Thursday, March 3, 2011

Complete DHS Daily Report for March 3, 2011

Daily Report

Top Stories

• KITV 4 News reports an investigation is underway of at least 27 Transportation Security Administration officers at the Honolulu International Airport in Hawaii after security failures that could have allowed a terrorist attack on an airplane were allowed to continue for months. (See item 21)

21. March 2, KITV 4 Honolulu – (Hawaii) At least 27 Honolulu TSA officers under probe. An investigation is underway of more than two dozen Transportation Security Administration (TSA) officers at the Honolulu International Airport in Hawaii after security failures that could have allowed a terrorist attack on an airplane were allowed to continue for months, KITV 4 News has learned. TSA employees told KITV 4 News thousands of checked bags were loaded onto flights at Honolulu’s airport in recent months without having been screened for explosives. At least 27 TSA officers on the morning shift in Honolulu’s Lobby 4 are accused of not properly searching checking baggage before it was loaded on planes, sources said. Baggage there was supposed to be opened up and checked for traces of explosives, but sources said many pieces of luggage were never checked. In some cases, TSA agents simply marked suitcases as having been screened when those checked bags had not been checked at all, according to people familiar with the investigation. Sources said baggage checked on nine daily morning departures from Lobby 4 were not properly screened, a situation that could have lasted as long as 4 months, meaning thousands of suitcases went unchecked. Source:

• Heavily armed bandits stormed a high-tech company February 27 in Fremont, California, rounding up employees and escaping with at least $2 million worth of computer chips and other equipment, KTVU 2 Oakland and San Francisco Bay City News reported. See item 52 below in the Information Technology Sector


Banking and Finance Sector

15. March 2, Belleville News Democrat – (Illinois) Police say bank robberies in Caseyville, Fairview may be linked. Police in Caseyville, Illinois, are looking for the two masked gunmen who stormed into the First Collinsville Bank March 1 and robbed it. No one was injured. The robbers displayed guns before fleeing with an undetermined amount of money, the Caseyville police chief said. The police chief said there are similarities between this robbery and one that occurred February 28 at U.S. Bank in Fairview Heights, but declined to elaborate. The FBI is investigating both cases. The robbery occurred shortly before 2 p.m. in a trailer that temporarily housed the bank branch. Source:

16. March 1, WFSB 3 Hartford – (Connecticut) Bank bomb threats investigated. Police had opened up a criminal investigation after three bomb threats were called into Windsor Federal Savings Banks in Windsor, Bloomfield, and Granby on February 28. All three branches of the Windsor Federal Savings Bank received a call around 3:45 p.m. that a bomb would detonate in the buildings. “The call was received into the teller that a bomb was going to detonate within the building,” said a Granby police official. The police official said the branches in Bloomfield and Windsor received similar calls just minutes apart. Everyone inside the Granby bank was quickly evacuated as well as employees in nearby businesses. Connecticut State Police brought bomb-sniffing dogs to the scenes, however nothing suspicious was found. Source:

17. March 1, Boulder Daily Camera – (Colorado) Boulder police and FBI seek suspect in 3 robberies in 24 hours. Boulder, Colorado police are working with the FBI to investigate three robberies — including two bank heists — in the city in less than 24 hours that they believe could be the work of the same man. Still another bank robbery occurred March 1 in Longmont, and police are looking into whether that crime is also linked to the others. The first Boulder robbery took place at 5:26 p.m. February 28 at the Wells Fargo bank at 1690 Canyon Ave. The suspect was described by credit union employees as a 40- to 50-year-old white male, about 6 feet tall with pockmarks and acne scarring on his face. He was wearing a dark jacket, tan pants, a brown knit hat with tassels, and dark sunglasses. Source:

