Tuesday, October 29, 2013



Complete DHS Daily Report for October 29, 2013

Daily Report

Top Stories

 • Federal authorities seized a bitcoin wallet containing $28 million in bitcoins belonging to the man accused of running the Silk Road online black market. – CNN See item 8 below in the Banking and Finance Sector

 • Authorities arrested a man boarding a flight to Los Angeles from Montreal’s Trudeau airport, after allegedly finding a powder-like substance in his carry-on luggage which delayed flights to the U.S. October 27. – Niagara Falls Review

11. October 27, Niagara Falls Review – (International) Suspicious package at Montreal airport leads to arrest, delays flights. Authorities arrested a man after allegedly finding a powder-like substance in his carry-on luggage at the Montreal's Trudeau airport, while he was boarding a flight to Los Angeles, which delayed 16 flights to the U.S. and caused a nearly 5 hour evacuation of a neighborhood in LaSalle October 27. Source: http://www.niagarafallsreview.ca/2013/10/27/suspicious-package-at-montreal-airport-delays-us-flights

 • Crews began work the week of October 21 on a $1.5 billion, multi-year project designed to repair a critical underground aqueduct leading to New York City which leaks 15-35 million gallons of water a day. – Associated Press

26. October 25, Associated Press – (New York) $1.5B project to fix aqueduct serving NYC begins. Crews began work the week of October 21 on a $1.5 billion, multi-year project designed to repair a critical underground aqueduct leading to New York City which leaks 15-35 million gallons of water a day. The 85 mile long Delaware Aqueduct transports water from upstate New York to New York City, and the project is part of a larger plan to repair the region’s aging water supply system. Source: http://www.njherald.com/story/23788729/15b-project-to-fix-aqueduct-serving-nyc-begins

 • Crews reached full containment October 24 of California’s Rim Fire after it burned 257,314 acres in and around Yosemite National Park and destroyed several structures. – San Francisco Bay City News

38. October 25, San Francisco Bay City News – (California) Rim Fire in Yosemite fully contained this week. Crews reached full containment October 24 of California’s Rim Fire after it burned 257,314 acres in and around Yosemite National Park, destroyed 11 homes, 3 commercial properties, and 98 outbuildings. The fire, which started August 17, is estimated to cost more than $127 million. Source: http://sanbruno.patch.com/groups/politics-and-elections/p/rim-fre-in-yosemite-fully-contained-this-week

Details

Banking and Finance Sector

4. October 28, Softpedia – (International) 4 Dutch men arrested for allegedly using TorRAT to plunder bank accounts. Authorities in the Netherlands arrested four individuals charged with allegedly using the TorRAT remote access trojan and other Tor-based services to perform around 150 fraudulent online banking transactions, steal around $1.4 million, and launder the stolen money. Source: http://news.softpedia.com/news/4-Dutch-Men-Arrested-for-Allegedly-Using-TorRAT-to-Plunder-Bank-Accounts-394827.shtml

5. October 28, IDG News Service – (International) ATM malware may spread from Mexico to English-speaking world. Researchers at Symantec found that the Ploutus banking malware previously used to empty ATMs in Mexico has been translated into English. Two versions made for operating on different ATMs were identified, with the malware spread via manually inserting a CD boot disk into an ATM. Source: http://www.networkworld.com/news/2013/102813-atm-malware-may-spread-from-275276.html

6. October 26, Chicago Sun-Times – (Illinois) Suburban man indicted in $5.5 million fraud scheme. A grand jury in Chicago indicted two men for allegedly running a Ponzi-like scheme that defrauded about 25 investors of at least $5.5 million. Source: http://www.suntimes.com/news/metro/23357801-418/suburban-man-indicted-in-55-million-fraud-scheme.html

7. October 26, Savannah Morning News – (Georgia) Former bank officer pleads guilty in First National fraud. A former officer of the failed First National Bank pleaded guilty before a court in Savannah October 25 to a charge of bank fraud. The failure of the bank in 2010 cost the Federal Deposit Insurance Corporation more than $90 million, according to prosecutors. Source: http://savannahnow.com/news/2013-10-25/former-bank-officer-pleads-guilty-first-national-fraud

8. October 25, CNN – (International) Feds seize $28 million in bitcoins from alleged Silk Road operator. Federal authorities seized a bitcoin wallet containing $28 million in bitcoins belonging to the man accused of running the Silk Road online black market. Source: http://money.cnn.com/2013/10/25/news/economy/bitcoins-silk-road/

Information Technology Sector

43. October 28, Help Net Security – (International) Researchers sinkhole several Cryptolocker C&Cs. Researchers at Kaspersky Labs were able to sinkhole three domains serving as command and control (C&C) servers used by the Cryptolocker ransomware. Source: http://www.net-security.org/malware_news.php?id=2613

44. October 28, Softpedia – (International) Buffer hacked, attackers send out spam via customer accounts. Hackers were able to compromise systems belonging to social media scheduling service Buffer October 26, sending out spam messages through customers’ Twitter and Facebook accounts. Facebook reported that 30,000 of its customers with connected Buffer accounts were affected. Source: http://news.softpedia.com/news/Buffer-Hacked-Attackers-Send-Out-Spam-via-Customer-Accounts-394698.shtml

45. October 28, The Register – (International) IBM warns Storwize arrays can DELETE ALL DATA. IBM warned owners of its Storwize arrays, Flex System V7000, and SAN Volume Controllers that administrator access could be obtained without authentication using vulnerabilities in Apache Struts, allowing an unauthorized user to make modifications to the configuration, including deleting all data. Source: http://www.theregister.co.uk/2013/10/28/ibm_storwize_arrays_at_risk_of_complete_deletion/

46. October 28, The Register – (International) Tenda seals shut router backdoor found by D-Link hole-prober. Tenda released a patch that closes a backdoor vulnerability in three models of routers that could be used to take over a router and execute commands using a UDP packet with a special string. Source: http://www.theregister.co.uk/2013/10/28/tenda_bricksup_router_backdoor/

For another story, see item 4 above in the Banking and Finance Sector

Communications Sector

47. October 28, WCPO 9 Cincinnati – (Ohio) Cincinnati Bell reports most video issues fixed. Cincinnati Bell reported October 27 that the majority of the problems with its CBT Fioptics TV network have been repaired and alerted customers to solutions for partial restoration of service. The sporadic outage problem stemmed from a program guide that did not connect to customer’s set-top boxes and affected phone and Internet services. Source: http://www.wcpo.com/news/local-news/cincinnati-bell-reports-video-service-issues-across-tri-state