Wednesday, June 26, 2013 


Daily Report

Top Stories

  A significant portion of the source code for the Carberp banking trojan was leaked online, allowing attackers to create and use variants of it. – IDG News Service

8. June 25, IDG News Service – (International) Source code for Carberp financial malware gets leaked online. At least a significant portion of the source code for the Carberp banking trojan was leaked online, allowing attackers not part of the original group to create and use variants of it. Source: https://www.computerworld.com/s/article/9240327/Source_code_for_Carberp_financial_malware_gets_leaked_online

  The Porcine Epidemic Diarrhea Virus affecting young pigs has spiked to 199 sites in 13 States - nearly double the number of farms and other locations from early June. – Reuters

20. June 25, Reuters – (National) Deadly piglet virus spreads to nearly 200 U.S. farm sites. The Porcine Epidemic Diarrhea Virus affecting young pigs, and never before seen in North America, has spiked to 199 sites in 13 States - nearly double the number of farms and other locations from early June. Source: http://www.foxnews.com/health/2013/06/25/deadly-piglet-virus-spreads-to-nearly-200-us-farm-sites/

  The Florida Department of Education notified around 47,000 people that took part in a teacher preparation program that their personal information was publicly accessible online for 14 days. – Softpedia

29. June 24, Softpedia – (Florida) Details of teacher preparation participants compromised, Florida DOE warns. The Florida Department of Education notified about 47,000 people that took part in a teacher preparation program that their personal information was publicly accessible online for 14 days. An initial investigation revealed the data was accessed 23 times through Google although authorities do not believe any information was misused. Source: http://news.softpedia.com/news/Details-of-Teacher-Preparation-Participants-Compromised-Florida-DOE-Warns-363038.shtml

  A federal judge ordered State officials in California to move nearly 3,250 inmates out of two prisons because they are at high risk of contracting a potentially deadly airborne fungus. – Associated Press

32. June 24, Associated Press – (California) California must move inmates because of fungus, judge says. A federal judge ordered the State to move nearly 3,250 inmates out of two California prisons because they are at high risk of contracting a potentially deadly airborne fungus. The transfer was ordered for most blacks, Filipino, and medically at-risk inmates in order to prevent contraction of valley fever. Source: http://www.foxnews.com/us/2013/06/24/california-must-move-inmates-because-fungus-judge-says/

Details

Banking and Finance Sector

8. June 25, IDG News Service – (International) Source code for Carberp financial malware gets leaked online. At least a significant portion of the source code for the Carberp banking trojan was leaked online, allowing attackers not part of the original group to create and use variants of it. Source: https://www.computerworld.com/s/article/9240327/Source_code_for_Carberp_financial_malware_gets_leaked_online

9. June 25, New York Daily News – (New York) NYPD cops pinch bank robbery suspect fleeting heist of Queens Capitol One branch. Police in New York City arrested a man suspected of robbing at least four banks in Queens and Nassau County after the suspect attempted to flee a robbery. Source: https://www.nydailynews.com/new-york/queens/serial-bank-robber-nabbed-fleeing-queens-heist-article-1.1381601

10. June 24, Modesto Bee – (California) Empire man pleads guilty to bankruptcy fraud. Two men involved with Horizon Property Holdings LLC of Beverly Hills pleaded guilty for their role in a home foreclosure rescue scheme that defrauded at least $5 million from over 1,000 clients. Source: http://www.modbee.com/2013/06/24/2777784/empire-man-pleads-guilty-to-bankruptcy.html

11. June 22, WPMT 43 York – (Pennsylvania) Police: Serial bank robber arrested after landing at HIA. A Peach Bottom man was arrested and charged with two bank robberies in York and Mount Joy Township, and was suspected of other robberies in the area. Source: http://fox43.com/2013/06/22/police-serial-bank-robber-arrested-after-landing-at-hia/

Information Technology Sector

33. June 25, Help Net Security – (International) Researchers reveal tricks for Cutwail’s endurance. Researchers at Trend Micro released an analysis of the Cutwail/Pushdo botnet, including how it disguises communication and its command and control (C&C) architecture. Source: https://www.net-security.org/malware_news.php?id=2523

34. June 25, Softpedia – (International) Chinese hackers use PinkStats malware against South Korean organizations. Seculert published the first part in a report on a Chinese-speaking cybercrime group that has targeted various organizations and governments, providing details of a campaign that used PinkStats malware against South Korean organizations. Source: http://news.softpedia.com/news/Chinese-Hackers-Use-PinkStats-Malware-Against-South-Korean-Organizations-363379.shtml

