Monday, April 25, 2016



Complete DHS Report for April 25, 2016

Daily Report                                            

Top Stories

• Volkswagen officials agreed April 21 to fix or buy back nearly 480,000 of its Volkswagen, Audi A3, and Porsche model years 2008 – 2015 with 2-liter or 3-liter diesel engines that were equipped with illegal emissions software. – New York Times

4. April 22, New York Times – (National) Volkswagen reached deal in U.S. over emissions scandal. Volkswagen officials agreed April 21 to fix or buy back nearly 480, 000 of its Volkswagen, Audi A3, and Porsche model years 2008 – 2015 with 2-liter or 3-liter diesel engines sold in the U.S. that were equipped with illegal emissions software. Federal officials were negotiating the total amount of fines and compensation Volkswagen will have to pay. Source: http://www.nytimes.com/2016/04/22/business/international/volkswagen-emissions-settlement.html

• Nissan Motor Company Ltd., issued a recall April 21 for 12,616 of its Nissan Murano crossovers and Maxima sedan vehicles due to faulty Anti-Lock Brake System (ABS) actuators that may have been assembled with a damaged O-ring. – TheCarConnection.com

6. April 21, TheCarConnection.com – (National) 2016 Nissan Murano, Maxima recalled for braking problem. Nissan Motor Company Ltd., issued a recall April 21 for 12,616 of its model year 2016 Nissan Murano crossovers and Maxima sedan vehicles sold in the U.S. due to faulty Anti-Lock Brake System (ABS) actuators that may have been assembled with a damaged O-ring which can cause the brake fluid pressure to be improperly controlled during ABS and Vehicle Dynamic Control (VDC) activation, thereby increasing the required vehicle stopping time and increasing the risk of an accident. Source: http://www.thecarconnection.com/news/1103536_2016-nissan-murano-maxima-recalled-for-braking-problem

• Wyoming Medical Center in Casper notified 3,184 patients April 20 that their personal and medical information may have been potentially exposed in a phishing scam that targeted 2 employees February 22. – Casper Star-Tribune

12. April 21, Casper Star-Tribune – (Wyoming) Wyoming Medical Center informs 3,200 patients of email breach. Wyoming Medical Center in Casper notified 3,184 patients April 20 that their personal and medical information may have been potentially exposed in a phishing scam that targeted 2 employees February 22. Medical center officials do not believe any of the information was misused, and stated that the access was immediately blocked upon discovery of the scheme.

• A Lincoln woman was charged April 21 for illegally obtaining credit card information from business accounts in several States to purchase about $193,000 worth of Apple MacBook Pro laptops from February 25 – March 23. – Lincoln Star Journal

19. April 22, Lincoln Star Journal – (National) Police: Woman buys $190,000 worth of laptops with stolen credit cards. Officials arrested and charged a Lincoln woman April 21 for 9 counts of theft after she allegedly obtained credit card information from business accounts in several States and used the information to illegally purchase about $193,000 worth of Apple MacBook Pro laptops from February 25 – March 23. Source: http://journalstar.com/news/local/911/police-woman-buys-worth-of-laptops-with-stolen-credit-cards/article_0775c624-30e8-50c1-bf9d-24298d96b2cc.html

Financial Services Sector

Nothing to report

Information Technology Sector

16. April 22, SecurityWeek – (International) Adobe patches flaw in analytics AppMeasurement for Flash Library. Adobe release its Analytics AppMeasurement for Flash library version 4.0.1 which patched a Document Object Model (DOM)-based cross-site scripting (XSS) vulnerability after a security researcher discovered the vulnerability when the debug Tracking feature was enabled. The flaw affects version 4.0 and earlier platforms. Source: http://www.securityweek.com/adobe-patches-flaw-analytics-appmeasurement-flash-library

17. April 21, Softpedia – (International) Law enforcement, government agencies see phishing as main cyber risk. The Global Cyber Alliance (GCA), a group of government representatives from the U.S. and the United Kingdom, agreed to promote the usage of Domain-based Message Authentication, Reporting & Conformance (DMARC) protocol to make it more difficult for attackers to tamper with original documents as phishing attacks were ranked as the top cyber threat following research that revealed spear-phishing campaigns increased by 55 percent from 2015. Source: http://news.softpedia.com/news/law-enforcement-government-agencies-see-phishing-as-main-cyber-risk-503272.shtml

18. April 21, SecurityWeek – (International) DDoS attacks continue to rise in power and sophistication. Imperva released its Global DDoS Threat Landscape Q1 2016 report which revealed that distributed denial of service (DDoS) attacks were more advanced and sophisticated after an analysis revealed that attackers increased the use of browser-like DDoS bots with capabilities of bypassing security challenges by 36.6 percent and attackers were seen executing new ways to perform application layer assaults including Hypertext Transfer Protocol Secure (HTTPS) POST flood. Source: http://www.securityweek.com/ddos-attacks-continue-rise-power-and-sophistication

Communications Sector

Nothing to report