Wednesday, October 23, 2013



Complete DHS Daily Report for October 23, 2013

Daily Report

Top Stories

 • Authorities are continuing to investigate the incident a laptop theft that compromised 729,000 San Gabriel Valley, California-based AHMC hospital patient files. – Los Angeles Times

19. October 21, Los Angeles Times – (California) Laptop theft compromise 729,000 hospital patient files. San Gabriel Valley-based AHMC notified 729,000 patients that their personal and health information may have been compromised after two password-protected laptops were stolen from an office on a medical campus October 12. Authorities do not believe the information was accessed or used, and are continuing to investigate the incident. Source: http://www.latimes.com/local/la-me-hospital-theft-20131022,0,1936078.story#axzz2iSURjiZb

 • A student at a middle school in Sparks, Nevada, shot and killed a teacher and wounded two other students before shooting and killing himself. –Associated Press

21. October 22, Associated Press – (Nevada) Teacher called hero in fatal Nevada school shooting. A student killed himself after he shot and killed a teacher and wounded two other students from Sparks Middle School in Nevada October 21 when he entered school grounds and began firing. The middle school and adjacent elementary school was closed for the remainder of the week while authorities investigate. Source: http://news.msn.com/crime-justice/teacher-called-hero-in-fatal-nevada-school-shooting

 • Eight officers and 13 enlisted members of an Arizona Air National Guard were indicted on charges they falsified military records to defraud the U.S. government for additional pay – Reuters

22. October 21, Reuters – (Arizona) National Guard members indicted on fraud charges. Eight officers and 13 enlisted members of an Arizona Air National Guard unit in Tucson were indicted October 21 on charges they falsified military records to defraud the U.S. government out of hundreds of thousands of dollars of additional pay meant for troops on deployment. The individuals allegedly used fake home addresses to collect extra pay from November 2007 through September 2010, earning over $100,000. Source: http://news.msn.com/crime-justice/national-guard-members-indicted-on-fraud-charges

 • Google canceled several Developer accounts and removed several Android apps from its Google Play store found to be using an unnamed mobile app library dubbed Vulna. – The Register See item 25 below in the Information Technology Sector

Details

Banking and Finance Sector

8. October 22, U.S. Securities and Exchange Commission – (International) SEC charges Diebold with FCPA violations. The U.S. Securities and Exchange Commission charged ATM and bank security systems manufacturer Diebold with violating the Foreign Corrupt Practices Act by allegedly bribing government-owned bank officials in China and Indonesia and then recording the bribes as legitimate expenses, in addition to allegedly falsifying records to hide $1.2 million in bribes to employees of private banks in Russia. Diebold agreed to pay more than $48 million to resolve the charges and to resolve U.S. Department of Justice criminal charges related to the violations. Source: http://www.sec.gov/News/PressRelease/Detail/PressRelease/1370539977273

9. October 22, Softpedia – (International) Eastern European banking systems targeted by hackers in Apollo campaign. Trend Micro published a white paper on a cybercrime campaign dubbed Apollo that is using a variant of the Zeus trojan to steal banking credentials and other information from customers of major eastern European banks. The campaign also utilizes tools such as Pony Loader, Ann Loader, and the Bleeding Life exploit pack. Source: http://news.softpedia.com/news/Eastern-European-Banking-Systems-Targeted-by-Hackers-in-Apollo-Campaign-393332.shtml

Information Technology Sector

25. October 22, The Register – (International) Google pulls all Android apps linked to adware badness THAT MUST NOT BE NAMED. Google removed several Android apps from its Google Play store found to be using an unnamed mobile app library dubbed Vulna after it was reported that the library poses a major security risk. Google also canceled several Developer accounts associated with apps found to be exploiting the app library vulnerability. Source: http://www.theregister.co.uk/2013/10/22/vulna_mobile_ad_threat_followup/

26. October 22, Softpedia – (International) Cutwail cybercriminals replace BlackHole with Magnitude exploit kit. Researchers at Dell’s SecureWorks reported that a cybercriminal group that uses the Cutwail spam botnet to distribute malware has switched from using the BlackHole exploit kit to using Magnitude (Popads) following the arrest of BlackHole’s alleged creator. Trend Micro also reported that all major campaigns utilizing BlackHole have ended following the arrest. Source: http://news.softpedia.com/news/Cutwail-Cybercriminals-Replace-BlackHole-with-Magnitude-Exploit-Kit-393271.shtml

27. October 22, The Register – (International) D-Link hole-prober finds ‘backdoor’ in Chinese wireless routers. Security researchers reported finding a backdoor in Tenda wireless routers that could be used by attackers to take over the router and execute commands via a UDP packet with a special string. Source: http://www.theregister.co.uk/2013/10/22/tenda_router_backdoor/

28. October 21, The Register – (International) Facebook switches itself off and on again after GLOBAL meltdown. Facebook suffered an outage October 21 that prevented users from posting comments and using other functions for around 2 hours. Source: http://www.theregister.co.uk/2013/10/21/facebook_back_online_outage/

29. October 21, The Register – (International) Now swallow: Microsoft hands out cure for Surface RT tabs killed by Win 8.1. Microsoft released a recover image for Surface RT tablets that were affected by a faulty Windows 8.1 upgrade that caused some tablets to boot to an error message. Source: http://www.theregister.co.uk/2013/10/21/surface_rt_recovery_image/

Communications Sector

Nothing to report