Friday, October 16, 2015



Complete DHS Report for October 16, 2015

Daily Report                                            

Top Stories

 • Officials approved October 14 NST Express LLC’s $60 to $80 million bid to build a 12-inch diameter crude oil pipeline in McKenzie County by late 2016. – Bismarck Tribune

1. October 15, Bismarck Tribune – (North Dakota) Public Service Commission approves new 23-mile Bakken oil pipeline. The North Dakota Public Service Commission approved October 14 NST Express LLC’s $60 – $80 million bid to build a 12-inch diameter crude oil pipeline in McKenzie County by late 2016. The 23-mile pipeline would transport oil from NST Express Alexander Facility to its NST Transload East Fairview Facility with a maximum capacity of 100,000 barrels per day. Source: http://www.inforum.com/news/3861366-public-service-commission-approves-new-23-mile-bakken-oil-pipeline

 • The governor of California signed legislation October 15 banning products containing tiny exfoliating microbeads after it was determined that the beads pass through water filtration systems without disintegrating. – Fox News; Associated Press

12. October 15, Fox News; Associated Press – (California) California bans ‘microbeads’ in victory for environmentalists. The governor of California signed legislation October 15 banning products containing tiny exfoliating microbeads, which will be imposed in 2020, after it was determined that the beads pass through water filtration systems without disintegrating. The plastic beads were found in the San Francisco bay, as well as in open oceans, rivers, and the Great Lakes. Source: http://www.foxnews.com/politics/2015/10/15/california-bans-microbeads-in-victory-for-environmentalists/

 • Texas Governor declared a state of emergency October 15 due to the Smithville Fire that has burned over 4,200 acres, destroyed 9 structures, and forced the evacuation of about 200 homes. – San Antonio Express-News

14. October 15, San Antonio Express-News – (Texas) Texas governor declares state of disaster in Bastrop County for fire. Texas Governor declared a state of emergency October 15 due to the Smithville Fire that has burned over 4,200 acres in Bastrop County, Texas, destroyed 9 structures, and forced the evacuation of about 200 homes. Crews reached 15 percent containment of the fire. Source: http://www.mysanantonio.com/news/local/article/Bastrop-County-crews-battle-fire-that-forces-6569034.php

 • The U.S. Customs and Border Protection experienced a 90-minute outage October 14 with its processing systems at airports of entry prompting U.S. international travelers to be processed with substitute procedures. – WFOR 4 Miami

15. October 14, WFOR 4 Miami – (National) Computer glitch temporarily knocks out U.S. Customs processing system. The U.S. Customs and Border Protection announced that it experienced a 90-minute outage October 14 with its processing systems at airports of entry in the U.S. International travelers were processed with substitute procedures while the technical disruption was addressed. Source: http://miami.cbslocal.com/2015/10/14/computer-glitch-temporarily-knocks-out-u-s-customs-processing-system/

Financial Services Sector

Nothing to report

Information Technology Sector

16. October 15, Help Net Security – (International) Attackers can use Siri, Google Now to secretly take over smartphones. Security researchers from the French Network and Information Security Agency discovered that attackers could use a laptop running GNU Radio, an amplifier, a universal software radio peripheral (USRP) software-defined radio, and antenna to take over smartphones with headphones plugged in via the Google Now and Siri personal assistants. The attack utilizes the device’s headphone cord as an antenna, and can enable hackers to force phones to send emails and messages, visit malicious sites, or become an eavesdropping device. Source: http://www.net-security.org/secworld.php?id=18984

17. October 15, Securityweek – (International) Serious vulnerabilities patched in SAP products. SAP released 29 patches and support packages addressing 1 critical and 15 high priority issues, including missing authorization checks, information disclosure vulnerabilities, cross-site scripting (XSS) flaws, buffer overflows, and a structured query language (SQL) injection vulnerability, as well as a severe remote command execution vulnerability affecting the SAP HANA database management system. Source: http://www.securityweek.com/serious-vulnerabilities-patched-sap-products

18. October 14, Securityweek – (International) Zero-day flaw in Magento tool exploited in the wild. Security researchers from Trustwave discovered a vulnerability in a version of the Magmi mass importer tool for eBay’s Magento platform in which the tool’s “download_file.php” opens a specified file without conducting checks to guard against directory traversal attacks, potentially allowing access to sensitive files. Magento identified and contacted the owners of 1,700 potentially vulnerable Web sites. Source: http://www.securityweek.com/zero-day-flaw-magento-tool-exploited-wild

Communications Sector

See item 16 above in the Information Technology Sector