18. February 27, TG Daily – (International) FBI crime report highlights trends in Internet fraud. The recently published FBI 2010 Internet Crime Report reveals the most common types of Internet crimes in 2010 were non-delivery of payment or merchandise, impersonating the FBI, and identity theft. According to the joint FBI/National White Collar Crime Center’s Internet Crime Complaint Center (IC3), it received more than 300,000 complaints about these particular Internet scams and more. The majority of the filings came from U.S. males between the ages of 40 and 59 years old with targets primarily in California, Florida, Texas, and New York. International complaints came from Canada, the United Kingdom, Australia, and India. In the cases actually solved by the FBI or local law enforcement officials, the majority of perpetrators (around 75 percent) were males residing in California, Florida, New York, Texas, the District of Columbia, and Washington state. Internationally, the hotbeds for scammers were in the United Kingdom, Nigeria, and Canada. The top ten crimes were: computer crimes, miscellaneous fraud, advance feed fraud, spam, auction fraud, credit card fraud, and overpayment fraud. These crimes were mostly carried out through telephone calls claiming victims are delinquent on payday loans and should pay right away, online apartment and real estate scams, denial of service attacks on cell phones and landlines targeting bank accounts, as well as fake emails asking for donations for natural disasters like Hurricane Katrina and the tsunamis. Source:

19. February 26, Federal Bureau of Investigation – (Florida) Florida lawyer sentenced for stealing trust funds. The United States Attorney for the Southern District of Florida, along with several other law enforcement officials, announced the February 26 sentencing of a 63-year-old male, an attorney from Fort Lauderdale, on a mail fraud charge in connection with his embezzlement of funds from clients’ trust account. A United States District Judge sentenced the attorney to 48 months in prison and ordered the man to pay more than $3,879,896 in restitution to the victims. The attorney had previously pleaded guilty in December 2010. According to the criminal information and statements made in court during the February 26 sentencing hearing, the man practiced law from 1980 through August 2010 at his law firm in Fort Lauderdale. As an attorney, he handled real estate closings for clients, mortgage lenders, and the administration of estates in state court. During that time, the attorney misappropriated more than $3,879,896 of his clients’ funds. The attorney was permanently disbarred by the Florida Supreme Court on August 26, 2010. The United States Attorney for the Southern District of Florida commended the investigative efforts of the United States Postal Inspection Service, FBI, and the State of Florida Office of Financial Regulation. Source:

Information Technology

49. March 2, Computerworld – (International) Mozilla follows Google, patches Firefox as prep for Pwn2Own. Mozilla fixed 11 security flaws in Firefox March 1. Nine of the 11 flaws were rated “critical,” a threat rating that implies hackers could use the vulnerabilities to compromise a computer or infect it with malware. Of the two remaining bugs, one was labeled “high” and the second was tagged as “moderate.” The updates, which brought the open-source browser to versions 3.6.14 and 3.5.17, were the first since December, a longer-than-usual span between Mozilla patch shipments. Part of the reason was that the updates released March 1 were delayed. They had been slated to show in mid-February, but Mozilla held them to investigate a non-security bug that caused some users’ browsers to crash. The patches addressed three JavaScript flaws, two bugs in Firefox’s browser engine, a JPEG rendering vulnerability that could be exploited by serving a malicious image to users, and a cross-site forgery request (CSRF) bug. Source:

50. March 2, Help Net Security – (International) Rootcager trojan found on the official Android market. Free Android applications bundled up with malware have spilled over into the official Android marketplace. According to Symantec, the malware in question can root the phone, harvest data and open backdoors — similar to the recent Geimini Trojan spotted lurking on third-party Chinese Android app markets. “The applications in question are popular free apps, bundled with malware, that have then been republished in the official marketplace under different application and publisher names,” said a researcher. Google has removed the applications from the market, but according to Symantec’s sources somewhere between 50,000 and 200,000 downloads took place during the 4 days that the apps were available for download. This new trojan has been dubbed Rootcager because of the rageagainstthecage file included in the Android Package containing the affected apps. Rageagainstthecage is a file that can also be used to legitimately root a phone in order for the users to gain administrative rights, but in this case it is used to allow the trojan to do things like taking screenshots, harvesting IMEI and IMSI numbers and send them to remote sites, and drop a DownloadProvidersManager Android Package that will further execute downloads in the background. Source:

51. March 2, Softpedia – (International) Fake e-gift emails pass old style IRCBot as screensaver. A new spam campaign currently making the rounds produces e-mails that pose as e-gifts from friends, but in fact lead to an IRC-based trojan. The e-mails have spoofed headers to appear as originating from gifts@freeze(dot)com and bear a subject of “You have received a gift from one of our members !” is a Web site offering desktop customization downloads such as screensavers, wallpapers, icons, sounds, and mouse cursors. It might be possible that attackers have modified a legitimate e-mail template used by the Web site and replaced the real link with a malicious one. The e-mails use social engineering to attract people’s interest and convince them to click on the contained link. According to security researchers from Belgian email security provider MX Lab, the included link leads to a gift.pif file hosted on what is most likely a compromised Web site. The PIF format is not actually meant to contain executable code, but Windows treats it as such and because of this it has historically been abused to hide malware. Source:

