Tuesday, July 16, 2013


Complete DHS Daily Report for July 16, 2013

Daily Report
 
Top Stories

 • Portland General Electric stated their Boardman, Oregon coal plant will likely be offline for at least a month for repairs after the plant lost its output July 1. – Portland Oregonian

1.  July 12, Portland Oregonian – (Oregon) PGE’s Boardman coal plant offline after pipe shock. Portland General Electric stated their Boardman coal plant will likely be offline for at least a month for repairs after the plant lost its output July 1 when a temperature shock in a 36-inch steam pipe knocked the pipe out of its hangars. Source: http://www.oregonlive.com/business/index.ssf/2013/07/pges_boardman_coal_plant_offli.html

 • Antero Resources was ordered to cease operations at their Hinterer 1H well in West Virginia due to an ongoing investigation into the cause of an explosion that burned five workers. – Associated Press

2.  July 12, Associated Press – (West Virginia) DEP orders Antero to keep W.Va. well pad idle as investigation continues on blast that hurt 5. Antero Resources was ordered to cease operations at their Hinterer 1H well near New Milton in Doddridge County due to an ongoing investigation into the cause of an explosion that burned five workers. The company is required to submit a report to the Department of Environmental Protection’s Office of Oil and Gas by July 31 explaining the cause of the accident and a safety plan to resume operations. Source: http://www.tribtown.com/view/story/d7243081c87e4fdcb452b3069f704c4b/WV--Gas-Well-Explosion

• All northbound lanes of the 5 Freeway in Los Angeles, California, were closed for more than seven hours after a gasoline tanker overturned and spilled thousands of gallons of gas. – Los Angeles Times

12. July 13, Los Angeles Times – (California) Overturned gasoline tanker truck sets L.A. River ablaze. All northbound lanes of the 5 Freeway at the interchange of the 2 Freeway in Los Angeles were closed more than seven hours after a gasoline tanker overturned and spilled thousands of gallons of gas. A significant amount of burning fuel made its way through storm drains and into the Los Angeles River prompting firefighters to deploy across a mile-long stretch of the river to monitor the spill. Source: http://www.latimes.com/news/local/la-me-0714-freeway-fire-20130714,0,1665920.story

 • The Screven County, Georgia dam burst July 13 and nearly completely drained, causing damage to roads and railroad tracks. – WSAV 3 Savannah

47. July 14, WSAV 3 Savannah – (Georgia) Screven County pond dam bursts. The Screven County dam located at Herbert Jacobs Pond burst July 13 and nearly completely drained, causing damage to roads and railroad tracks. Source: http://www.wsav.com/story/22834585/screven-county-dam-fails

Details
Banking and Finance Sector

7. July 15, Dark Reading – (National) Report: Phone fraud plagues call centers at financial institutions. A report by the Aite Group found that telephone-based social engineering attacks seeking bank customers’ personal information is becoming a popular method of fraud. Attackers use some personal information to extract more from call center representatives for use in account takeover and other fraud. Source: http://www.darkreading.com/government-vertical/report-phone-fraud-plagues-call-centers/240158241

8. July 15, Softpedia – (International) Android malware “hardcore88” poses as Commonwealth Bank security app. Researchers at IB Group discovered a mobile banking trojan dubbed hardcore88 for sale on underweb forums that poses as a legitimate security app for Australia’s Commonwealth Bank. The trojan can block calls by the bank to victims and intercept one-time passwords sent via SMS. Source: http://news.softpedia.com/news/Android-Malware-Hardcore88-Poses-as-Commonwealth-Bank-Security-App-368124.shtml

Information Technology Sector
35. July 15, Softpedia – (International) Janicab Mac malware uses RLO to hide file extension. Researchers at F-Secure discovered a piece of malware for Macs dubbed Backdoor:Python/Janicab.A that uses the right-to-left override (RLO) character to mask file extensions. The malware aims to take screenshots and record audio and gets its command server’s address via YouTube videos and other Web sites. Source: http://news.softpedia.com/news/Janicab-Mac-Malware-Uses-RLO-to-Hide-File-Extension-368292.shtml

36. July 15, Softpedia – (International) Expert finds way to hijack Facebook accounts by exploiting email claim flaw. A security researcher found and reported a vulnerability that could have allowed attackers to hijack Facebook accounts by adding an email address of another user. Facebook addressed the vulnerability after being notified. Source: http://news.softpedia.com/news/Expert-Finds-Way-to-Hijack-Facebook-Accounts-by-Exploiting-Email-Claim-Flaw-Video-368273.shtml
37. July 15, The Register – (International) Botch Tuesday: Redmond frags video codec. Users reported issues with video playback and some computer games due to a video codec update issued as part of Microsoft’s July 9 Patch Tuesday updates. Source: http://www.theregister.co.uk/2013/07/15/botch_tuesday_redmond_frags_video_codec/

Communications Sector
38. July 13, Parkersburg News and Sentinel – (West Virginia) Area phone services interrupted. Phone customers in the Parkersburg area lost telephone and some emergency services July 12 from an unknown cause. Sprint communication officials reported phone services outages in Parkersburg and surrounding counties were the result of service tower upgrades, while other service providers searched for separate causes. Source: http://newsandsentinel.com/page/content.detail/id/576017/Area-phone-services-interrupted.html?nav=5054

39. July 12, WTAW 1620 AM College Station – (Texas) Local AT&T cell service problems resolved. AT&T cellular customers in College Station lost service for a few hours July 12 due to a network outage that also affected Galveston and Houston before service repairs were completed. AT&T encouraged customers to reset their phones to reconnect to the network. Source: http://wtaw.com/2013/07/12/local-att-cell-service-problems-resolved/

Department of Homeland Security (DHS)

DHS Daily Open Source Infrastructure Report Contact Information

 About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday through Friday] summary of open-source published information concerning significant critical infrastructure issues. The DHS Daily Open Source Infrastructure Report is archived for ten days on the Department of Homeland Security Web site: http://www.dhs.gov/IPDailyReport

Contact Information

Content and Suggestions: Send mail to cikr.productfeedback@hq.dhs.gov or contact the DHS Daily Report Team at (703)387-2314

Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow instructions to Get e-mail updates when this information changes.

Removal from Distribution List:     Send mail to support@govdelivery.com.

Contact DHS

To report physical infrastructure incidents or to request information, please contact the National Infrastructure

Coordinating Center at  nicc@dhs.gov or (202) 282-9201.

To report cyber infrastructure incidents or to request information, please contact US-CERT at  soc@us-cert.gov or visit their Web page at  www.us-cert.go v.

 Department of Homeland Security Disclaimer

The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original source material.