Friday, May 17, 2013   

Complete DHS Daily Report for May 17, 2013

Daily Report

Top Stories

 • Around 20,000 homes and businesses in Granbury, Texas, lost power after tornadoes formed in the area, destroying structures and leaving at least 6 dead and dozens injured. – Associated Press

3. May 16, Associated Press – (Texas) Texas tornado winds believed to be up to 200mph. Around 20,000 homes and businesses in Granbury lost power after tornadoes formed in the area, destroying structures and leaving at least 6 dead and dozens injured. Source: http://www.myfoxphoenix.com/story/22266798/at-least-6-confirmed-dead-in-texas-tornado

 • A seizure of funds tied to Bitcoin exchange Mt. Gox was ordered by the U.S. District Court in Maryland for allegedly engaging in currency trading without being registered as a money transmitting business. – IDG News Wire See item 9 below in the Banking and Finance Sector

 • Piedmont Healthcare in Stateville, North Carolina, will notify close to 2,000 patients of a potential data breach after they discovered a Web site hosting company they utilized for bill payments online was compromised. – WSOC-TV 9 Charlotte

24. May 15, WSOC-TV 9 Charlotte – (North Carolina) Hospital says credit card information for 2K patients possibly compromised. Piedmont HealthCare in Statesville will notify close to 2,000 patients of a potential data breach after they discovered E-dreamz, a Web site hosting company they utilized for bill payments online, was compromised. The hospital said credit card information may have been exposed as well as patients’ personal information but not medical information. Source: http://www.wsoctv.com/news/news/local/hospital-says-credit-card-information-2k-patients-/nXsCT/

 • Thirteen Cleveland, Ohio firefighters were charged by authorities for allegedly paying co-workers to work unauthorized shifts that were assigned to them from 2006 through 2010. – WKYC 3 Cleveland

31. May 15, WKYC 3 Cleveland – (Ohio) 13 Cleveland firefighters indicted for theft, soliciting. Thirteen Cleveland firefighters were charged after an investigation uncovered they were paying co-workers to work unauthorized shifts that were assigned to them from 2006 through 2010. At minimum each firefighter failed to work 2,000 hours of their scheduled time, while still accumulating sick leave, vacation time, clothing allowance, and pension money. Source: http://www.wkyc.com/news/article/299756/33/13-Cleveland-firefighters-indicted-for-theft-soliciting

Details

Banking and Finance Sector

8. May 16, WDIV 4 Detroit – (Michigan) Feds: Detroit business paying with crack instead of cash. The owners of the Big C Tire Shop in Detroit were charged with cashing $100,000 in counterfeit Post Office paychecks. Federal investigators also reported that the shop distributed drugs to employees. Source: http://www.clickondetroit.com/news/feds-detroit-business-paying-with-crack-instead-of-cash/-/1719418/20163870/-/1uof01/-/index.html

9. May 15, IDG News Service – (International) Mt. Gox accused of violating US money transfer regulations. The U.S. District Court in Maryland ordered the seizure of funds tied to Bitcoin exchange Mt. Gox for allegedly engaging in currency trading without being registered as a money transmitting business. Source: http://www.networkworld.com/news/2013/051613-mt-gox-accused-of-violating-269824.html

10. May 15, KESQ 2 Palm Springs – (California) Hundreds of Valley customers’ banking information compromised. A man was arrested for allegedly installing a skimming device at an ATM in La Quinte and creating fraudulent access cards with the data. Source: http://www.kesq.com/cbs/hundreds-of-valley-customers-banking-information-compromised/-/10886692/20169668/-/jvu8qez/-/index.html

Information Technology Sector

32. May 16, Help Net Security – (International) Researchers reveal OpUSA attackers’ MO. Trend Micro researchers analyzed attacks in the recent OpUSA campaign and found that attackers compromised some sites ahead of time with compromised URLs. Source: http://www.net-security.org/secworld.php?id=14918

33. May 16, The H – (International) Exploit for local Linux kernel bug in circulation. A Linux kernel bug not previously addressed as a security issue affects some versions of Linux by allowing access to almost any memory area. Source: http://www.h-online.com/security/news/item/Exploit-for-local-Linux-kernel-bug-in-circulation-Update-1863892.html

34. May 15, Threatpost – (International) PushDo malware resurfaces with DGA capabilities. The PushDo trojan associated with the Cutwail botnet was found to now incorporate a domain generation algorithm (DGA) to avoid detection and increase resiliency. Source: http://threatpost.com/pushdo-malware-resurfaces-with-dga-capabilities/

Communications Sector

35. May 16, KCRG 9 Cedar Rapids – (Iowa) Cell phone service outages reported across eastern Iowa. Service was partially restored to people that experienced Internet and/or cell phone service outages in several Iowa cities. A cut fiber optic cable in central Iowa was the cause of the outages and impacted customers with Mediacom telephone and Internet service as well as U.S. Cellular customers. Source: http://www.kcrg.com/news/local/Some-Cedar-Rapids-area-Cell-Phone-Towers-Offline-207645021.html

36. May 15, WFMY 2 Greensboro – (North Carolina) Phone outages might affect 911 service in SE Alamance County. AT&T customers in southeastern Alamance County experienced phone outages which affected emergency services for landline customers. Authorities are investigating the cause of the outage and do not have an estimated time for restoration of services. Source: http://www.digtriad.com/news/article/284872/57/SE-Alamance-Co-Experiencing-Phone-Outages



Department of Homeland Security (DHS)
DHS Daily Open Source Infrastructure Report Contact Information

About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday through Friday] summary of open-source published information concerning significant critical infrastructure issues. The DHS Daily Open Source Infrastructure Report is archived for ten days on the Department of Homeland Security Web site: http://www.dhs.gov/IPDailyReport

Contact Information

Content and Suggestions: Send mail to cikr.productfeedback@hq.dhs.gov or contact the DHS Daily Report Team at (703)387-2314

Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow instructions to Get e-mail updates when this information changes.

Removal from Distribution List:     Send mail to support@govdelivery.com.


Contact DHS

To report physical infrastructure incidents or to request information, please contact the National Infrastructure
Coordinating Center at  nicc@dhs.gov or (202) 282-9201.

To report cyber infrastructure incidents or to request information, please contact US-CERT at  soc@us-cert.gov or visit their Web page at  www.us-cert.go v.

Department of Homeland Security Disclaimer

The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original source material.