Friday, March 15, 2013
Complete DHS Daily Report for March 15, 2013
• Crews with Consol Energy pumped water into the Blacksville No. 2 mine on the Pennsylvania-West Virginia border after smoke began leaking out of a shaft, suspending operations indefinitely. – Associated Press
1. March 14, Associated Press – (Pennsylvania) Consol pumping water into Pa.-W.Va. mine fire. Crews with Consol Energy have already pumped over 250,000 gallons of water into the Blacksville No. 2 mine on the Pennsylvania-West Virginia border after smoke began leaking out of a shaft March 12, causing the mine to be evacuated and operations to be shut down indefinitely. Source: http://www.grafwv.com/page/content.detail/id/298398/Consol-pumping-water-into-Pa--W-Va--mine-fire-.html?isap=1&nav=5080
• Federal agents searched several Florida Internet cafes as part of a multi-State investigation into a nonprofit organization suspected of illegal gambling, money laundering, and other charges. – Leesburg Daily Commercial; Associated Press See item 5 below in the Banking and Finance Sector
• The man known as the “Bucket List Bandit” pleaded guilty in federal court to robbing 11 banks in 10 different States during 2012. – Associated Press See item 7 below in the Banking and Finance Sector
• A gunman opened fire in two up-state New York establishments, killing four people and wounding at least two others. The alleged gunman was later shot and killed by police after a standoff. – Associated Press
28. March 14, Associated Press – (New York) Cops kill suspect in deadly NY shooting rampage. A gunman opened fire in two upstate New York establishments, a barbershop and a car wash, killing four people and wounding at least two others. The alleged gunman was shot and killed by police storming the abandoned building he was holed up in since March 13. Source: http://news.yahoo.com/cops-kill-suspect-deadly-ny-shooting-rampage-122218711.html
Banking and Finance Sector
5. March 14, Leesburg Daily Commercial; Associated Press – (National) Local Internet cafes part of Statewide bust. Federal agents searched several Florida Internet cafes as part of a multi-State investigation into the Allied Veterans of the World nonprofit organization that is suspected of illegal gambling, money laundering, and other charges. Source: http://www.dailycommercial.com/News/LakeCounty/14march2013cafes
6. March 13, Krebs on Security – (International) Credit reports sold for cheap in the underweb. Credit reports, Social Security numbers, and other personal information similar to that revealed in recent disclosures of celebrities’ and political figures’ information can be found for sale on several underground Web sites and forums. Source: http://krebsonsecurity.com/2013/03/credit-reports-sold-for-cheap-in-the-underweb/
7. March 13, Associated Press – (National) ‘Bucket List Bandit’ pleads guilty in Pa. to 11 bank heists in 10 states; sentencing in August. The man known as the “Bucket List Bandit” pleaded guilty in federal court to robbing 11 banks in 10 different States during 2012. Source: http://www.startribune.com/nation/197756781.html
8. March 13, Marin Independent Journal – (California) Mill Valley bank robbed, possibly by serial bandit who struck in Novato. Police concluded that the man who robbed a bank in Mill Valley is also a suspect in two prior bank robberies in the area. Source: http://www.marinij.com/novato/ci_22785103/mill-valley-bank-robbed-possibly-by-serial-bandit
Information Technology Sector
22. March 14, Softpedia – (International) NIST National Vulnerability Database down, malware identified on two Web servers. The National Institute of Standards and Technology (NIST) took down several of their Web sites, including the National Vulnerability Database (NVD) after malware was found on them. Source: http://news.softpedia.com/news/NIST-National-Vulnerability-Database-Down-Malware-Identified-on-Two-Web-Servers-337103.shtml
23. March 14, Softpedia – (International) ArchiveLock trojan uses WinRar to encrypt the files of users from Spain and France. A trojan campaign primarily targeting French and Spanish users uses WinRar to encrypt users’ files and hold them for ransom. Source: http://news.softpedia.com/news/ArchiveLock-Trojan-Uses-WinRar-to-Encrypt-the-Files-of-Users-from-Spain-and-France-337276.shtml
24. March 14 The H – (International) Kaspersky fixes IPv6 problem in Internet security suite. Kaspersky Labs released a patch for three of its Internet security suites that fix a firewall flaw that allowed certain IPv6 packets to freeze the computer running the program. Source: http://www.h-online.com/security/news/item/Kaspersky-fixes-IPv6-problem-in-Internet-Security-Suite-1822839.html
25. March 14, The H – (International) Treacherous backdoor found in TP-Link routers. Researchers have discovered a backdoor in some TP-Link routers that has the router download and execute a file when a specific URL is called. Source: http://www.h-online.com/security/news/item/Treacherous-backdoor-found-in-TP-Link-routers-1822720.html
26. March 13, Softpedia – (International) Expert finds way to retrieve Facebook authentication token and hack any account. A researcher found and reported two vulnerabilities in Facebook that could allow an attacker to access accounts. Facebook responded by fixing the issues. Source: http://news.softpedia.com/news/Expert-Finds-Way-to-Retrieve-Facebook-Authentication-Token-and-Hack-Any-Account-336973.shtml
27. March 13, Associated Press – (Colorado) Colorado’s Level 3 agrees to pay nearly $1M over poor rural phone service under FCC deal. Level 3 Communications agreed to pay $1 million after an investigation into the company’s standards. The penalty includes tougher standards for call completion rates and additional fines for missing quarterly benchmarks. Source: http://www.therepublic.com/view/story/bb5783f706864d5598b6adec97f02e56/CO--Level-3
Department of Homeland Security (DHS)
DHS Daily Open Source Infrastructure Report Contact Information
About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday through Friday] summary of open-source published information concerning significant critical infrastructure issues. The DHS Daily Open Source Infrastructure Report is archived for ten days on the Department of Homeland Security Web site: http://www.dhs.gov/IPDailyReport
Content and Suggestions: Send mail to email@example.com or contact the DHS Daily Report Team at (703)387-2314
Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow instructions to Get e-mail updates when this information changes.
Removal from Distribution List: Send mail to firstname.lastname@example.org.
To report physical infrastructure incidents or to request information, please contact the National Infrastructure
Coordinating Center at email@example.com or (202) 282-9201.
To report cyber infrastructure incidents or to request information, please contact US-CERT at firstname.lastname@example.org or visit their Web page at www.us-cert.go v.
Department of Homeland Security Disclaimer
The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original source material.