Tuesday, March 10, 2015



Complete DHS Report for  March 10, 2015

Daily Report

Top Stories

 · Two California women were convicted March 5 for their roles in a scheme that defrauded union and private health insurance programs of more than $50 million. – Torrance Daily Breeze

17. March 6, Torrance Daily Breeze – (California) San Pedro woman convicted for role in insurance fraud. Two California women were convicted March 5 for their roles in a scheme that defrauded union and private health insurance programs of more than $50 million by submitting bills for medically unnecessary procedures to the International Longshore and Warehouse Union and Operating Engineers Union health insurance plans, along with Aetna and Anthem insurance, for beneficiaries who received free or discounted cosmetic surgeries. The women convinced beneficiaries to undergo several medically unnecessary procedures in order to obtain free or discounted cosmetic surgeries. Source: http://www.dailybreeze.com/general-news/20150306/san-pedro-woman-convicted-for-role-in-insurance-fraud

 · The British National Crime Agency arrested an individual in the U.K. March 4 that is believed to be responsible for breaching the U.S. Department of Defense’s Enhanced Mobile Satellite Services communication system in June 2014. – Softpedia

18. March 6, Softpedia – (International) Suspected US Department of Defense hacker arrested in UK. The British National Crime Agency arrested an individual that is believed to be responsible for breaching the U.S. Department of Defense’s Enhanced Mobile Satellite Services communication system in June 2014, in the U.K. March 4. The suspect allegedly gained access to contact details and phone numbers of 800 individuals and the International Mobile Station Equipment Identity (IMEI) codes for about 34,400 devices in the 2014 breach. Source: http://news.softpedia.com/news/Suspected-US-Department-of-Defense-Hacker-Arrested-in-UK-475120.shtml

 · Two men were arrested for their alleged roles in a spam campaign that made millions of dollars from 2009-2011 by stealing over 1 billion addresses from 8 U.S. email providers, which is considered to be the largest data breach in U.S. history. – Softpedia See item 22 below in the Information Technology Sector

 · Thousands remained without Internet and telephone service in the Williamson and Pikeville areas of West Virginia after to high flood waters that took out a main fiber optic line March 5. – Logan Banner; Associated Press See item 23 below in the Communications Sector

Financial Services Sector

8. March 7, Associated Press – (New Jersey; New York) Wig-wearing bandit robbed bank of more than $100G. Authorities arrested and charged a White Plains, New York woman March 5, for allegedly using a paintball gun to rob a Glen Rock Savings Bank branch in Glen Rock, New Jersey, of more than $100,000. Source: http://www.foxnews.com/us/2015/03/07/wig-wearing-bank-bandit-robbed-bank-more-than-100g/

For another story, see item 12 below from the Food and Agriculture Sector

12. March 9, Krebs on Security – (International) Point-of-sale vendor NEXTEP probes breach. The president of point-of-sale (PoS) vendor NEXTEP Systems confirmed during the week of March 2 reports that the security of systems used at some of its customer locations, which largely includes restaurants, corporate cafeterias, casinos, airports, and other food service venues, may have been compromised. An investigation was initiated due to reports of a pattern of fraud on payment cards used at Zoup restaurants across the U.S. and Canada. Source: http://krebsonsecurity.com/2015/03/point-of-sale-vendor-nextep-probes-breach/

Information Technology Sector

21. March 9, Securityweek – (International) Email spoofing flaw found in Google Admin console. Security researchers identified a security flaw in the Google Apps Admin console that could have been exploited to gain temporary ownership of any previously unclaimed domain and used to send malicious emails that would not be flagged as suspicious because they came from trusted servers. Google has addressed the vulnerability. Source: http://www.securityweek.com/email-spoofing-flaw-found-google-admin-console

22. March 7, Softpedia – (International) Two arrested in the largest data breach in the US. Two men were arrested for their roles in what authorities are calling the largest data breach in U.S. history, in which the suspects allegedly made millions of dollars between 2009-2012 by stealing over 1 billion email addresses from 8 U.S. email service providers and used their distribution platforms to send millions of spam emails containing links to Web sites that promoted products through affiliated marketing activities. Authorities continue to search for a third suspect connected to the scheme. Source: http://news.softpedia.com/news/Two-Arrested-in-the-Largest-Data-Breach-in-the-US-475156.shtml

For another story, see item 18 above in Top Stories

Communications Sector

23. March 8, Logan Banner; Associated Press – (West Virginia) Major internet outage in Mingo. Thousands of Suddenlink costumers in the Williamson and Pikeville areas of West Virginia were without Internet and telephone service after high flood waters pulled down over a 300 foot stretch of fiber optic cable that extended across the river near Nolan March 5. Crews worked to determine how to safely reach the cable and reported that there was no estimated date for restoring services. Source: http://www.loganbanner.com/news/news/152227690/Major-internet-outage-in-Mingo