52. March 1, KTVU 2 Oakland; San Francisco Bay City News – (California) Armed bandits stage high-tech plant takeover. Heavily armed bandits stormed a high-tech company February 27 in Fremont, California, rounding up employees and escaping with at least $2 million worth of computer chips and other equipment, authorities said. The masked bandits made their way into the Unigen plant at 8:40 a.m. by cutting through a security fence that was hidden by heavy undergrowth. There were only six employees in the loading dock area at the time, authorities said. Twelve to 15 bandits quickly overwhelmed the employees, brought them to a restroom, tied them up, and then backed a moving truck to the loading dock and began loading high-tech equipment. Authorities said the firm was targeted for the takeover. The employees were not injured, and were able to remove the restraints to call police after the intruders fled. The heist may have been captured on surveillance cameras, and it was being investigated by the Fremont police and the California Highway Patrol. Unigen makes computer chips, flash drives, and other high-tech components. Source:

53. March 1, Softpedia – (International) US points finger at Baidu and TaoBao for facilitating piracy. A report from the Office of the U.S. Trade Representative (USTR) has placed China’s biggest search engine Baidu, and eBay alternative Taobao, among the most notorious piracy markets. USTR puts Baidu and Taobao alongside MP3 download sites, torrent indexes like ThePirateBay, IsoHunt and Btjunkie, Russia’s vKontakte, or smartphone app market Baidu, which is among the top 10 Web sites in the world by traffic and offers a plethora of services in addition to Web search, has been included because of deep linking directly to pirated content. Taobao, which is an online auction and shopping site similar to eBay was named a “notorious market” for allowing sellers to deal in counterfeit goods that abuse the trademarks and intellectual property of others. Source:

For more stories, see item 18 above in the Banking and Finance Sector and item 55 below in the Communications Sector

Communications Sector

54. March 1, Charleston Gazette – (West Virginia) Fibernet reports 90-minute outage this morning. FiberNet customers in parts of Kanawha, Putnam, Cabell, Hancock, and Mason counties in West Virginia lost telephone service for more than 90 minutes March 1, state officials said. It was the third time in 6 months FiberNet has reported a major outage — and the first since Waynesboro, Virginia-based nTelos acquired FiberNet last December. FiberNet reported the outage to 911 emergency centers, the Federal Communications Commission, and state Public Service Commission and Division of Homeland Security and Emergency Management. “Everything was back up after about an hour and a half,” said West Virginia’s homeland security chief. FiberNet’s parent company, nTelos, blamed the outage on a “call routing error.” The company did not disclose how many customers were affected March 1. Source:

55. March 1, IDG NEWS Service – (National) Man gets 7 years for forcing modems to call premium numbers. A New Hampshire man who made $8 million by installing unwanted dial-up software on computers and then forcing them to call expensive premium telephone numbers was handed down an 82-month sentence February 28. Prosecutors say that between 2003 and 2007, the suspect and others put together a lucrative business by setting up premium telephone numbers in Germany — similar to the 1-900 numbers used in the U.S. — and then infecting German PCs with software that would automatically dial the numbers for short periods of time. “The victims were generally unaware that their computers’ telephone modems were calling these numbers and charging them with expenses,” the U.S. Department of Justice said in a press release. These dialers were a major, but largely unreported, problem in Europe in the early part of the last decade. In 2006, two men were given stiff sentences by an Austrian court for running a scam that brought in $16.5 million. And while dial-up modem usage has dwindled, shrinking the number of possible victims, this type of software is still in circulation in Europe. The suspect pleaded guilty to fraud and tax evasion charges in U.S. District Court for the District of Massachusetts in April 2010. Source:

Wednesday, March 2, 2011

Complete DHS Daily Report for March 2, 2011

Daily Report

Top Stories

• Bloomberg reports Morgan Stanley experienced a “very sensitive” break-in to its network by the same China-based hackers who attacked Google Inc.’s computers more than 1 year ago, according to a cyber-security company working for the bank. See item 13 below in the Banking and Finance Sector

