Monday, February 29, 2016



Complete DHS Report for February 29, 2016

Daily Report                                            

Top Stories

• The New Jersey State Department of Environmental Protection and IMTT reported February 25 that crews recovered 95,000 gallons of mixture from the excavation area, and another 62,000 gallons from the combined sewer system in Halecky-IMTT Park in Bayonne. – Jersey Journal

1. February 25, Jersey Journal – (New Jersey) Oil leak in Bayonne park stopped, permanent repairs to follow, DEP says. The New Jersey State Department of Environmental Protection and IMTT reported February 25 that crews recovered 95,000 gallons of mixture from the excavation area, and another 62,000 gallons from the combined sewer system after stopping a leak in Halecky-IMTT Park in Bayonne following a pipeline rupture that was reported February 22. Source:   http://www.nj.com/hudson/index.ssf/2016/02/oil_leak_in_bayonne_park_stopped_permanent_repairs.html#incart_river_index

• An employee at Excel Industries opened fire at the Hesston, Kansas industrial facility February 25 killing 3 people and injuring 14 before authorities shot and killed the gunman.. – ABC News

3. February 26, ABC News – (Kansas) Kansas gunman issued restraining order at scene of deadly shooting before killings, cops say. An employee at Excel Industries opened fire at the Hesston, Kansas industrial facility February 25, killing 3 people and injuring 14 before authorities shot and killed the gunman. Authorities reported the man opened fire at two other locations prior to the factory shooting and are investigating the shooter’s motive. Source: http://abcnews.go.com/US/kansas-shooter-issued-restraining-order-killings-cops/story?id=37214171

• Baltimore City officials announced February 25 that at least 200,000 gallons of wastewater containing some raw sewage flowed into the Chesapeake Bay from cracked pipes and manholes during severe storms February 24. – Baltimore Sun

12. February 25, Baltimore Sun – (Maryland) 200,000 gallons of wastewater flowed into bay during Wednesday’s storms. The Baltimore City Department of Public Works announced February 25 that at least 200,000 gallons of wastewater containing some raw sewage flowed into the Chesapeake Bay from cracked pipes and manholes during severe storms February 24. An additional 50,000 gallons of wastewater that was in the process of treatment at the Patapsco Wastewater Treatment Facility overflowed into the Patapsco River due to a surge of water and power outage. Source: http://www.baltimoresun.com/news/maryland/bs-md-ci-sewer-overflows-20160225-story.html

• Palo Alto Networks released updates for its PAN-OS that fixed several vulnerabilities including a high severity flaw that can allow a remote, unauthenticated attacker to execute arbitrary operating system commands. – SecurityWeek See item 20 below in the Information Technology Sector

Financial Services Sector

5. February 24, U.S. Attorney’s Office, Northern District of Illinois – (Illinois) Chicago real estate developer convicted on Federal fraud charges on swindling banks and the city out of millions of dollars in loans. The former president of Joseph Freed & Associates LLC, (JFA) was found guilty February 24 of Federal fraud charges relating to a $105 million line of credit he received for city and suburban properties, including a former Goldblatt’s Department Store and the Streets of Woodfield Mall after he signed false affidavits to obtain millions of dollars in Tax Increment Financing (TIF) from the city of Chicago in 2009 and 2010, and stole $7 million from his business partner, Kimco Realty Corp. and recorded the money as loans. Source: http://www.justice.gov/usao-ndil/pr/chicago-real-estate-developer-convicted-federal-fraud-charges-swindling-banks-and-city

Information Technology Sector

17. February 26, SecurityWeek – (International) Over 60 vulnerabilities patched in Apple TV. Apple released Apple TV version 7.2.1 which patched security holes in over 20 different components of the TV including Webkit, the kernel, the third-party app sandbox, Office Viewer, and Cloudkit, among other libraries, and patched vulnerabilities that can be exploited for information disclosure, execution of unsigned code, arbitrary code execution, application crashes, and modifications to protected parts of the filesystem.

18. February 25, SecurityWeek – (International) Breach detection time improves, destructive attacks rise: FireEye. FireEye-owned Mandiant released a report titled, M-Trends which stated that current organizations were improving their breach detection rates after an investigation on real-life incidences revealed that the median detection rate improved from 205 days in 2014 to 146 days in 2015. The report also stated that disruptive attacks were a legitimate threat and gave insight into how organizations can prepare for and deal with such attacks. Source: http://www.securityweek.com/breach-detection-time-improves-destructive-attacks-rise-fireeye

19. February 25, SecurityWeek – (International) Cisco patches command injection flaw in ACE appliance. Cisco released patches for its Application Control Engine (ACE) 4710 appliances after the company found that the product’s Device Manager graphical user interface (GUI) had an insufficient user input validation flaw that could be exploited by a remote, authenticated attacker to execute command-line interface commands with administrator privileges by sending specially crafted Hypertext Transfer Protocol (HTTP) POST requests with commands injected into the value of the POST parameter. Attackers could exploit the flaw to bypass role-based access control (RBAC) restrictions. Source: http://www.securityweek.com/cisco-patches-command-injection-flaw-ace-appliance

20. February 25, SecurityWeek – (International) Palo Alto Networks fixes PAN-OS vulnerabilities. Palo Alto Networks released updates for its PAN-OS, the operating system (OS) for its enterprise security platform, which fixed several vulnerabilities including a high severity flaw that can allow a remote, unauthenticated attacker, with access to the device to execute arbitrary OS commands, and a critical buffer overflow flaw in the GlobalProtect portal that can be exploited to cause a denial-of-service (DoS) condition, crash a device, and potentially cause a remote code execution.

Communications Sector

Nothing to report