Wednesday, July 15, 2015




Complete DHS Report for July 15, 2015

Daily Report                                            

Top Stories

 · Portions of Highway 60 and businesses within a half-mile of Santie Wholesale Oil in Sikeston, Missouri were evacuated for several hours July 13 after a fire caused hundreds of propane cylinders to explode. – KFVS 12 Cape Girardeau

1. July 14, KFVS 12 Cape Girardeau – (Missouri) Sikeston oil fire still too hot for investigators to determine cause. Portions of Highway 60 and businesses within a half mile of Santie Wholesale Oil in Sikeston, Missouri were evacuated for several hours July 13 after a fire caused hundreds of propane cylinders to explode. No civilian injuries were reported, and an investigation into the cause of the fire began July 14. Source: http://www.wtvm.com/story/29534370/hwy-60-re-opens-after-large-fire-in-sikeston

 · Bank and police officials confirmed July 12 that ATM skimming devices were discovered at six Sunflower, INTRUST, and Fidelity Bank locations in Wichita and two Sunflower Bank locations in Salina. – Wichita Eagle See item 6 below in the Financial Services Sector

 · A Naples man pleaded guilty July 13 to an investment fraud scheme in which he allegedly used false assurances and fake documentation to solicit over $7 million from about 96 investors. – Fort Myers News-Press See item 7 below in the Financial Services Sector

 · Adobe released patches addressing two critical use-after-free vulnerabilities in ActionScript 3 revealed in data dumped from a recent breach of the Italian surveillance software company Hacking Team. – Threatpost See item 16 below in the Information Technology Sector

Financial Services Sector

6. July 14, Wichita Eagle – (Kansas) More ATM skimmers found in Wichita, at three Intrust Bank locations. Bank and police officials confirmed July 12 that ATM skimming devices were discovered at six Sunflower, INTRUST, and Fidelity Bank locations in Wichita and two Sunflower Bank locations in Salina in July. Authorities believe the suspects are part of an organized gang.

7. July 13, Fort Myers News-Press – (Florida) Naples man pleads guilty to $7M wire fraud scheme. A Naples man pleaded guilty July 13 to an investment fraud scheme in which he allegedly used false assurances and fake documentation to solicit over $7 million from about 96 investors, which he used to pay other investors and diverted for personal expenses. Source: http://www.news-press.com/story/news/crime/2015/07/13/naples-man-pleads-guilty-to-7m-wire-fraud-scheme/30090453/

8. July 13, Reuters – (New York) Ex-NY Assembly speaker’s son-in-law admits to defrauding investors. The co-owner of New York-based Allese Capital LLC pleaded guilty July 13 to operating a Ponzi scheme in which he allegedly defrauded investors out of almost $6 million from 2007 – 2014 by soliciting securities investments, only a portion of which he actually invested, while using the rest to repay other investors and for personal expenses. Source: http://www.reuters.com/article/2015/07/13/usa-new-york-silver-fraud-idUSL2N0ZT1Z820150713

Information Technology Sector

16. July 14, Threatpost – (International) Flash Player update patches two Hacking Team zero days. Adobe released patches addressing two critical use-after-free vulnerabilities in ActionScript 3 revealed in data dumped from a recent breach of the Italian surveillance software company Hacking Team. Both flaws allowed an attacker to use a Web site hosting the exploit to completely take over an affected system. Source: https://threatpost.com/flash-player-update-patches-two-hacking-team-zero-days/113776

17. July 13, Threatpost – (International) Kaseya patches two bugs in VSA IT management platform. Kaseya patched two flaws in its VSA IT management platform, including open redirect vulnerability in which an unauthenticated attacker could redirect users to sites with malicious content, and a path traversal bug in which an authenticated attacker could use a specially crafted Hyptertext Transfer Protocol (HTTP) request to traverse directories and download arbitrary files.

Communications Sector

Nothing to report