• According to Associated Press, a man armed with an assault rifle, handgun, and a knife walked into the Grant Parish Sheriff’s Office in Colfax, Louisiana, took a hostage, and wounded a deputy before being shot. (See item 31)

31. March 1, Associated Press – (Louisiana) Louisiana deputy shot in sheriff’s office. A man armed with an assault rifle, handgun, and a knife walked into the Grant Parish Sheriff’s Office in Colfax, Louisiana February 28, took a hostage, and wounded a deputy before being shot. The suspect had the weapons plus extra magazines and ammunition for each firearm when he walked into the sheriff’s office at 3 p.m., state police said. After he started shooting, deputies in the building returned fire. The gunman, a 52-year-old man from Colfax, Louisiana, and the deputy were in the hospital, a state police trooper said in a news release. The suspect is listed in critical but stable condition and the deputy was listed as stable, state police said. It is unknown if the deputy was the hostage. A spokesman said since it was an ongoing investigation that he would not release more details on what happened. Police did not release a motive. Source:


Banking and Finance Sector

13. February 28, Bloomberg – (International) Morgan Stanley attacked by China-based hackers who hit Google. Morgan Stanley experienced a “very sensitive” break-in to its network by the same China-based hackers who attacked Google Inc.’s computers more than 1 year ago, according to e-mails stolen from a cyber-security company working for the bank. The e-mails from the Sacramento, California-based computer security firm HBGary Inc., which identify the first financial institution targeted in the series of attacks, said the bank considered details of the intrusion a closely guarded secret. “They were hit hard by the real Aurora attacks (not the crap in the news),” wrote a senior security engineer at HBGary, who said he read an internal Morgan Stanley report detailing the so-called Operation Aurora attacks. The nickname came from McAfee Inc., a cyber-security firm, which said the attacks occurred for about 6 months starting in June 2009 and marked “a watershed moment in cyber security.” The number of companies known to be hit in the attacks was initially estimated at 20 to 30 and now exceeds 200, said the senior vice president for Terremark Worldwide Inc., which provides information-technology security services. The HBGary e-mails do not indicate what information may have been stolen from Morgan Stanley’s databanks or which of the world’s largest merger adviser’s multinational operations were targeted. Source:

14. February 28, Cypress Times – (International) Alleged supporter of terrorist group extradited from Paraguay. Following a joint investigation by U.S. Immigration and Customs Enforcement’s (ICE) Homeland Security Investigations (HSI) and the FBI, a former resident of Brooklyn, New York, has been charged with conspiring to provide material support to Hizballah. The 38-year-old is a dual citizen of the United States and Lebanon. The suspect is among several defendants charged in the conspiracy. He was indicted November 24, 2009, along with nine co-defendants. The suspect was taken into U.S. custody in Asuncion, Paraguay February 24 by U.S. Marshals who escorted him to Washington D.C. At the time of the indictment, the suspect had left the United States. On June 15, 2010, Paraguayan authorities arrested him for material support of terrorism. He is charged in 28 of 31 counts in the indictment, including conspiring to provide material support to Hizballah in the form of proceeds from the sale of counterfeit money, stolen (genuine) money, and fraudulent passports. According to the indictment, the suspect and several other defendants were also charged with several counts of transporting stolen goods, trafficking in counterfeit goods, and making false statements to government officials. Source:

15. February 26, Federal Bureau of Investigation – (New Jersey) Mortgage company president sentenced for orchestrating $136 million fraud scheme. A Montclair, New Jersey, man was sentenced February 26 to 168 months in prison for his role in orchestrating the $136 million fraud scheme that bankrupted Pine Brook, New Jersey-based United States Mortgage Corp. and its subsidiary, CU National Mortgage, LLC, the U.S. attorney announced. The 47-year-old man, the former president and controlling shareholder of United States Mortgage, previously pleaded guilty before a U.S. district judge to one count of mail and wire fraud conspiracy and one count of money laundering. The judge also imposed the sentence February 26 in Newark federal court. According to documents filed in this and related cases and statements made in court: Beginning as early as 2002 to January 27, 2009, the man conspired to fraudulently sell Fannie Mae hundreds of loans belonging to various credit unions. Other members of the conspiracy included United States Mortgage’s chief financial officer (CFO) and its servicing manager. The lead conspirator directed the former CFO, who provided numerous reports to credit unions falsely stating loans that had been sold were still in the credit unions’ portfolios, to falsify records to conceal the fraudulent sales. The lead conspirator admitted he devised the scheme to prop up United States Mortgage, and that he used the proceeds to fund United States Mortgage’s operations, his personal investments, and investments he made on United States Mortgage’s behalf. Source:

