Friday, November 7, 2014



Complete DHS Report for November 7, 2014
Daily Report
Top Stories

 · The former chief financial officer of Birmingham Health Care in Alabama was charged with allegedly helping to siphon $11 million in federal grant money between January 2008 and March 2012, netting about $1.7 million through the plot. – Birmingham Business Journal
15. November 5, Birmingham Business Journal – (Alabama) Birmingham nonprofit exec arrested on $11M fraud charges. The former chief financial officer (CFO) of Birmingham Health Care in Alabama was charged with allegedly helping siphon $11 million in federal grant money between January 2008 and March 2012, netting about $1.7 million through the plot. The former CFO aided others in diverting the federal grant money, assets, and property to private entities created by the nonprofit’s chief executive officer which were distributed amongst the individuals involved in the scheme. Source: http://www.bizjournals.com/birmingham/news/2014/11/05/birmingham-nonprofit-exec-arrested-on-11m-fraud.html
 · Jacksonville High School and all schools within the Athens Independent School District in Texas were evacuated and dismissed following a series of bomb threats November 5. – Tyler Morning Telegraph
16. November 6, Tyler Morning Telegraph – (Texas) Bomb threats targeting schools. Jacksonville High School, a Frankston Independent School District high school, and all schools within the Athens Independent School District in Texas were evacuated and dismissed following a series of bomb threats November 5. Police searched the campuses and cleared the scene after nothing suspicious was found. Source: http://www.tylerpaper.com/TP-News+Local/208143/bomb-threats-targeting-schools



 · Federal agents arrested a San Francisco man and charged him for allegedly operating the Silk Road 2.0 underweb market that sold illegal drugs, fraudulent identification documents, and hacking services and tools. – Krebs on Security See item 23 below in the Information Technology Sector

 · At least 10 people were injured November 5 when the driver of an SUV lost control of the vehicle and crashed through a wall of DiMassi’s Mediterranean Buffet in Houston. – KHOU 11 Houston (See item 27)
27. November 6, KHOU 11 Houston – (Texas) 10 injured after SUV crashes into restaurant. At least 10 people were injured November 5 when the driver of an SUV lost control of the vehicle and crashed through a wall of DiMassi’s Mediterranean Buffet in Houston. The restaurant was expected to reopen November 7 after repairs are made to the structure. Source: http://www.khou.com/story/news/2014/11/05/several-hurt-when-car-crashes-into-restaurant-on-kirby/18549509/



Financial Services Sector

2. November 6, Softpedia – (International) Australia, UK and US are most affected by Dridex banking trojan. Trend Micro researchers identified an email campaign attempting to distribute the Dridex banking trojan and targeting users in the U.S., U.K., and Australia. The malware is considered the successor to the Cridex banking trojan and can steal online banking credentials. Source: http://news.softpedia.com/news/Australia-UK-and-US-Are-Most-Affected-by-Dridex-Banking-Trojan-464287.shtml

3. November 6, Reuters – (International) U.S. charges Texas man with running bitcoin Ponzi scheme. A McKinney, Texas man who operated Bitcoin Savings and Trust was charged by federal authorities November 6 for allegedly defrauding investors in his virtual currency operation out of more than $4.5 million. The man allegedly operated his company as a Ponzi scheme, using new investors’ money to make payments to previous investors as well as misappropriating money for his personal expenses. Source: http://www.reuters.com/article/2014/11/06/us-bitcoin-charges-idUSKBN0IQ21I20141106

4. November 3, Southern California City News Service – (California) FBI looking for Orange County ‘Cal Bear Bandit’ bank robber. The FBI November 3 asked for the public’s assistance in finding the suspect known as the “Cal Bear Bandit” who is suspected in five bank robberies in Orange County, California, since August. The suspect’s most recent robbery occurred October 17 at a Cathay Bank branch in Orange. Source: http://mynewsla.com/orange-county/2014/11/03/fbi-looking-orange-county-cal-bear-bandit-bank-robber/

5. November 3, Boston Globe – (National) Bank of America restores online banking after two-hour shutdown. Bank of America customers were unable to login to their online banking accounts for 2 hours November 3 due to an unspecified technical issue. Some TD Bank customers also reported problems logging into their accounts via the bank’s mobile banking app during the outage. Source: http://www.bostonglobe.com/business/2014/11/03/bankofamerica/1YggGcuNTYVbzH0CYKfyMO/story.html

For additional stories, see items 8 below from the Transportation Systems Sector and 23 below in the Information Technology Sector

8. November 5, KUSA 9 Denver – (Colorado) Suspect installed card skimmers at RTD stations. Authorities found and removed credit card skimmers at eight different Regional Transportation District (RTD) light rail pay stations at the Dry Creek, Mineral, and County Line stations in Denver November 5. The skimmers were removed before any payment card data could be stolen and authorities released photos of a man suspected of installing the devices. Source: http://www.9news.com/story/news/local/2014/11/05/photos-of-rtd-card-skimmer-suspect-released/18553503/

Information Technology Sector

22. November 6, Securityweek – (International) New “WireLurker” malware targets iOS, Mac OS X users via trojanized applications. Researchers with Palo Alto Networks identified a new piece of malware targeting Apple OS X systems and iOS devices dubbed WireLurker, which can run malicious code in order to steal users’ contacts, Apple IDs, and other data. The malware spreads via trojanized and repackaged OS X applications and can compromise any iOS devices linked to an infected system via USB cable by infecting iOS applications on stock or jailbroken devices. Source: http://www.securityweek.com/new-wirelurker-malware-targets-ios-mac-os-x-users-trojanized-applications

23. November 6, Krebs on Security – (International) Feds arrest alleged ‘Silk Road 2’ admin, seize servers. FBI and DHS agents arrested a San Francisco man and charged him with drug trafficking, conspiracy to commit hacking, and money laundering for allegedly operating the Silk Road 2.0 underweb market that sold illegal drugs, fraudulent identification documents, and hacking services and tools. U.S. and European authorities seized control of servers hosting Silk Road 2.0 following the arrest. Source: http://krebsonsecurity.com/2014/11/feds-arrest-alleged-silk-road-2-admin-seize-servers/

Communications Sector

Nothing to report