Thursday, October 2, 2014



Complete DHS Report for October 2, 2014

Daily Report

Top Stories

 · Operations on the Primm Pad near West Union, West Virginia, were halted September 30 after Antero Resources notified officials of a gas influx September 23 when the drill for one well collided with a second well. – West Virginia MetroNews

1. September 30, West Virginia MetroNews – (West Virginia) DEP halts a drilling operation in Doddridge County after accident. The West Virginia Department of Environmental Protection ordered operations on the Primm Pad near West Union to halt September 30 after Antero Resources notified the agency of a gas influx September 23 when the drill for the Stella 1h well collided with the Callie 2h well causing a release of methane gas. Four personal wells and two existing gas wells were found to have been affected in an initial investigation. Source: http://wvmetronews.com/2014/09/30/dep-haults-a-drilling-operation-in-doddridge-county-after-accident/

 · A fire destroyed a manufacturing facility housing a metal finishing company and a metal etching company in Seattle September 30, prompting a response from a chemical containment team. – Associated Press

4. September 30, Associated Press – (Washington) Large fire burns, releases chemicals in Seattle. A large fire destroyed a manufacturing facility housing a metal finishing company and a metal etching company in Seattle September 30. Both firms generate a large quantity of hazardous chemical waste and a chemical containment team was working to collect water from the firefighting efforts for safe disposal. Source: http://abcnews.go.com/US/wireStory/large-fire-burns-releases-chemicals-seattle-25877612

 · Four individuals were indicted for allegedly stealing over $100 million worth of intellectual property from game developers and the U.S. Army by compromising company and government user accounts to gain access to the data. – V3.co.uk See item 35 below in the Information Technology Sector

 · A hail-producing storm that moved across Colorado September 29 caused an estimated $4 million in damage to more than 850 vehicles at an auto dealership in Englewood, and damaged several homes and a restaurant in the area. – KCNC 4 Denver

42. September 30, KCNC 4 Denver – (Colorado) Metro area residents still recovering from Monday’s violent weather. A strong hail-producing storm that moved across Colorado September 29 caused an estimated $4 million in damage to more than 850 vehicles at an auto dealership in Englewood. Several homes and a restaurant in the area also suffered damage from the storm. Source: http://denver.cbslocal.com/2014/09/30/metro-area-residents-still-recovering-from-mondays-violent-weather/

Financial Services Sector

5. September 30, U.S. Securities and Exchange Commission – (International) Court imposes injunctions and monetary sanctions of nearly $30 million against former CEO and CFO of Electronic Game Card. A federal judge issued an order imposing $29.6 million in sanctions against the former CEO and CFO of Electronic Game Card based on U.S. Securities and Exchange Commission charges that the two individuals allegedly used fraudulent means and fake contracts to increase the value of the now bankrupt company’s stocks. The two allegedly used entities based in Gibraltar that they secretly controlled to sell shares and collect more than $12.3 million in proceeds. Source: http://www.sec.gov/litigation/litreleases/2014/lr23099.htm

6. September 30, KSWB 5 San Diego – (California) Couple pleads guilty to real estate investment fraud. A San Diego real estate investor and his wife pleaded guilty September 30 for their role in a mortgage fraud scheme that caused between $2.5 and $20 million in losses and tax fraud. The couple recruited straw buyers, inflated the value of properties, disguised the sources of down payments, and hid skimmed profits from the Internal Revenue Service. Source: http://fox5sandiego.com/2014/09/30/couple-pleads-guilty-to-real-estate-investment-fraud/

7. September 30, Bay City News Service – (California) Foster City man sued by SEC for alleged fraud in ATM investment scam. A Foster City man and his company Transactions Unlimited, operating as ATM Plus, was charged September 29 by the U.S. Securities and Exchange Commission for allegedly operating the company as a Ponzi scheme that obtained around $12 million from 160 investors using fraudulent statements and documents. The man was also previously indicted by the Santa Clara County District Attorney’s Office on several fraud and theft charges. Source: http://www.mercurynews.com/crime-courts/ci_26634716/foster-city-man-sued-by-sec-alleged-fraud

Information Technology Sector

35. October 1, V3.co.uk – (International) Four hackers accused of $100m US military software and gaming IP theft. Four individuals were indicted for allegedly stealing over $100 million worth of intellectual property from game developers and the U.S. Army including data from yet-to-be-released games and training software used to train helicopter pilots. Two of the accused pleaded guilty and reportedly used a SQL injection attack to steal the usernames and passwords of employees and software developers in order to gain access to the data. Source: http://www.v3.co.uk/v3-uk/news/2373278/four-hackers-accussed-of-usd100m-us-military-software-and-gaming-ip-theft

36. October 1, Softpedia – (International) Xsser mRAT, advanced spyware for iOS, discovered. Researchers with Lacoon Mobile Security identified a new remote access trojan (RAT) for iOS mobile devices dubbed Xsser that targets jailbroken iOS devices and can exfiltrate personal and device data. The researchers believe that Xsser is linked to the Chinese government and targets protestors in Hong Kong. Source: http://news.softpedia.com/news/Xsser-mRAT-Advanced-Spyware-For-iOS-Discovered-460640.shtml

37. October 1, Softpedia – (International) High risk vulnerability patched in Joomla. The developers of the Joomla content management system (CMS) released a patch for version 3.x closing two vulnerabilities including a remote file inclusion (RFI) issue that could allow an attacker to run remote files. Source: http://news.softpedia.com/news/High-Risk-Vulnerability-Patched-in-Joomla-460600.shtml

38. September 30, The Register – (International) OpenVPN open to pre-auth Bash Shellshock bug - researcher. The chief technology officer of Mullvad stated that some configurations of OpenVPN are susceptible to the Shellshock vulnerability if Bash is allowed to run scripts. A proof-of-concept for the issue was identified online. Source: http://www.theregister.co.uk/2014/09/30/openvpn_open_to_shellshock_researcher/

39. September 30, Softpedia – (International) Asprox botnet malware sent through fake Viber email notification. An analysis from Tech Help List identified a new spam campaign utilizing fake Viber emails to attempt to add new bots to the Asprox botnet. The analysis noted that the attackers were using several techniques to hide their malicious activity and avoid analysis by researchers. Source: http://news.softpedia.com/news/Asprox-Botnet-Malware-Sent-Through-Fake-Viber-Email-Notification-460498.shtml

Communications Sector

40. September 29, Cortez Journal – (Colorado; Utah) Lightning knocks out TV translators. Service was disrupted for thousands of Southwest Colorado Television Translator Association customers who rely on antenna reception September 29 following a thunderstorm that knocked out two television translators in Mancos Hill, Colorado, and Abajo Peak, Utah, September 27. Source: http://www.cortezjournal.com/article/20140929/NEWS01/140929845/Lightning-knocks-out-TV-translators-