For another story, see item 43 below in the Information Technology Sector

Information Technology

37. March 1, Help Net Security – (International) Reset Gmail accounts to be restored completely. Gmail users that managed to enter their accounts only to find them devoid of any content can find relief, as Google said things will be back to normal for all affected users very soon. According to Google, the bug that triggered the event managed to affect many copies of the data in multiple data centers, but the information has also been backed up on tapes which have not been affected since they are offline. “But restoring data from them also takes longer than transferring your requests to another data center, which is why it’s taken us hours to get the email back instead of milliseconds,” explained Google. It blamed the bug on a storage software update that was being deployed at the time. Source:

38. March 1, Softpedia – (International) LastPass fixes serious cross-site scripting vulnerability. Password management service LastPass has fixed a serious cross-site scripting vulnerability on its Web site which could have been exploited to obtain sensitive information about other people’s accounts. LastPass allows users to generate secure passwords for each of their accounts and store them inside an encrypted container controlled by a master password. The company offers extensions for all major browsers, which help with auto-fill and other operations, but the login details can also be accessed via its Web site. The flaw on lastpass(dot)com was discovered by a United Kingdom independent security researcher who notified the company. The vulnerability, which LastPass said was a reflected cross-site scripting (XSS) one, could have been exploited by loading the vulnerable page in a frame on another Web site. If the victim browsed that site while logged into LastPass, the attacker could have retrieved the e-mail address, password reminder, list of sites, and log-in history. In a post on its official blog, LastPass assured users the vulnerability was fixed before it could be exploited. Source:

39. March 1, H Security – (International) 19 vulnerabilities - Chrome 9 update proves expensive for Google. Google has released version 9.0.597.107 of its Chrome browser, which fixes a total of 19 security vulnerabilities, 16 of them rated as high risk. It was possible to crash the browser using JavaScript dialogues and SVG files, or to use the address bar for URL spoofing. Also fixed is an integer overflow when handling text areas. Google is keeping full details of the vulnerabilities secret until the bulk of users have switched to the new version. Source:

40. March 1, Help Net Security – (International) Malware family integration across botnets. Analysis by Symantec reveals that in February, 1 in 290.1 e-mails (0.345 percent) was malicious making February among the most prolific time periods both in terms of simultaneous attacks and malware family integration across Zeus (aka Zbot), Bredolab, and SpyEye. Also in February, there were at least 40 variants of malware associated with the Bredolab Trojan, accounting for at least 10.3 percent of e-mail-borne malware blocked by MessageLabs Intelligence in February. These latest findings reveal that contrary to recent beliefs, Bredolab is not dead and techniques previously associated with Bredolab malware have now become more common among other major malware families. Since the end of January, MessageLabs Intelligence has tracked significant volumes of collaborative attacks that make use of well-timed and carefully crafted targeted techniques. As February began, the attacks increased in number and these malware families were used aggressively to conduct simultaneous attacks via propagation techniques, signaling the likelihood of a common origin for these infected e-mails. Source:

41. February 28, The Register – (International) Tainted ads punt scareware to surfers on LSE and Myvue sites. Several highly trafficked United Kingdom sites – including the Web site of the London Stock Exchange – served malware-tainted ads as the result of a breach of security by a third-party firm they shared in common. Surfers visiting auto-trading site Autotrader(dot)co(dot)uk and the cinema site Myvue(dot)com were also exposed to the attack, which stemmed from a breach at their common ad provider, Unanimis, rather than at any of the three sites themselves. Unconfirmed reports suggest eBay(dot)co(dot)uk was also affected. The malicious ads made several concealed redirects before dropping surfers on a portal soliciting rogue anti-virus (scareware). By attacking third-party networks rather than Web sites, cyber criminals can increase the potency of attacks, according to an official from Websense Security Labs. Source:

