Monday, April 7, 2014


Complete DHS Report for April 7, 2014

Daily Report

Details

 • Anadarko Petroleum Corp., reached a $5.15 billion settlement April 3 with the federal government to settle claims related to the cleanup of thousands of sites tainted with hazardous chemicals for decades. – Associated Press

3. April 3, Associated Press – (National) US reaches $5.15 billion environmental settlement. Anadarko Petroleum Corp., reached a $5.15 billion settlement April 3 with the federal government to settle claims related to the cleanup of thousands of sites tainted with hazardous chemicals for decades. The settlement includes a trust that covers cleanup of contaminated sites nationwide and resolves a legal battle over Tronox Inc., a spinoff of Kerr-McGee Corp., a company which Anadarko acquired in 2006. Source: http://www.wistv.com/story/25156392/us-reaches-515-billion-environmental-settlement

 • Security researchers presenting April 4 at the SyScan security conference demonstrated how mobile point-of-sale systems can be compromised through several attack techniques, allowing criminals to capture payment card data, cause the devices to accept fraudulent cards, and perform other actions. – SC Magazine See item 8 below in the Financial Services Sector

 • Health officials are investigating in response to a stomach illness that affected more than 100 people who ate at Wild Chef Japanese Steakhouse Grill and Bar in Holland Township, Michigan, between March 27 and April 1. – WZZM 13 Grand Rapids
19. April 4, WZZM 13 Grand Rapids – (Michigan) 100+ sickened at Holland restaurant. Ottawa Health Department officials are investigating in response to a stomach illness that affected more than 100 people who ate at Wild Chef Japanese Steakhouse Grill and Bar in Holland Township, Michigan, between March 27 and April 1. The restaurant voluntarily closed April 1 for a health department inspection. Source: http://www.wzzm13.com/story/news/local/holland-zeeland/2014/04/02/holland-restaurant-closes-after-reports-of-stomach-illness/7222803/

 • Authorities are investigating after 4 suspicious fires were set within 6 hours in Sacramento, California, April 3, including one that destroyed 2 commercial buildings. – KCRA 3 Sacramento

32. April 4, KCRA 3 Sacramento – (California) Firefighters assess damage at site of 'suspicious' fire. Authorities are investigating after 4 suspicious fires were set within 6 hours in Sacramento April 3, including one that destroyed 2 commercial buildings occupied by Sacramento Theatrical Lighting Annex. Source: http://www.kcra.com/news/flames-shoot-up-from-sacramento-building/25315988

Financial Services Sector

8. April 4, SC Magazine – (International) Millions of consumers at risk from mobile POS flaws. Security researchers from MWR InfoSecurity presenting April 4 at the SyScan security conference demonstrated how mobile point-of-sale (MPOS) systems can be compromised through several attack techniques, allowing criminals to capture payment card data, cause the devices to accept fraudulent cards, and perform other actions. The vulnerabilities were reported to affect popular MPOS devices but the researchers did not disclose which models are affected. Source: http://www.scmagazineuk.com/millions-of-consumers-at-risk-from-mobile-pos-flaws/article/341323/

9. April 3, CSO – (International) Zeus malware found with valid digital certificate. Comodo researchers April 3 reported finding a variant of the Zeus banking malware that includes a valid digital certificate, making it appear to be a trustworthy Internet Explorer document. Source: http://www.networkworld.com/news/2014/040414-zeus-malware-found-with-valid-280416.html

10. April 3, Softpedia – (International) Bankeiya info-stealer trojan used in attacks against Japanese users. Researchers at Symantec analyzed operations involving the Infostealer.Bankeiya bank account information stealing malware and found that it used vulnerabilities in Internet Explorer and Java SE to steal large amounts of banking data from Japanese users. The researchers also reported that the Infostealer.Ayufos and Infostealer.Torpplar malware were also commonly used to target online banking users in that country. Source: http://news.softpedia.com/news/Bankeiya-Info-Stealer-Trojan-Used-in-Attacks-Against-Japanese-Users-435715.shtml

11. April 3, Oyster Bay Patch – (New York) Couple pleads guilty in LIRR ‘skimmer’ scam. A New York City couple pleaded guilty April 3 to placing skimming devices and hidden cameras on Long Island Rail Road ticket machines at the Sea Cliff station in order to obtain payment card information and manufacture fraudulent cards. Two others involved in the scheme previously pleaded guilty, and one man also charged in the scheme remains at large after fleeing to the U.K. Source: http://oysterbay.patch.com/groups/police-and-fire/p/couple-pleads-guilty-in-lirr-skimmer-scam

12. April 3, U.S. Securities and Exchange Commission – (Maryland; Virginia) SEC charges two friends with insider trading ahead of impending acquisition. The U.S. Securities and Exchange Commission April 3 charged a Maryland man and a Virginia man with allegedly engaging in insider trading that resulted in around $1 million in illicit profits ahead of the acquisition of The Shaw Group by Chicago Bridge & Iron Company. A man who worked at a firm involved in the deal was previously charged in a related insider trading case. Source: http://www.sec.gov/News/PressRelease/Detail/PressRelease/1370541394568

13. April 4, WCAU 10 Philadelphia – (New Jersey) Owners of famed Jersey Shore pizzeria skimmed thousands off the top: Pros. The owners of the Manco and Manco pizza restaurants in Ocean City, New Jersey were arrested April 3 and charged with allegedly skimming money from the pizza shops between 2007 and 2011 when they were employed there prior to buying the chain, and for also allegedly concealing around $1 million in income from the Internal Revenue Service. Source: http://www.nbcphiladelphia.com/news/business/Tax-Charge-Manco-Pizza-Owners-253740491.html

14. April 2, U.S. Attorney’s Office, Eastern District of New York – (New York; California) Former bank CEO and president charged with bank fraud, conspiracy, and perjury. The former CEO and president of California-based Gateway Bank FSB was indicted in federal court in New York for allegedly engaging in a scheme to deceive regulators and observers through a $15 million “round-trip” of loan funds between three entities for the purpose of appearing to remove toxic assets from the bank’s books. Source: http://www.fbi.gov/newyork/press-releases/2014/former-bank-ceo-and-president-charged-with-bank-fraud-conspiracy-and-perjury

For another story, see item 30 below in the Information Technology Sector

Information Technology Sector

30. April 4, Softpedia – (International) Android trojan Waller sends premium SMSs, steals money from QIWI wallets. Researchers at Kaspersky analyzed a piece of Android malware known as SMS.AndroidOS.Waller.a which can use infected devices to send SMSs to premium-rate numbers to earn criminals money and can also steal funds from Visa QIWI Wallet accounts. The malware can also perform other tasks such as update itself and install other malware. Source: http://news.softpedia.com/news/Android-Trojan-Waller-Sends-Premium-SMSs-Steals-Money-from-QIWI-Wallets-435898.shtml

For another story, see item 9 above in the Financial Services Sector

Communications Sector

Nothing to report