Complete DHS Report for April 7, 2014
Daily Report
Details
• Anadarko Petroleum Corp., reached a $5.15
billion settlement April 3 with the federal government to settle claims related
to the cleanup of thousands of sites tainted with hazardous chemicals for
decades. – Associated Press
3.
April 3, Associated Press – (National) US reaches $5.15 billion
environmental settlement. Anadarko Petroleum Corp., reached a $5.15 billion
settlement April 3 with the federal government to settle claims related to the
cleanup of thousands of sites tainted with hazardous chemicals for decades. The
settlement includes a trust that covers cleanup of contaminated sites
nationwide and resolves a legal battle over Tronox Inc., a spinoff of Kerr-McGee
Corp., a company which Anadarko acquired in 2006. Source: http://www.wistv.com/story/25156392/us-reaches-515-billion-environmental-settlement
• Security researchers presenting April 4 at
the SyScan security conference demonstrated how mobile point-of-sale systems
can be compromised through several attack techniques, allowing criminals to
capture payment card data, cause the devices to accept fraudulent cards, and
perform other actions. – SC Magazine See item 8
below in the Financial Services Sector
• Health officials are investigating in
response to a stomach illness that affected more than 100 people who ate at
Wild Chef Japanese Steakhouse Grill and Bar in Holland Township, Michigan,
between March 27 and April 1. – WZZM 13 Grand Rapids
19.
April 4, WZZM 13 Grand Rapids – (Michigan) 100+ sickened at Holland
restaurant. Ottawa Health Department officials are investigating in
response to a stomach illness that affected more than 100 people who ate at
Wild Chef Japanese Steakhouse Grill and Bar in Holland Township, Michigan,
between March 27 and April 1. The restaurant voluntarily closed April 1 for a
health department inspection. Source: http://www.wzzm13.com/story/news/local/holland-zeeland/2014/04/02/holland-restaurant-closes-after-reports-of-stomach-illness/7222803/
• Authorities are investigating after 4
suspicious fires were set within 6 hours in Sacramento, California, April 3,
including one that destroyed 2 commercial buildings. – KCRA 3 Sacramento
32.
April 4, KCRA 3 Sacramento – (California) Firefighters assess damage
at site of 'suspicious' fire. Authorities are investigating after 4
suspicious fires were set within 6 hours in Sacramento April 3, including one
that destroyed 2 commercial buildings occupied by Sacramento Theatrical
Lighting Annex. Source: http://www.kcra.com/news/flames-shoot-up-from-sacramento-building/25315988
Financial Services Sector
8. April 4, SC Magazine – (International) Millions of
consumers at risk from mobile POS flaws. Security researchers from MWR
InfoSecurity presenting April 4 at the SyScan security conference demonstrated
how mobile point-of-sale (MPOS) systems can be compromised through several
attack techniques, allowing criminals to capture payment card data, cause the
devices to accept fraudulent cards, and perform other actions. The
vulnerabilities were reported to affect popular MPOS devices but the
researchers did not disclose which models are affected. Source: http://www.scmagazineuk.com/millions-of-consumers-at-risk-from-mobile-pos-flaws/article/341323/
9. April 3, CSO – (International) Zeus malware found
with valid digital certificate. Comodo researchers April 3 reported finding
a variant of the Zeus banking malware that includes a valid digital
certificate, making it appear to be a trustworthy Internet Explorer document.
Source: http://www.networkworld.com/news/2014/040414-zeus-malware-found-with-valid-280416.html
10. April 3, Softpedia – (International) Bankeiya
info-stealer trojan used in attacks against Japanese users. Researchers at
Symantec analyzed operations involving the Infostealer.Bankeiya bank account
information stealing malware and found that it used vulnerabilities in Internet
Explorer and Java SE to steal large amounts of banking data from Japanese
users. The researchers also reported that the Infostealer.Ayufos and
Infostealer.Torpplar malware were also commonly used to target online banking
users in that country. Source: http://news.softpedia.com/news/Bankeiya-Info-Stealer-Trojan-Used-in-Attacks-Against-Japanese-Users-435715.shtml
11. April 3, Oyster Bay Patch – (New York) Couple pleads
guilty in LIRR ‘skimmer’ scam. A New York City couple pleaded guilty April
3 to placing skimming devices and hidden cameras on Long Island Rail Road
ticket machines at the Sea Cliff station in order to obtain payment card
information and manufacture fraudulent cards. Two others involved in the scheme
previously pleaded guilty, and one man also charged in the scheme remains at
large after fleeing to the U.K. Source: http://oysterbay.patch.com/groups/police-and-fire/p/couple-pleads-guilty-in-lirr-skimmer-scam
12. April 3, U.S. Securities and Exchange Commission –
(Maryland; Virginia) SEC charges two friends with insider trading ahead of
impending acquisition. The U.S. Securities and Exchange Commission April 3
charged a Maryland man and a Virginia man with allegedly engaging in insider
trading that resulted in around $1 million in illicit profits ahead of the
acquisition of The Shaw Group by Chicago Bridge & Iron Company. A man who
worked at a firm involved in the deal was previously charged in a related
insider trading case. Source: http://www.sec.gov/News/PressRelease/Detail/PressRelease/1370541394568
13. April 4, WCAU 10 Philadelphia – (New Jersey) Owners
of famed Jersey Shore pizzeria skimmed thousands off the top: Pros. The
owners of the Manco and Manco pizza restaurants in Ocean City, New Jersey were
arrested April 3 and charged with allegedly skimming money from the pizza shops
between 2007 and 2011 when they were employed there prior to buying the chain,
and for also allegedly concealing around $1 million in income from the Internal
Revenue Service. Source: http://www.nbcphiladelphia.com/news/business/Tax-Charge-Manco-Pizza-Owners-253740491.html
14. April 2, U.S. Attorney’s Office, Eastern District of New
York – (New York; California) Former bank CEO and president charged with
bank fraud, conspiracy, and perjury. The former CEO and president of
California-based Gateway Bank FSB was indicted in federal court in New York for
allegedly engaging in a scheme to deceive regulators and observers through a
$15 million “round-trip” of loan funds between three entities for the purpose
of appearing to remove toxic assets from the bank’s books. Source: http://www.fbi.gov/newyork/press-releases/2014/former-bank-ceo-and-president-charged-with-bank-fraud-conspiracy-and-perjury
For another story, see item 30 below in the Information Technology Sector
Information Technology Sector
30. April 4, Softpedia –
(International) Android trojan Waller sends premium SMSs, steals money from
QIWI wallets. Researchers at Kaspersky analyzed a piece of Android malware
known as SMS.AndroidOS.Waller.a which can use infected devices to send SMSs to
premium-rate numbers to earn criminals money and can also steal funds from Visa
QIWI Wallet accounts. The malware can also perform other tasks such as update
itself and install other malware. Source: http://news.softpedia.com/news/Android-Trojan-Waller-Sends-Premium-SMSs-Steals-Money-from-QIWI-Wallets-435898.shtml
For another story, see item 9 above in the Financial Services Sector
Communications Sector
Nothing
to report