison to resolve allegations that the utility improperly managed and stored hazardous waste at its facility on Catalina Island in California without proper permits. EPA officials also reported that Edison employees conducting weekly inspections were not adequately trained and failed to check the date labels on the waste containers.Source: http://mynewsla.com/government/2016/09/08/hazmat-danger-on-catalina-feds-force-edison-to-pay-up/

• Nissan Motor Company Ltd. issued a recall September 9 for 120,329 of its model years 2015 – 2017 vehicles in select makes due to a faulty anti-lock braking system actuator pump. – TheCarConnection.com

4. September 9, TheCarConnection.com – (National) 2016-2017 Nissan Maxima, 2015-2017 Murano, 2015-2016 Murano Hybrid recalled for fire risk. Nissan Motor Company Ltd. issued a recall September 9 for 120,329 of its model years 2016 – 2017 Nissan Maxima, 2015 – 2017 Nissan Murano, and 2015 – 2016 Nissan Murano Hybrid vehicles sold in the U.S. due to a faulty anti-lock braking system actuator pump that was manufactured with improper specifications, which could allow brake fluid to leak onto a circuit board and ignite a fire. Source: http://www.thecarconnection.com/news/1106029_2016-2017-nissan-maxima-2015-2017-murano-2015-2016-murano-hybrid-recalled-for-fire-risk

• General Motors Company issued a recall September 9 for nearly 4.3 million of its model years 2014 – 2017 vehicles in select makes due to a software defect which can prevent the air bags from deploying during an accident. – Reuters

5. September 9, Reuters – (National) GM recalls 4.3 million vehicles over air bag-related defect. General Motors Company issued a recall September 9 for nearly 4.3 million of its model years 2014 – 2017 vehicles in select makes due to a software defect which can prevent the air bags from deploying during an accident, thereby increasing the risk of injury. One death and three injury reports have been linked to the recall. Source: http://www.reuters.com/article/us-gm-recall-idUSKCN11F2AH

• MIH Marketing and Sales issued a recall September 10 for approximately 662,049 pounds of its various meat and poultry products after a Federal inspection discovered the products were stored under insanitary conditions. – U.S. Department of Agriculture

13. September 12, Food Safety News – (Washington) E. coli outbreak in Seattle brings closure of Mexican restaurant. The Matador restaurant in Seattle, Washington, was shutdown September 9 after the restaurant was potentially linked to an outbreak of Shiga toxin-producing E. coli infections that has sickened 5 people since August 14. Source: http://www.foodsafetynews.com/2016/09/e-coli-outbreak-in-seattle-brings-closure-of-mexican-restaurant/#.V9aiPvkrKUk

Financial Services Sector

6. September 9, WXIN 59 Indianapolis – (Indiana) Court docs: McDonald’s employee stole about 100 credit card numbers while working drive-thru. A former employee at McDonald’s in West Lafayette, Indiana, was charged in court documents unsealed September 9 after she and co-conspirators allegedly skimmed information from about 100 customer credit cards while working at the restaurant and created fake credit cards to make more than $6,000 worth of fraudulent purchases at area stores. Authorities stated the former employee swiped customers’ cards through a handheld skimming device to steal their account information. Source: http://fox59.com/2016/09/09/court-docs-mcdonalds-employee-stole-about-100-credit-card-numbers-while-working-drive-thru/

Information Technology Sector

20. September 10, Softpedia – (International) Free decrypter available for Philadelphia ransomware. An Emsisoft security researcher released a decrypter for the Philadelphia ransomware that can unlock a victim’s files for free after the researcher discovered the malware was deleting a predetermined number of files from an infected device if the user did not immediately pay the ransom. Source: http://news.softpedia.com/news/free-decrypter-available-for-philadelphia-ransomware-508173.shtml

21. September 9, SecurityWeek – (International) Privilege escalation, DoS vulnerabilities patched in Xen. The Xen Project released patches addressing four vulnerabilities, including a privilege escalation flaw in all versions of Xen that could allow a malicious 32-bit paravirtualization (PV) guest administrator to gain host privileges, an overflow issue affecting all Xen versions that could be leveraged by a hardware virtual machine (HVM) guest admin to cause Xen to fail a bug check and cause a host to enter a denial-of-service (DoS) condition, and a use-after-free vulnerability that can be leveraged by a guest admin to crash the host and for information leaks and arbitrary code execution, among other vulnerabilities. Source: http://www.securityweek.com/privilege-escalation-dos-vulnerabilities-patched-xen

Communications Sector

Nothing to report