Complete DHS Report for January
30, 2014
Daily Report
• A Russian man extradited overseas pleaded
guilty in an Atlanta court to developing, selling, and customizing the SpyEye
banking trojan that infected more than 1.4 million computers in order to steal
millions of dollars. – Wired.com See item 2 below in the Financial Services Sector
• Bainbridge Island, Washington officials
estimated that 145,000 gallons of raw sewage spilled into Eagle Harbor January
23 due to a sewer pipe break. – Bainbridge Island Review
10.
January 28, Bainbridge Island Review – (Washington) Broken sewer pipe
spills 145K gallons of raw sewage into Eagle Harbor. Bainbridge Island
officials estimated that 145,000 gallons of raw sewage spilled into Eagle
Harbor January 23 due to a sewer pipe break. Crews stopped flow through the
pipeline and set up a temporary bypass. Source: http://www.bainbridgereview.com/news/242459141.html
• Healthcare providers are asking hospitals,
dialysis centers, and doctors to use smaller IV bags of intravenous saline and
find alternatives to cope with a nationwide shortage. – Washington Post
14.
January 28, Washington Post – (National) Shortage of saline causes
hospitals, dialysis centers to scramble to manage supply. Healthcare
providers are asking hospitals, dialysis centers, and doctors to use smaller IV
bags of intravenous saline and find alternatives to cope with a nationwide
shortage. The U.S. Food and Drug Administration is working with three
manufacturers of intravenous saline solutions to address the shortage, and is
looking into alternative sources. Source: http://www.washingtonpost.com/national/health-science/shortage-of-saline-causing-hospitals-dialsysis-centers-to-scramble-to-manage-supply/2014/01/28/9cfe2b8c-8862-11e3-833c-33098f9e5267_story.html
• Southern U.S. States were hit by a severe
winter storm January 28 that prompted the closure of dozens of schools,
students remaining sheltered overnight in schools, hours-long traffic gridlock,
and the cancellation of more than 3,200 flights nationwide. – Associated
Press
20.
January 29, Associated Press – (National) Winter storm socks the Deep
South with snow, ice; students stranded in Alabama schools. Southern U.S.
States were hit by a severe winter storm January 28 that dropped snow and ice,
prompting the closure of dozens of schools and the cancellation of more than
3,200 flights nationwide. Students in several schools were forced to remain
sheltered overnight while traffic was gridlocked for hours, causing hundreds of
cars to slide off the road or into each other. Source: http://abclocal.go.com/ktrk/story?section=news/national_world&id=9411313
Details
Financial Services Sector
2. January 28, Wired.com – (International) Coder behind
notorious bank-hacking tool pleads guilty. A Russian man extradited from
the Dominican Republic pleaded guilty in an Atlanta court to developing,
selling, and customizing the SpyEye banking trojan that infected more than 1.4
million computers. The trojan was sold to over 150 customers worldwide who used
it to compromise thousands of bank accounts and steal millions of dollars.
Source: http://www.wired.com/threatlevel/2014/01/spy-eye-author-guilty-plea/
3. January 28, USA Today
– (National) BBB warns of scam charging $9.84 to credit cards. The
Better Business Bureau warned consumers of a payment card fraud scheme that has
been making $9.84 charges to consumers’ cards in the name of a generic customer
support Web site. Source: http://www.clarionledger.com/article/20140128/BIZ/140128016/BBB-warns-scam-charging-9-84-credit-cards
4. January 28, Los Angeles Times – (California) ‘Ho-hum bandit’
pleads guilty to seven more bank robberies. A man known as the “Ho-Hum
Bandit” pleaded guilty January 28 to robbing seven banks in the San Diego area
from February to June 2010. The man had previously been convicted of four bank
robberies in Denver, Colorado, and Cheyenne, Wyoming. Source: http://www.latimes.com/local/lanow/la-me-ln--ho-hum-20140128,0,268882.story
For another story, see item 26 below in the Information Technology Sector
Information Technology Sector
23.
January 29, Help Net Security – (International) VPN bypass attack
possible also on Android KitKat. Security researchers at Ben Gurion
University found that a previously-reported VPN bypass vulnerability in Android
4.3 was also able to be modified and used on devices running Android 4.4
‘KitKat.’ Source: http://www.net-security.org/secworld.php?id=16277
24.
January 29, Softpedia – (International) Rovio confirms hackers
defaced Angry Birds website, no user data compromised. Rovio confirmed that
hacktivists briefly defaced the Web site of the Angry Birds game via DNS
hijacking but did not compromise any user data. Source: http://news.softpedia.com/news/Rovio-Confirms-Hackers-Defaced-Angry-Birds-Website-No-User-Data-Compromised-421857.shtml
25.
January 28, Softpedia – (International) Java bot can launch DDoS attacks
from Windows, Mac and Linux machines. Researchers at Kaspersky identified a
malicious Java application designed to perform distributed denial of service
(DDoS) attacks that can run on Windows, Linux, and Mac OS computers dubbed
HEUR:Backdoor.Java.Agent.a. The malware is believed to have been used to attack
a bulk email service. Source: http://news.softpedia.com/news/Java-Bot-Can-Launch-DDOS-Attacks-from-Windows-Mac-and-Linux-Machines-421551.shtml
26.
January 28, Softpedia – (International) Patnote virus used to
distribute ZeuS trojan. Trend Micro researchers discovered a malware
distribution campaign using the Patnote virus to spread the ZeuS malware. The
virus adds its code to all executable files in a system and on removable and
network drives, and contains mechanisms to prevent it from being analyzed.
Source: http://news.softpedia.com/news/Patnote-Virus-Used-to-Distribute-ZeuS-Trojan-421468.shtml
For
another story, see item 2 above
in the Financial Services Sector
Communications Sector
Nothing to
report