Tuesday, November 5, 2013



Complete DHS Daily Report for November 5, 2013

Daily Report

Top Stories

 • Nearly 200,000 customers lost power in Seattle November 2 due to powerful winds. – Seattle Times

1. November 2, Seattle Times – (Washington) Thousands lose power as powerful winds hit region. Crews worked to restore service as utility companies around the region reported nearly 200,000 customers lost power all over Seattle November 2 due to strong winds. Source: http://blogs.seattletimes.com/today/2013/11/west-seattle-power-outage-expected-to-continue-into-afternoon/

 • Financial and private information of members of Congress, celebrities, and business executives was found to be exposed by cybercriminals after they compromised a limousine service. – Krebs on Security See item 6 below in the Financial Services Sector

 • The gunman who opened fire on and killed a TSA official at the Los Angeles International Airport remains in the hospital heavily sedated and under close guard. – Associated Press

13. November 4, Associated Press – (California) LAX shooter remains heavily sedated, under guard. A man who opened fire on employees at the Los Angeles International Airport on November 1, killing a Transportation Security Administration (TSA) officer and wounding three others, is reported to have acted alone in a conscious decision to try to kill TSA officers. The FBI continues to investigate the incident. Source: http://news.msn.com/crime-justice/gunman-told-police-he-acted-alone-in-lax-shooting

 • Twenty-one children and one bus driver were injured after a Devall Middle School and Chamberlin Elementary School bus crashed in Baton Rouge Parish, Louisiana. – Baton Rouge

31. November 1, WAFB 9 Baton Rouge – (Louisiana) 22 injured in school bus crash, 77-year-old bus driver cited. Twenty-one children and one bus driver were transported to an area hospital with injuries after a Devall Middle School and Chamberlin Elementary School bus got into an accident in west Baton Rouge Parish November 1. Source: http://www.wafb.com/story/23855136/2-school-buses-crash-airmed-transports-injured-to-hospital

Details

Financial Services Sector

6. November 4, Krebs on Security – (National) Hackers take limo service firm for a ride. CorporateCarOnline, a limousine and town car service, was found to have been the target of cybercriminals after a plain text archive of more than 850,000 customers’ credit card numbers, names, addresses, transaction records, and other private information was discovered on the same servers where stolen information from PR Newswire and Adobe Systems Inc. was found. Customers whose information was exposed included members of Congress, celebrities, and business executives. Source: http://krebsonsecurity.com/2013/11/hackers-take-limo-service-firm-for-a-ride/

7. November 3, Forum of Fargo-Moorhead – (North Dakota) Fargo truck stop accountant accused of stealing $190K from store ATMs. A bookkeeper at a Fargo truck stop was accused of stealing more than $190,000 from ATMs at the truck stop over several years by allegedly embezzling the money and falsifying records to avoid detection. Source: http://www.duluthnewstribune.com/event/article/id/282494/group/homepage/

8. November 2, Everett Herald – (Washington) ‘Phony Pony Bandit’ admits to armed robberies. A man known as the “Phony Pony Bandit” pleaded guilty November 1 to four counts of bank robbery in connection with the armed robbery of four banks in the Stanwood area of Washington in 2012. Source: http://www.heraldnet.com/article/20131102/NEWS01/711029937/Phony-Pony-Bandit-admits-to-armed-robberies

9. November 1, North Country Gazette – (New York) 4 nabbed in skimmer scam of LIRR customers. Authorities announced November 1 that four Romanian nationals were arrested for allegedly using skimming devices and hidden cameras at ticket vending machines to steal the payment card information of thousands of MTA Long Island Rail Road customers. Cameras and skimmers were found on machines in Nassau, Queens, and Westchester counties. Source: http://www.northcountrygazette.org/2013/11/01/skimmer_scam/

10. November 1, Softpedia – (International) Liberty Reserve co-founder pleads guilty. The co-founder of Liberty Reserve pleaded guilty to money laundering, operating an unlicensed money transmitting business, and other charges in his role in founding and running the service that allowed criminals to make illegal transactions. Source: http://news.softpedia.com/news/Liberty-Reserve-Co-Founder-Vladimir-Kats-Pleads-Guilty-to-Money-Laundering-396463.shtml

11. November 1, U.S. Securities and Exchange Commission – (California) SEC obtains asset freeze in California-based real estate investment scheme. The U.S. Securities and Exchange Commission announced November 1 an asset freeze and fraud charges against Pasadena-based Velocity Investment Group and other entities and their owners, for allegedly raising more than $150 million in a Ponzi-like investment scheme. Source: http://www.sec.gov/News/PressRelease/Detail/PressRelease/1370540220789#.Une26fmkrSk

Information Technology Sector

38. November 4, Softpedia – (International) Adobe passwords leaked by hackers not properly encrypted. Researchers found that most customer passwords exposed during a recent Adobe breach could be decrypted due to the passwords being encrypted using Triple DES encryption, which could leave clues to the passwords in the hashes. Adobe confirmed the encryption use, but passwords created within the last year used a newer form of encryption and are not at risk. Source: http://news.softpedia.com/news/Adobe-Passwords-Leaked-by-Hackers-Not-Properly-Encrypted-396858.shtml

39. November 4, Help Net Security – (International) Fake LinkeIn profile gathering info for targeted attacks. Websense researchers identified and reported an account on LinkedIn likely being used by cybercriminals to collect information for targeted attacks. The account is used to view potential targets’ profiles and to attempt to redirect users to a dating Web site with an IP address and Autonomous System Number associated with past malicious activity. Source: http://www.net-security.org/secworld.php?id=15880

40. November 1, Threatpost – (International) Upatre trojan downloads malware that downloads malware. Researchers at Microsoft’s Malware Protection Center reported a spike in Win/32.Upatre infections in recent months, with a spam campaign distributing the trojan in malicious attachments. The trojan then downloads additional malware after it infects a system. Source: http://threatpost.com/upatre-trojan-downloads-malware-that-downloads-malware

41. November 1, Softpedia – (International) Rogue Bing ads lure users to fake Snapchat installer. ThreatTrack Security researchers found that users searching for Snapchat using the Bing search engine are presented with sponsored ads that direct them to Web sites hosting fake Snapchat installers that contain malware. Source: http://news.softpedia.com/news/Rogue-Bing-Ads-Lure-Users-to-Fake-Snapchat-Installer-396431.shtml

For another story, see item 6 above in the Financial Services Sector
Communications Sector

42. November 4, Telecompaper – (International) Claro gets USD 31.6 mln FCC funds for broadband expansion. The Puerto Rico Federal Communications Commission awarded Claro $31.6 million from the Puerto Rico FCC’s Connect America Fund to boost and provide broadband network connection for over 40,700 unserved households and businesses in Puerto Rico. Source: http://www.telecompaper.com/news/claro-gets-usd-316-mln-fcc-funds-for-broadband-expansion--977383