For another story, see item 8 above in Top News or Banking and Finance Sector

Communications Sector

35. June 25, Huntington Herald-Dispatch – (West Virginia) Mortenson Broadcasting reports $135,000 wire theft. Mortenson Broadcasting Company in Huntington, West Virginia, reported the theft of coaxial cable, a transmitter, and other equipment worth more than $135,000 sometime during June 18-21. Source: http://www.herald-dispatch.com/news/x2080110356/Mortenson-Broadcasting-reports-135-000-wire-theft



Department of Homeland Security (DHS)
DHS Daily Open Source Infrastructure Report Contact Information

About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday through Friday] summary of open-source published information concerning significant critical infrastructure issues. The DHS Daily Open Source Infrastructure Report is archived for ten days on the Department of Homeland Security Web site: http://www.dhs.gov/IPDailyReport

Contact Information

Content and Suggestions: Send mail to cikr.productfeedback@hq.dhs.gov or contact the DHS Daily Report Team at (703)387-2314

Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow instructions to Get e-mail updates when this information changes.

Removal from Distribution List:     Send mail to support@govdelivery.com.


Contact DHS

To report physical infrastructure incidents or to request information, please contact the National Infrastructure
Coordinating Center at  nicc@dhs.gov or (202) 282-9201.

To report cyber infrastructure incidents or to request information, please contact US-CERT at  soc@us-cert.gov or visit their Web page at  www.us-cert.go v.

Department of Homeland Security Disclaimer

The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original source material.


Tuesday, June 25, 2013


Daily Report

Top Stories

  Xcel Energy crews in Minnesota worked to restore power to the remaining 42,000 customers throughout the State after storms knocked out electricity to a reported 554,000 customers. – KMSP 9 Minneapolis

1. June 24, KMSP 9 Minneapolis – (Minnesota) Power outage update: 42,000 remain without power in Twin Cities. Xcel Energy crews in Minnesota worked June 24 to restore power to the remaining 42,000 customers throughout the State after storms knocked out electricity to a reported 554,000 customers. Source: http://www.myfoxtwincities.com/story/22652705/power-outages-twin-cities-jun-21-2013

  More than 10,000 people in the western United States have received Hepatitis A vaccines since news broke of an outbreak linked to Townsend Farms frozen berry mixes. – Food Safety News

17. June 24, Food Safety News – (National) Thousands sought vaccines following Townsend Farms hep A outbreak. More than 10,000 people in the western United States have received hepatitis A vaccines since news broke on May 31 of an outbreak linked to Townsend Farms frozen berry mixes sold at Costco stores. Source: http://www.foodsafetynews.com/2013/06/thousands-sought-vaccines-following-townsend-farms-hep-a-outbreak/

Firefighters continued to battle Colorado’s 75,150-acre West Fork Complex fire that consists of the West Fork Fire, Windy Pass Fire, and Papoose Fire burning in the San Juan and Rio Grande national forests. – KUSA 9 Denver

24. June 24, KUSA 9 Denver – (Colorado) West Fork Complex fire rages on, Colorado town braces for long evacuation. Firefighters continued to battle Colorado’s West Fork Complex fire that consists of the West Fork Fire, Windy Pass Fire, and Papoose Fire burning on the San Juan and Rio Grande national forests. The fire burned 75,150 acres by June 24 as officials estimated full extinguishment will most likely take months. Source: http://www.9news.com/news/local/article/341973/222/West-Fork-Complex-Fire-grows-to-over-70000-acres

  The biggest dam removal project in California’s history began June 21 after State inspectors reported deposits of silt made the Sam Clemente Dam unable to withstand a major earthquake. – KSBW 8 Salinas 

49. June 21, KSBW 8 Salinas – (California) Carmel River dam to be torn down; biggest dam demolishing project in Calif. history. The biggest dam removal project in California’s history began June 21 after State inspectors reported deposits of silt made the Sam Clemente Dam in Carmel unusable and unable to withstand a major earthquake. The dam will be torn down by 2016 with a project cost of $84 million. Source: http://www.ksbw.com/news/central-california/monterey/carmel-river-dam-to-be-torn-down-biggest-dam-project-in-calif-history/-/5738820/20668228/-/k8kimbz/-/index.html

Details

Banking and Finance Sector

7. June 23, Fayette Citizen – (Georgia) FDIC sues directors of failed F’ville bank for $10.3M. The Federal Deposit Insurance Corporation filed suit against the former board of directors of the failed Southern Community Bank in Fayetteville for $10.3 million for allegedly being negligent in their management of the bank. Source: http://www.thecitizen.com/articles/06-23-2013/fdic-sues-directors-failed-f’ville-bank-103m

8. June 22, KXAS 5 Fort Worth – (Texas) FBI makes arrest in “Mesh Mask Bandit” case. A man suspected of being the “Mesh Mask Bandit” responsible for 19 robberies in north Texas since December 2012 was arrested June 22. Source: http://www.nbcdfw.com/news/local/FBI-Makes-Arrest-in-Mesh-Mask-Bandit-Case-212545321.html

