Monday, March 2, 2015



Complete DHS Report for March 2, 2015

Daily Report

Top Stories

· A former American Pension Services executive was indicted in a U.S. District Court in Utah February 26 for allegedly running a scheme that defrauded over 5,000 customers out of approximately $24 million by fraudulent representations of material facts to obtain the funds used to make personal investments. – KSTU 13 Salt Lake City See item 9 below in the Financial Services Sector

 · A failed bleach pump at the Fall River Regional Wastewater Treatment in Massachusetts prompted the discharge of an estimated 600,000 gallons of non-disinfected wastewater to spill into Mount Hope Bay February 25. – Fall River Herald News

16. February 27, Fall River Herald News – (Massachusetts; Rhode Island) Fall River wastewater plant fails, spills 600,000 gallons into Mount Hope Bay. According to the Rhode Island Department of Environmental Management (DEM) a failed bleach pump at the Fall River Regional Wastewater Treatment in Massachusetts prompted the discharge of an estimated 600,000 gallons of non-disinfected wastewater February 25. The spill prompted the DEM to close both Mount Hope Bay and Kickemuit River to shellfishing until March 5 after technicians rebooted the computer system and restarted the pumps. Source: http://www.tauntongazette.com/article/20150226/NEWS/150227201

 · The Lee Correctional Institution in South Carolina was under lockdown for 9 hours after several inmates attacked 7 guards February 26. – WCBD 2 Charleston

20. February 26, WCBD 2 Charleston – (South Carolina) 9-hour lockdown ends after guards attacked at SC prison in Lee County. The Lee Correctional Institution in Bishopville was under lockdown for 9 hours after several inmates attacked 7 guards February 26. Guards secured an inmate dorm after a prison staff member tried to search an inmate, resulting in several inmates attacking the officer. Source: http://www.counton2.com/story/28214754/sc-prison-in-lee-county-on-lockdown-after-hostage-reports

 · The Federal Communications Commission (FCC) approved net-neutrality regulations February 26 that gives the government expanded power over Internet access and allows the FCC to bar Internet providers from practices that unreasonably interfere with the ability to reach web services for users. – Nextgov See item 24 below in the Information Technology Sector

Financial Services Sector

8. February 26, Kent Reporter – (Washington) Two Kent residents indicted as part of large bank fraud ring. A 10-member bank fraud ring in Washington was indicted during the week of February 23 for allegedly using stolen checks from 7 banks to make fraudulent deposits into 219 different bank accounts to inflate the bank accounts and withdraw more than $987,000 in cash from November 2010 to present. Source: http://www.kentreporter.com/news/294295531.html

9. February 26, KSTU 13 Salt Lake City – (Utah) Draper man indicted for 15 counts of mail fraud after allegedly misappropriating $24 million. A former American Pension Services executive was indicted in a U.S. District Court in Utah February 26 for allegedly running a scheme from 1998-2014 that defrauded over 5,000 customers out of approximately $24 million by using false and fraudulent representations, promises, and omissions of material facts to obtain the funds that were used to make personal, high-risk investments. Source: http://fox13now.com/2015/02/26/draper-man-indicted-for-15-counts-of-mail-fraud-after-allegedly-misappropriating-24-million/

Information Technology Sector

22. February 27, Softpedia – (International) Apps bypass Google Play verification and spew tempest of ads. Bitdefender security researchers discovered 10 apps hosted in Google Play that use social engineering to trick users into installing ad-spewing software and relied on deceptive tactics to ensure persistence on users’ devices. None of the apps linked to Web sites hosting malware, allowing the apps to bypass Google Play quality controls. Source: http://news.softpedia.com/news/Apps-Bypass-Google-Play-Verification-and-Spew-Tempest-of-Ads-474466.shtml

23. February 27, Securityweek – (International) Critical vulnerability found in Jetty web server. Security researchers from Gotham Digital Science discovered a critical vulnerability dubbed JetLeak in the Eclipse Foundation’s Jetty Web server that allows remote, unauthenticated attackers to read arbitrary data from requests previously submitted by users to the server, including cookies, authentication tokens, anti-CSRF tokens, usernames, and passwords. The flaw was addressed February 24 with the release of Jetty version 9.2.9 while the Jetty development team reported an anticipated fix for the vulnerability in version 9.3.0. which is in beta. Source: http://www.securityweek.com/critical-vulnerability-found-jetty-web-server

24. February 26, Nextgov – (International) It’s official – FCC enacts expansive net-neutrality rules. The Federal Communications Commission (FCC) approved sweeping net-neutrality regulations February 26 that gives the government expanded power over Internet access, and allows the FCC to bar Internet providers from blocking Web sites, selectively slowing down any content, or offering bandwidth increases for specific content with payment. The rules also classify the Internet as a telecommunications service under Title II of the Communications Act. Source: http://www.nextgov.com/cio-briefing/2015/02/its-officialfcc-enacts-expansive-net-neutrality-rules/106242/

Communications Sector

See item 24 above in the Information Technology Sector