Wednesday, January 30, 2013


Daily Report

Top Stories

 • An oil spill caused by a barge colliding with a bridge January 27 forced the closure of a 16-mile stretch of the river causing at least 47 barges and other vessel to idle as crews worked to clean up the oil spill January 29. – Associated Press

8. January 29, Associated Press – (Mississippi) Ships idle for Miss. River oil cleanup after crash. An oil spill caused by a barge colliding with a bridge January 27 forced the closure of a 16-mile stretch of the river causing at least 47 barges and other vessel to idle as crews worked to clean up the oil spill January 29. Source: http://www.chron.com/news/science/article/Ships-idle-for-Miss-River-oil-cleanup-after-crash-4232193.php

 • Burglars stole roughly $40,000 worth of copper and tools from a Chesapeake High School athletic center. – WSAZ 3 Huntington

17. January 28, WSAZ 3 Huntington – (Ohio) Copper thieves target high school athletic complex. Burglars stole roughly $40,000 worth of copper and tools from a Chesapeake High School athletic center. Source: http://www.wsaz.com/news/headlines/Copper-Thieves-Target-High-School-Athletic-Complex--188753681.html

 • Very few U.S. online retailers, internet service providers (ISP), and financial institutions have implemented a major vulnerability in the Domain Name System (DNS), five years after the vulnerability was discovered. – Network World See item 20 below in the Information Technology Sector

 • A security flaw in the firmware of digital video recorders (DVR) made by 19 manufacturers can allow attackers to remotely view, delete, or copy video streams from security cameras networked to the DVRs. – The Register See item 22 below in the Information Technology Sector

Details

Banking and Finance Sector

7. January 29, Chicago Sun-Times – (Illinois) ‘People’s Attorney’ radio show host indicted in $10 million mortgage fraud. A radio show host was indicted for allegedly participating in a $10 million mortgage scam involving property in the Chicago area. Source: http://www.suntimes.com/news/metro/17857871-418/peoples-attorney-radio-show-host-indicted-in-10-million-mortgage-fraud.html3

For another story, see item 20 below in the Information Technology Sector

Information Technology

20. January 29, Network World – (International) 5 years after major DNS flaw is discovered, few US companies have deployed long-term fix. Very few U.S. online retailers, internet service providers (ISP), and financial institutions have implemented a major vulnerability in the Domain Name System (DNS), five years after the vulnerability was discovered. Source: http://www.networkworld.com/news/2013/012913-dnssec-266197.html

21. January 29, Softpedia – (International) Over 16,000 Facebook account credentials stolen by PokerAgent botnet. Researchers at ESET analyzed a botnet known as PokerAgent that stole the login and payment information of over 16,000 Facebook users in 2012. The malware used targeted players of Zynga Poker, infecting at least 800 computers. Source: http://news.softpedia.com/news/Over-16-000-Facebook-Account-Credentials-Stolen-by-PokerAgent-Botnet-324997.shtml

22. January 29, The Register – (International) Hackers squeeze through DVR hole, break into CCTV cameras. A security flaw in the firmware of digital video recorders (DVR) made by 19 manufacturers can allow attackers to remotely view, delete, or copy video streams from security cameras networked to the DVRs. Source: http://www.theregister.co.uk/2013/01/29/cctv_vuln/

23. January 29, The H – (International) iOS update fixes browser vulnerabilities. Apple released an update for iOS that closes a large number of security vulnerabilities, including some which allowed remote code injection and execution. Source: http://www.h-online.com/security/news/item/iOS-update-fixes-browser-vulnerabilities-1793259.html

24. January 29, Softpedia – (International) Ruby on Rails 3.0.20 and 2.3.16 released to address extremely critical vulnerability. The developers of Ruby on Rails released versions 3.0.20 and 2.3.16 and advised users to immediately apply the update to close a major vulnerability in past versions. Source: http://news.softpedia.com/news/Ruby-on-Rails-3-0-20-and-2-3-16-Released-to-Address-Extremely-Critical-Vulnerability-324866.shtml

25. January 29, Softpedia – (International) Over 85,000 HP printers found to be publicly accessible via the Internet. A software researcher discovered that over 85,000 printers
made by HP are available via a focused Google search, allowing remote access. Source: http://news.softpedia.com/news/Over-85-000-HP-Printers-Found-to-Be-Publicly-Accessible-Via-the-Internet-324836.shtml

26. January 28, CNET – (International) Facebook endures hours-long outage in the United States. A Domain Name System (DNS) issue caused Facebook users to be unable to reach the site for a few hours January 28 if they attempted to reach the site by typing in the URL. Source: http://news.cnet.com/8301-1023_3-57566336-93/facebook-endures-hours-long-outage-in-the-u.s/

Communications Sector

Nothing to report