9. June 21, Softpedia – (International) Information-stealing Fareit malware used against Wells Fargo customers. Bitdefender identified a spam campaign targeting Wells Fargo customers that uses the Fareit information stealing malware. The malware is also capable of using infected devices for distributed denial of service (DDoS) attacks and downloading other malware. Source: http://news.softpedia.com/news/Information-Stealing-Fareit-Malware-Used-Against-Wells-Fargo-Customers-362492.shtml

10. June 21, American Banker – (Georgia) Former Ga. bank exec pleads guilty to fraud. The former chief executive of the failed Tifton Banking Company pleaded guilty to falsifying loans after receiving Troubled Asset Relief Program (TARP) funds, costing the bank, the Small Business Administration, and taxpayers a total of $6.16 million. Source: http://www.americanbanker.com/issues/178_120/former-georgia-bank-executive-pleads-guilty-to-fraud-1060074-1.html

For another story, see item 34 below in the Information Technology Sector

Information Technology Sector

31. June 24, V3.co.uk – (International) Android Fakedefender malware attacks Google smartphone and tablet users. Researchers at Sympantec discovered a new piece of ransomware affecting Android phones that poses as a legitimate security app, dubbed Android.Fakedefender. Source: http://www.v3.co.uk/v3-uk/news/2276963/android-fakedefender-malware-attacks-google-smartphone-and-tablet-users

32. June 24, The H – (International) WordPress hardened with XSS, DoS and SSRF fixes. WordPress released an update to its open source blogging software that closes 12 bugs, 7 of which are security issues. The developers strongly encouraged all users to update to the new version. Source: http://www.h-online.com/security/news/item/WordPress-hardened-with-XSS-DoS-and-SSRF-fixes-1895188.html

33. June 22, Softpedia – (International) DNS provider Zerigo hit by DDOS attack. Cloud-based DNS provider Zerigo was the target of a distributed denial of service (DDoS) attack that took servers offline June 21. Source: http://news.softpedia.com/news/DNS-Provider-Zerigo-Hit-by-DDOS-Attack-362771.shtml

34. June 22, Softpedia – (International) DirtJumper malware version dubbed “Drive” sports powerful DDOS engine. Researchers at Arbor Networks identified a new variant of the DirtJumper malware dubbed “Drive” with much more powerful distributed denial of service (DDoS) capabilities. It has been observed in attacks against commercial and financial targets. Source: http://news.softpedia.com/news/DirtJumper-Malware-Version-Dubbed-Drive-Sports-Powerful-DDOS-Engine-362833.shtml

35. June 21, The Register – (International) Facebook bug leaks contact info of 6 million users. An error in Facebook’s Download Your Information (DYI) tool caused the contact information of potential contacts to be associated with other users’ data, which would be downloaded along with an individual user’s information through the tool. Source: http://www.theregister.co.uk/2013/06/21/facebook_contact_leak/

36. June 21, Help Net Security – (International) Phishing attacks impacted 37.3 million users last year. Research from Kaspersky Lab found that phishing attacks increased 87 percent in 2012, affecting 37.3 million users. Source: https://www.net-security.org/secworld.php?id=15120

Communications Sector

37. June 21, WPVI 6 Philadelphia – (Pennsylvania) Communication tower damaged by fire brought down safely in Bensalem. A June 21 communications tower fire in Bensalem prompted the evacuation of dozens of residents from the Bensalem Woods apartment complex and the establishment of a safety perimeter as crews let the fire extinguish itself before successfully bringing down the tower by a crane several hours later. Source: http://abclocal.go.com/wpvi/story?section=news/local&id=9146834



Department of Homeland Security (DHS)
DHS Daily Open Source Infrastructure Report Contact Information

About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday through Friday] summary of open-source published information concerning significant critical infrastructure issues. The DHS Daily Open Source Infrastructure Report is archived for ten days on the Department of Homeland Security Web site: http://www.dhs.gov/IPDailyReport

Contact Information

Content and Suggestions: Send mail to cikr.productfeedback@hq.dhs.gov or contact the DHS Daily Report Team at (703)387-2314

Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow instructions to Get e-mail updates when this information changes.

Removal from Distribution List:     Send mail to support@govdelivery.com.


Contact DHS

To report physical infrastructure incidents or to request information, please contact the National Infrastructure
Coordinating Center at  nicc@dhs.gov or (202) 282-9201.

To report cyber infrastructure incidents or to request information, please contact US-CERT at  soc@us-cert.gov or visit their Web page at  www.us-cert.go v.

Department of Homeland Security Disclaimer

The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original source material.