Complete DHS Daily Report for October 23, 2013
Daily Report
Top Stories
• Authorities are continuing to investigate
the incident a laptop theft that compromised 729,000 San Gabriel Valley,
California-based AHMC hospital patient files. – Los Angeles Times
19.
October 21, Los Angeles Times –
(California) Laptop theft compromise 729,000 hospital patient files. San
Gabriel Valley-based AHMC notified 729,000 patients that their personal and
health information may have been compromised after two password-protected
laptops were stolen from an office on a medical campus October 12. Authorities
do not believe the information was accessed or used, and are continuing to
investigate the incident. Source: http://www.latimes.com/local/la-me-hospital-theft-20131022,0,1936078.story#axzz2iSURjiZb
• A student at a middle school in Sparks,
Nevada, shot and killed a teacher and wounded two other students before
shooting and killing himself. –Associated Press
21.
October 22, Associated Press –
(Nevada) Teacher called hero in fatal Nevada school shooting. A student
killed himself after he shot and killed a teacher and wounded two other
students from Sparks Middle School in Nevada October 21 when he entered school
grounds and began firing. The middle school and adjacent elementary school was
closed for the remainder of the week while authorities investigate. Source: http://news.msn.com/crime-justice/teacher-called-hero-in-fatal-nevada-school-shooting
• Eight officers and 13 enlisted members of an
Arizona Air National Guard were indicted on charges they falsified military
records to defraud the U.S. government for additional pay – Reuters
22.
October 21, Reuters – (Arizona) National
Guard members indicted on fraud charges. Eight officers and 13 enlisted
members of an Arizona Air National Guard unit in Tucson were indicted October
21 on charges they falsified military records to defraud the U.S. government
out of hundreds of thousands of dollars of additional pay meant for troops on
deployment. The individuals allegedly used fake home addresses to collect extra
pay from November 2007 through September 2010, earning over $100,000. Source: http://news.msn.com/crime-justice/national-guard-members-indicted-on-fraud-charges
• Google canceled several Developer accounts
and removed several Android apps from its Google Play store found to be using
an unnamed mobile app library dubbed Vulna. – The Register See item 25 below in the Information Technology Sector
Details
Banking and Finance Sector
8. October
22, U.S. Securities and Exchange Commission – (International) SEC
charges Diebold with FCPA violations. The U.S. Securities and Exchange
Commission charged ATM and bank security systems manufacturer Diebold with
violating the Foreign Corrupt Practices Act by allegedly bribing
government-owned bank officials in China and Indonesia and then recording the
bribes as legitimate expenses, in addition to allegedly falsifying records to
hide $1.2 million in bribes to employees of private banks in Russia. Diebold
agreed to pay more than $48 million to resolve the charges and to resolve U.S.
Department of Justice criminal charges related to the violations. Source: http://www.sec.gov/News/PressRelease/Detail/PressRelease/1370539977273
9. October
22, Softpedia – (International) Eastern European banking systems targeted by
hackers in Apollo campaign. Trend Micro published a white paper on a
cybercrime campaign dubbed Apollo that is using a variant of the Zeus trojan to
steal banking credentials and other information from customers of major eastern
European banks. The campaign also utilizes tools such as Pony Loader, Ann
Loader, and the Bleeding Life exploit pack. Source: http://news.softpedia.com/news/Eastern-European-Banking-Systems-Targeted-by-Hackers-in-Apollo-Campaign-393332.shtml
Information Technology Sector
25. October
22, The Register – (International) Google pulls all Android apps linked to
adware badness THAT MUST NOT BE NAMED. Google removed several Android apps
from its Google Play store found to be using an unnamed mobile app library
dubbed Vulna after it was reported that the library poses a major security
risk. Google also canceled several Developer accounts associated with apps
found to be exploiting the app library vulnerability. Source: http://www.theregister.co.uk/2013/10/22/vulna_mobile_ad_threat_followup/
26. October
22, Softpedia – (International) Cutwail cybercriminals replace BlackHole with
Magnitude exploit kit. Researchers at Dell’s SecureWorks reported that a
cybercriminal group that uses the Cutwail spam botnet to distribute malware has
switched from using the BlackHole exploit kit to using Magnitude (Popads)
following the arrest of BlackHole’s alleged creator. Trend Micro also reported
that all major campaigns utilizing BlackHole have ended following the arrest.
Source: http://news.softpedia.com/news/Cutwail-Cybercriminals-Replace-BlackHole-with-Magnitude-Exploit-Kit-393271.shtml
27. October
22, The Register – (International) D-Link hole-prober finds ‘backdoor’ in
Chinese wireless routers. Security researchers reported finding a backdoor
in Tenda wireless routers that could be used by attackers to take over the
router and execute commands via a UDP packet with a special string. Source: http://www.theregister.co.uk/2013/10/22/tenda_router_backdoor/
28. October
21, The Register – (International) Facebook switches itself off and on again after
GLOBAL meltdown. Facebook suffered an outage October 21 that prevented
users from posting comments and using other functions for around 2 hours.
Source: http://www.theregister.co.uk/2013/10/21/facebook_back_online_outage/
29. October
21, The Register – (International) Now swallow: Microsoft hands out cure for
Surface RT tabs killed by Win 8.1. Microsoft released a recover image for
Surface RT tablets that were affected by a faulty Windows 8.1 upgrade that
caused some tablets to boot to an error message. Source: http://www.theregister.co.uk/2013/10/21/surface_rt_recovery_image/
Communications Sector
Nothing to
report