Wednesday, September 10, 2014




Complete DHS Report for September 10, 2014

Daily Report

Top Stories

 · A 50-mile stretch of Interstate 15 in Clark County, Nevada, remained closed to traffic as crews work to repair the road from floodwaters September 9 due to heavy rain that required nearly 200 residents to evacuate and closed several schools. – KLAS 8 Las Vegas 

6. September 9, KLAS 8 Las Vegas – (Nevada) I-15 closed for days, flooding impacting Overton, Logandale. Heavy rains September 8 washed away a portion of Interstate 15 between Glendale and Mesquite and prompted a 3 – 4 day closure of a nearly 50-mile stretch of the freeway in Clark County while crews repair the road. Nearly 200 residents were evacuated from homes at the Moapa River Indian Reservation and several schools were closed September 9. Source: http://www.8newsnow.com/story/26477250/ndot-i-15-will-be-closed-3-to-4-days

· Arizona declared a state of emergency September 8 as floodwaters led to one death, flooded a portion of Interstates 10 and 17, and forced the closure of dozens of schools. – Associated Press 

9. September 8, Associated Press – (Arizona) Cars engulfed as rain sets record for Phoenix. Arizona declared a state of emergency September 8 as floodwaters led to one death, flooded a portion of Interstates 10 and 17, forced the closure of dozens of schools. Source: http://news.msn.com/us/cars-engulfed-as-rain-sets-record-for-phoenix?ocid=ansnews11

· The In His Image Youth Development Center in Little Rock, Arkansas, was closed September 8 after copper thieves caused more than $150,000 in damage to five air conditioning units located on the roof of the preschool’s building. – KATV 7 Little Rock 

19. September 9, KATV 7 Little Rock – (Arkansas) Copper thieves target Little Rock preschool. The In His Image Youth Development Center in Little Rock was closed September 8 after copper thieves caused more than $150,000 in damage to five air conditioning units located on the roof of the preschool’s building. Source: http://www.katv.com/story/26480041/copper-thieves-target-little-rock-pre-school

· Home Depot representatives confirmed September 8 that the company’s payment systems were breached as early as April 2014 and went unnoticed until September 2 when banking institutions reported unusual activity connected to debit and credit card data from the company’s stores in the U.S. and Canada.– CNN Money

29. September 9, CNN Money – (International) Home Depot confirms months-long hack. Home Depot representatives confirmed September 8 that the company’s payment systems were breached as early as April 2014 and the attack went unnoticed until September 2 when banking institutions reported unusual activity connected to debit and credit card data from the company’s stores in the U.S. and Canada. The company is working with the U.S. Secret Service to determine the scope of the breach and has implemented additional security measures at its stores. Source: http://money.cnn.com/2014/09/08/technology/security/home-depot-breach/index.html

Financial Services Sector

3. September 9, KTLA 5 Los Angeles – (California) ‘Hills Bandit’ strikes Laguna Niguel and La Jolla banks on the same day. A suspect known as the “Hills Bandit” was linked to the attempted robbery of a bank in La Jolla and the robbery of a U.S. Bank branch in Laguna Niguel September 8, the ninth robbery the suspect is believed responsible for. Source: http://ktla.com/2014/09/08/hills-bandit-strikes-laguna-niguel-and-la-jolla-banks-in-same-day/

4. September 9, KTLA 5 Los Angeles – (California) ‘Cal Bear Bandit’ robs third Orange County bank. A suspect known as the “Cal Bear Bandit” was identified in the robbery of a Bank of America branch in Costa Mesa September 8, the third bank robbery linked to the suspect. Source: http://ktla.com/2014/09/08/cal-bear-bandit-robs-third-orange-county-bank/

5. September 7, Parsippany-Troy Hills Daily Record – (New Jersey; Florida) Pastor admits role in $15 million mortgage fraud scheme. A pastor with the defunct ReBirth International Church in Elizabeth pleaded guilty September 4 to his role in a $15 million mortgage fraud scheme that used straw buyers and fraudulent documents to make illegal profits involving overbuilt condominiums in Wildwood Crest and North Wildwood, New Jersey, and in Naples Florida. The man was among 13 defendants charged in the case. Source: http://www.dailyrecord.com/story/news/crime/2014/09/07/pastor-admits-role-million-mortgage-fraud-scheme/15140953/

Information Technology Sector

22. September 9, Softpedia – (International) Malvertising on YouTube and Amazon delivers sophisticated malware. Researchers with Cisco’s Talos Security Research identified a malvertising campaign dubbed Kyle & Stan that began in May and is currently affecting Windows and Mac users on popular Web sites such as Amazon and YouTube. The campaign inserts malicious ads that serve various forms of spyware, adware, and browser hijacking malware and uses unique configuration files and encryption to attempt to avoid detection. Source: http://news.softpedia.com/news/Malvertising-On-YouTube-and-Amazon-Delivers-Sophisticated-Malware-458211.shtml

23. September 9, Softpedia – (International) Dyre banking trojan targets Salesforce customers. Customer relationship management (CRM) provider Salesforce found that the Dyre banking malware (also known as Dyreza) has been used against some of its customers but found no evidence that any were impacted. The malware uses man-in-the-middle (MitM) attacks to steal credentials and Salesforce advised its users to ensure that their systems were protected against the malware. Source: http://news.softpedia.com/news/Dyre-Banking-Trojan-Targets-Salesforce-Customers-458185.shtml

24. September 9, V3.co.uk – (International) Hackers going Nuclear following Blackhole takedown. A Zscaler ThreatLabz researcher identified a campaign utilizing the Nuclear Exploit Kit and compromised sites including SocialBlade.com, AskMen.com, and Facebook survey scam pages to attempt to infect users’ systems. The researcher reported that the Nuclear Exploit Kit has become increasingly popular in the last 3 months following the arrest of the alleged creator of the Blackhole Exploit Kit. Source: http://www.v3.co.uk/v3-uk/news/2364131/hackers-going-nuclear-following-blackhole-takedown

25. September 8, Threatpost – (International) New timing attack could de-anonymize Google users. Mavenlink identified and reported an issue in Google accounts that could be used by an attacker in specific circumstances to identify when a particular user visits a site by sharing a Google document with the user’s address. Google acknowledged the issue but stated it would not address the issue because the risk presented was judged to be low and only usable in limited circumstances. Source: http://threatpost.com/new-timing-attack-could-de-anonymize-google-users

Communications Sector

26. September 8, KJRH 2 Tulsa – (Oklahoma) Cox Communications restores services to Green Country customers after outage. Television service was restored to Cox Communications customers in Green County after an outage that disrupted service for several hours due to a fiber cut September 8. Source: http://www.kjrh.com/news/local-news/green-country-residents-lose-cable-after-cox-reports-outage