Tuesday, June 24, 2014




Complete DHS Report for June 24, 2014

Daily Report

Top Stories

 • A May 12 burglary by three suspects at the Peabody Energy-owned Empire Energy coal mine in Craig, Colorado, caused about $500,000 to $1 million in damage. – Craig Daily Press

1. June 21, Craig Daily Press – (Colorado) Theft at Empire Energy coal mine likely will cost Peabody Energy more than $500,000. A May 12 burglary at the Peabody Energy-owned Empire Energy coal mine in Craig, Colorado, caused about $500,000 to $1 million in damage. Three suspects were taken into custody and charged by the Moffat County Sheriff’s Office. Source: http://www.craigdailypress.com/news/2014/jun/21/theft-empire-energy-coal-mine-will-cost-peabody-en/


 • Authorities investigated an Amtrak train carrying 180 passengers traveling from Washington D.C. to Boston, that struck a vehicle in Mansfield, Massachusetts, causing it to partially derail and kill all three passengers in the vehicle June 23. – WHDH 7 Boston

7. June 23, WHDH 7 Boston – (Massachusetts) 3 dead after Amtrak train hits car and derails in Mansfield. Authorities are investigating how an Amtrak train carrying 180 passengers traveling from Washington D.C. to Boston struck a vehicle in Mansfield, Massachusetts, causing it to partially derail and kill all three passengers in the vehicle June 23. Authorities said it would take several hours to remove the train and repair the tracks, while the stranded passengers were rerouted. Source: http://www.whdh.com/story/25842346/amtrak-train-hits-car-and-derails-in-mansfield

 • One person was killed and 7 others were injured June 20 when a semi-truck crashed into Simeon’s restaurant in Ithaca, New York, causing part of the building, which also houses apartments, to collapse. – Ithaca Journal

11. June 21, Ithaca Journal – (New York) 1 killed, 7 hurt after tractor-trailer crashes into restaurant. One person was killed and 7 others were injured June 20 when a semi-truck crashed into Simeon’s restaurant in Ithaca, causing part of the building, which also houses apartments, to collapse. Authorities evacuated two blocks surrounding the incident while engineers inspected the structure. Source: http://www.wfmynews2.com/story/news/nation/2014/06/21/tractor-trailer-hits-simeons-restaurant-ithaca-ny/11219293/

 • At least 12 people were injured June 20 when concrete gave way on an anchor supporting a rope-climbing net at the Teen Missions International camp in Merritt Island, Florida, causing individuals to fall up to 25 feet. – Brevard County Reporter 

30. June 20, Brevard County Reporter – (Florida) 12 hurt at Merritt Island teen camp as climbing net collapses. At least 12 people were injured June 20 when concrete gave way on an anchor supporting a rope-climbing net at the Teen Missions International camp in Merritt Island, causing individuals to fall up to 25 feet. Source: http://www.mynews13.com/content/news/cfnews13/news/article.html/content/news/articles/cfn/2014/6/20/rope_collapse_brevard.html

 Financial Services Sector

6. June 23, Softpedia – (International) 188 websites shut down for selling counterfeit products. Law enforcement agencies from the U.S. and Europe shut down a large number of domains created to sell counterfeit merchandise due to the risk they represented to customers’ financial information as well as for engaging in the sale of counterfeit items. Source: http://news.softpedia.com/news/188-Websites-Shut-Down-For-Selling-Counterfeit-Products-447972.shtml

Information Technology Sector

22. June 23, SC Magazine – (International) 300,000 servers still vulnerable to Heartbleed bug. The CEO of Errata Security reported that a scan of port 443 June 22 showed 309,197 servers that are still vulnerable to the Heartbleed vulnerability in OpenSSL due to not being patched over 2 months after the vulnerability was revealed. Source: http://www.scmagazineuk.com/300000-servers-still-vulnerable-to-heartbleed-bug/article/357206/

23. June 23, IDG News Service – (International) Ad network compromise led to rogue page redirects on Reuters site. Hacktivists associated with the Syrian Electronic Army redirected users who accessed certain stories on the Reuters Web sites to a Web page controlled by the group for about 1 hour June 22 by compromising an ad feed run by Taboola. Taboola stated that the attackers were able to compromise one of its widgets used on the Reuters site. Source: http://www.networkworld.com/article/2366501/ad-network-compromise-led-to-rogue-page-redirects-on-reuters-site.html

 24. June 23, Infosecurity Magazine – (International) Online daters targeted by massive phishing campaign. Researchers at Netcraft identified a large phishing campaign targeting users of several online dating Web sites. The campaign is likely intended to takeover users’ profiles for use in fraud schemes. Source: http://www.infosecurity-magazine.com/view/38975/online-daters-targeted-by-massive-phishing-campaign/

25. June 20, Softpedia – (International) Com Spammers behind Pinterest spam attack. A cybercriminal group known as the Com Spammers was believed to be behind a recent spam attack on Pinterest that attempts to lure users to fake diet pill Web sites. The attacks are similar to recent spam attacks on compromised Tumblr blogs. Source: http://news.softpedia.com/news/Com-Spammers-Behind-Pinterest-Spam-Attack-447769.shtml

26. June 20, SC Magazine – (International) 2012 RCE bug is still highly exploited in targeted attacks, Trend Micro finds. Trend Micro found that a remote code execution vulnerability disclosed in April 2012 affecting Windows common controls was still the most commonly exploited vulnerability in the second half of 2013. The vulnerability was patched over 2 years ago and affects a variety of products, including Microsoft Office. Source: http://www.scmagazine.com/2012-rce-bug-is-still-highly-exploited-in-targeted-attacks-trend-micro-finds/article/357004/

For another story see Item 6 above in the Financial Services Sector

Communications Sector

27. June 20, St. Louis Post-Dispatch – (Missouri) Ameren outage takes KDNL, KWMU off the air. An outage at a broadcast tower June 20 caused KDNL 30 St. Louis and KWMU 90.7 FM St. Louis to be off air for about 2 hours June 20 until the tower could be repaired. Source: http://www.stltoday.com/news/local/metro/ameren-outage-takes-kdnl-kwmu-off-the-air/article_00347c41-5f23-5cf6-878e-d33469232e61.html