Friday, March 14, 2014




Complete DHS Report for March 14, 2014

Daily Report

Details

 • A severe winter storm dumped heavy snow and brought high winds in the Midwest and Northeast March 12, wreaking havoc on the regions. – Associated Press

1. March 13, Associated Press – (National) Northeast digs out from late winter storm. A severe winter storm dumped heavy snow and brought high winds in the Midwest and Northeast March 12, causing tens of thousands of homes and businesses to lose power, hundreds of flight cancellations, and a pileup involving at least 50 vehicles on the Ohio Turnpike that left 3 people dead. Source: http://news.msn.com/us/late-winter-storm-hits-midwest-northeast

 • More than 4,000 people in Long Island, New York, were alerted March 11 that they could have been infected with HIV while being treated for diabetes. – WCBS 2 New York City

16. March 11, WCBS 2 New York City – (New York) L.I. hospital: Reused insulin pen part may mean hepatitis, HIV risk for patients. South Nassau Communities Hospital in Oceanside, New York, recommended more than 4,000 patients get tested for hepatitis B, hepatitis C, and HIV after it learned that patients being treated for diabetes may have received insulin injections from a pen reservoir that may have been used on more than one patient. The hospital has since banned the use of insulin pens and now only permits single-patient-use vials. Source: http://newyork.cbslocal.com/2014/03/11/l-i-hospital-reused-insulin-pen-part-may-mean-hepatitis-hiv-risk-for-patients/

 • Two people were killed and 23 others were injured after a motorist fleeing from police plowed through barricades and into a crowd in front of a nightclub at the South by Southwest festival in Austin, Texas, March 13. – Associated Press

31. March 13, Associated Press – (Texas) Police: 1 man, 1 woman died at South by Southwest. Two people were killed and 23 others were injured after a motorist fleeing from police plowed through barricades and into a crowd in front of a nightclub at the South by Southwest festival in Austin March 13. The suspect was allegedly intoxicated and taken into custody at the scene. Source: http://news.msn.com/us/police-driver-kills-2-at-south-by-southwest

 • Rescuers continued to search March 13 for at least 5 people unaccounted for after a suspected gas line explosion killed 7 and injured more than 60 people in two New York City apartment buildings March 12. – Reuters (See item 32)

32. March 13, Reuters – (New York) Rescuers search site of NY building collapse; seven dead. Rescuers continued to search March 13 for at least five people unaccounted for after a suspected gas line explosion caused two apartment buildings in New York City’s Harlem area to collapse March 12. At least 7 people were killed and more than 60 others were injured. Source: http://www.reuters.com/article/2014/03/13/us-usa-newyork-collapse-idUSBREA2B11D20140313

Financial Services Sector

5. March 13, Softpedia – (International) PayPal rewards researcher for finding EL injection vulnerability in Zong. A researcher identified and reported an Expression Language (EL) vulnerability in mobile payments processor Zong which could be used for code execution and other tasks. PayPal then issued a reward to the researcher after verifying the finding. Source: http://news.softpedia.com/news/PayPal-Rewards-Researcher-for-Finding-EL-Injection-Vulnerability-in-Zong-431930.shtml

6. March 12, Trumbull Patch – (Connecticut) Trumbull man admits to straw buyer mortgage scheme. A Trumbull man pleaded guilty March 12 to running a straw buyer real estate scheme involving several properties in Fairfield County, many of which went into default and cost lenders over $7 million. Source: http://trumbull.patch.com/groups/police-and-fire/p/trumbull-man-admits-to-straw-buyer-mortgage-scheme

7. March 12, KTVU 2 Oakland – (California) Petaluma real estate agent pleads no contest to securities fraud. A Petaluma real estate agent pleaded guilty to running a Ponzi scheme through his business, Baccala Realty, which defrauded investors of $20 million. Source: http://www.ktvu.com/news/news/crime-law/petaluma-real-estate-agent-pleads-no-contest-secur/nfBms/

For another story, see item 15 below

15. March 12, Pittsburgh Tribune-Review – (Pennsylvania) Security breach compromises credit-card info at Bloomfield medical practice. Partners in Nephrology & Endocrinology in Pittsburgh confirmed March 12 that an attacker hacked into a vendor’s system that processes credit card payments for the practice and potentially accessed credit card numbers and personal information of about 5,000 patients in November 2013. Authorities are investigating the incident. Source: http://triblive.com/news/adminpage/5753432-74/card-credit-practice

Information Technology Sector

27. March 13, The Register – (International) Ethical hacker backer hacked, warns of email ransack. The EC-Council, which runs the Certified Ethical Hacker program, notified its members that attackers who defaced its Web site in February also gained access to the site’s control panel, allowing them access to the organization’s email system. The EC-Council is continuing to investigate and notified members as a precaution. Source: http://www.theregister.co.uk/2014/03/13/ethical_hacker_cert_org_pwned/

28. March 13, Softpedia – (International) Pwn2Own 2014: Firefox, Internet Explorer and Safari hacked on day one. The first day of the 2014 Pwn2Own security competition resulted in researchers identifying vulnerabilities in Internet Explorer, Firefox, Safari, and Adobe Flash and Reader, with participants being awarded $400,000 in total for the discoveries. Source: http://news.softpedia.com/news/Pwn2Own-2014-Firefox-Internet-Explorer-and-Safari-Hacked-on-Day-One-432001.shtml

29. March 13, Help Net Security – (International) Rbrute trojan hacks Wi-Fi routers to help spread Sality. Researchers at Dr. Web identified and analyzed a trojan dubbed Rbrute, which compromises Wi-Fi routers in order to spread the Sality malware family. Source: http://www.net-security.org/malware_news.php?id=2731

30. March 12, Computerworld – (International) Twitter crashed – again – on Tuesday. Twitter was down for around 1 hour March 11 due to unexpected issues arising from a planned deployment of an upgrade. The social media network experienced a similar disruption March 2. Source: http://www.networkworld.com/news/2014/031214-twitter-crashed----again----279654.html

For another story, see item 5 above in the Financial Services Sector

Communications Sector

Nothing to report