42. February 28, Computerworld – (International) Infected Android app runs up big texting bills. A rogue Android application tweaked by hackers can hijack a smartphone and run up big texting bills before the owner knows it, Symantec said February 28. The newest in a line of compromised Android apps, said a principle security response manager at Symantec, is Steamy Window, a free program that Chinese hackers modified, then re-released into the wild. The cyber criminals grabbed a copy of Steamy Windows, then added a backdoor trojan horse — “Android(dot)Pjapps” by Symantec’s label — to the app’s code. The reworked app is placed on unsanctioned third-party “app stores” where unsuspecting or careless Android smartphones find it, download it, and install it. The trojan planted by the malware-infected Steamy Windows can install other applications, monkey with the phone’s browser bookmarks, surreptitiously navigate to Web sites, and silently send text messages, said the Symantec response manager. The last is how the criminals make money. “The Trojan lets them send SMS [short message service] messages to premium rate numbers,” he said, for which the hackers are paid commissions. Source:

43. February 28, Softpedia – (International) Russian underground cybercriminal forum hacked. A closed underground forum that served as a hangout for some of the most notorious Russian cybercriminals was hacked and its entire database was leaked. According to LifeNews(dot)ru, MAZA(dot)la was compromised February 18 by hackers from a rival forum called Direct Connection. Direct Connection is home to the CyberLords Team, the hacking crew of one of the fraudsters who stole $10 million from RBS WorldPay. MAZA(dot)la also had its notorious members, such as “BadB,” founder of the CarderPlanet underground marketplace. Russian spammer and malware writer “Severa,” was also a MAZA(dot)la forum regular, as well as well known identity thieves “zo0mer” and “My0,” who are still wanted by U.S. authorities. In total, MAZA(dot)la had over 2,000 members whose information and private communications are now in the hands of law enforcement authorities. The site was taken offline shortly after the hack and currently remains down. Source:

For another story, see item 13 above in the Banking and Finance Sector

Communications Sector

44. February 28, Miami Herald – (International; North Carolina) Feds investigate Haitian campaign robo-calls in the U.S. The U.S. Federal Communications Commission is investigating a series of fervent campaign “robo-calls” in 2010 by a Haitian presidential candidate, which led to evacuations at the Fort Bragg military base in North Carolina, the Miami Herald has learned. In the weeks prior to Haiti’s November election, anyone who had ever placed a call to Haiti received a string of pre-recorded calls from the presidential candidate. After the January 12 earthquake, the list included countless Haitian Americans, journalists, non-profit groups, and the U.S. military. On November 17, the Army criminal investigations team swept the cleared buildings for explosives and listened to recordings left on voice mailboxes, a spokesman said. But the U.S. Telephone Consumer Protection Act has specific rules for automated pre-recorded calls: They cannot go to cellular phones when the receiver has to pay for the call. On residential lines, there needs to be full disclosure on whom the call is coming from and how to reach that person. The law applies not only to calls made within the United States, but also to calls made from outside the country to U.S. phones. Source:

45. February 28, Albany Times-Union – (New York) Glitch interrupts Oscars on WTEN. Some television viewers in Albany, New York, had a frustrating time tuning into the Oscars February 27 when a Time Warner Cable equipment failure interrupted reception for almost an hour. Service to News 10 (WTEN) abruptly cut out about a quarter to 8 p.m., just before the Academy Awards began, the station’s news director said. The station quickly posted online alerts that directed viewers to Channel 554 and to streaming video on its Web site. A piece of equipment had failed in the Albany area, a spokeswoman for Time Warner Cable in the Northeast said. She did not know specific details about the situation.”Engineers quickly jumped on the issue, identified the piece of equipment that failed, turned around, and made sure service was restored,” the news director said. She estimated that service was down for less than an hour. Source:

46. February 28, Reno Gazette-Journal – (Nevada) Fire knocks out KNPB service outside of Reno area. A weather-related fire February 27 that destroyed a KNPB broadcasting transmitting filter caused viewers of the television station outside the Reno, Nevada, area to lose the station’s signal on their televisions for several more days. The programming vice president said February 28 the filter system destroyed on Red Peak eliminated the broadcast of KNPB channels for viewers who do not subscribe to Charter Cable channels and those who have certain satellite systems. The programming president said the signal was knocked out at 8:38 p.m. February 27 during the premiere of the station’s new production of “Stewards of the Rangeland.” A snow and ice storm caused a chemical fire that did not require the response of the fire department. The station has ordered a replacement for the filter, which could take a week or more to obtain. During that time, the signal will still be lost to certain viewers. Source:

For another story, see item 42 above in the Information Technology Sector