Friday, November 29, 2013


Complete DHS Daily Report for November 29, 2013

Daily Report

Top Stories

 • A railcar tank containing a highly flammable liquid that developed a hole and spilled the chemical on CSX train tracks in Willard, Ohio, forced the evacuation of about 400 households within a half mile-radius of the spill. – WEWS 5 Cleveland

6. November 27, WEWS 5 Cleveland – (Ohio) Willard residents evacuated after dangerous chemical spill on CSX train tracks at North Main Street. A railcar tank containing a highly flammable liquid that developed a hole and spilled the chemical on CSX train tracks in Willard forced the evacuation of about 400 households within a half mile-radius of the spill for an undisclosed amount of time November 27. Source: http://www.newsnet5.com/dpp/news/local_news/oh_huron/numerous-willard-residents-evacuated-to-after-dangerous-chemical-spill-on-north-main-street

 • The last of 27 State and federal highways in Colorado damaged or destroyed by September floods reopened ahead of a December 1 deadline. – Denver Post
7. November 27, Denver Post – (Colorado) Last flood damaged Colorado road re-opens. Colorado 7 that links Allenspark to Lyons, the last of 27 State and federal highways in Colorado damaged or destroyed by September floods, reopened November 26 ahead of a December 1deadline. Source: http://www.denverpost.com/news/ci_24608437/last-flood-damaged-colorado-road-re-opens

 • Police arrested a suspect in a stabbing attack at the Ambulatory Surgical Center of Good Shepherd Medical Center in Longview, Texas that left one dead and four injured. – Associated Press

21. November 26, Associated Press – (Texas) Nurse killed in stabbing spree at Texas hospital. Police arrested and charged a suspect in a stabbing attack at the Ambulatory Surgical Center of Good Shepherd Medical Center in Longview that left one nurse dead and four others injured November 26. Source: http://news.msn.com/crime-justice/nurse-killed-in-stabbing-spree-at-texas-hospital

 • Carteret Community College in Morehead City, North Carolina, cancelled classes after it suffered extensive damage due to a tornado. – WITN 7 Washington

23. November 27, WITN 7 Washington – (North Carolina) Tornado damages hospital, community college in Morehead City. Carteret Community College cancelled classes November 27 after it suffered extensive damage due to a tornado that swept through North Carolina November 26. Crews worked to repair the damage to several of the college’s buildings. Source: http://www.witn.com/home/headlines/233575481.html

Details

Financial Services Sector 

See item 28 below in the Information Technology Sector

Information Technology Sector
28. November 27, Help Net Security – (International) Researchers track down members of Nigerian cyber gang. Researchers at TrendMicro released a report on a Nigeria-based cybercrime gang dubbed “Ice 419” that is reportedly using the Ice IX banking trojan to gather personal and banking information and using phishing to target users of Scottrade, Match.com, and a Korean search engine.  Source: http://www.net-security.org/secworld.php?id=16020

29. November 27, Softpedia – (International) Linux worm Darlloz targets routers, security cameras, and set-top boxes. Symantec researchers identified a Linux worm named Darlloz that exploits a previously-patched PHP vulnerability to infect computers and potentially spread to other devices, including security cameras, routers, set-top boxes, and industrial control systems (ICS) running Linux.  Source: http://news.softpedia.com/news/Linux-Worm-Darlloz-Targets-Routers-Security-Cameras-and-Set-Top-Boxes-404023.shtml

30. November 26, Softpedia – (International) VBScript malware deletes files from infected systems. Researchers at TrendMicro identified a piece of malware dubbed VBS_SOYSOS that creates copies of itself using the names of MP3, JPG, and DWG files, deleting the original files. The malware also disables access to the registry editor and task manager, necessitating the installation of alternatives in order to remove the malware.  Source: http://news.softpedia.com/news/VBScript-Malware-Deletes-Files-from-Infected-Systems-403721.shtml

31. November 26, Threatpost – (International) Ruby on Rails CookieStore vulnerability plagues prominent websites. A researcher found that around 2,000 Web sites using an older version of Ruby on Rails that depends on the CookieStore default cookie storage mechanism were vulnerable to having users’ login information stolen. CookieStore keeps users’ session hashes on the client side, allowing an attacker to use cross-site scripting (XSS) or session hijacking to steal the information.  Source: http://threatpost.com/ruby-on-rails-cookiestore-vulnerability-plagues-prominent-websites/103038

For another story, see item 32 below in the Communications Sector

Communications Sector

32. November 27, Wireless Week – (National) T-Mobile confirms software issue caused slower data speeds. T-Mobile confirmed November 26 that a minor infrastructure software issue contributed to slower data speeds for some of its customers and that a fix was in the works. Source: http://www.wirelessweek.com/news/2013/11/t-mobile-confirms-software-issue-caused-slower-data-speeds