Complete DHS Report for November 15, 2016
• Mitsubishi Motors Corporation issued a recall November 10 for 194,616 of its model years 2007 – 2015 Mitsubishi Outlander and Outlander Sport crossover vehicles due to separate issues affecting the vehicles’ windshield wipers. – TheCarConnection.com
1. November 10, TheCarConnection.com – (National) Mitsubishi Outlander, Outlander Sport recalled for windshield wiper woes: 195,000 vehicles affected. Mitsubishi Motors Corporation issued a recall November 10 for 194,616 of its model years 2007 – 2015 Mitsubishi Outlander and Outlander Sport crossover vehicles sold in the U.S. due to separate issues affecting the vehicles’ windshield wipers, both of which can lead to corrosion, thereby preventing the windshield wipers from working properly. Source: http://www.thecarconnection.com/news/1107199_mitsubishi-outlander-outlander-sport-recalled-for-windshield-wiper-woes-195000-vehicles-affected
• A co-owner of Houston-based Fiango Home Healthcare Inc. was convicted November 10 for her role in a $13 million Medicare fraud and money laundering scheme. – U.S. Department of Justice
15. November 11, U.S. Department of Justice – (Texas) Jury convicts home health agency owner in $13 million Medicare fraud conspiracy. A co-owner of Houston-based Fiango Home Healthcare Inc. was convicted November 10 for her role in a $13 million Medicare fraud and money laundering scheme where she and co-conspirators submitted fraudulent claims to Medicare for home-health services that were medically unnecessary or not provided, paid illicit kickbacks to physicians in exchange for authorizing the home-health services for Medicare beneficiaries, and used the money Medicare paid for the claims to pay kickbacks to patient recruiters for referring Medicare beneficiaries for services from February 2006 – June 2015. The group also falsified medical records to show that the Medicare beneficiaries qualified for and received Fiango’s home-health services.
• About 1,400 firefighters worked November 13 to contain over a dozen wildfires that have scorched roughly 34,000 acres in the North Carolina mountains. – WNCN 17 Goldsboro; Associated Press
16. November 14, WNCN 17 Goldsboro; Associated Press – (North Carolina) 1,400 firefighters battle NC mountain wildfires that now top 33,000 acres. About 1,400 firefighters worked November 13 to contain over a dozen wildfires that have scorched roughly 34,000 acres in the North Carolina mountains. Officials issued an evacuation order for part of Chimney Rock in Rutherford County near Lake Lure and mandatory evacuation orders remain in place for five other counties across the State.
• Nearly 60 firefighters worked November 14 to contain a 3-alarm fire at a construction site in the South End neighborhood of Charlotte, North Carolina, that caused $2 million in damages. – WSOC 9 Charlotte
22. November 14, WSOC 9 Charlotte – (North Carolina) 3-alarm fire at South End townhomes ruled arson, fire officials say. Nearly 60 firefighters worked November 14 to contain a 3-alarm fire at a construction site in the South End neighborhood of Charlotte, North Carolina, that caused $2 million in damages, prompted the evacuation of nearby apartment buildings, and shut down several area roads. No injuries were reported and officials are investigating the fire as a case of arson.
Financial Services Sector
Nothing to report
Information Technology Sector
19. November 11, SecurityWeek – (National) U.S. authorities reach settlement with Adobe over 2013 breach. Authorities in 15 States reached a $1 million settlement with Adobe Systems November 10 after the company reportedly failed to employ reasonable measures to protect its customers’ personal information and detect malicious activity within its network, causing a massive data breach in 2013 that compromised over 150 million records. As part of the settlement, Adobe agreed to institute new policies and practices to prevent future breaches, including effectively separating payment card data from public-facing servers, performing ongoing risk assessments, and providing security training to employees, among other practices. Source: http://www.securityweek.com/us-authorities-reach-settlement-adobe-over-2013-breach
20. November 11, SecurityWeek – (International) Low-bandwidth “BlackNurse” DDoS attack can disrupt firewalls. Researchers from Danish telecom operator TDC warned that certain distributed denial-of-service (DDoS) attacks based on the Internet Control Message Protocol (ICMP) Type 3 Code 3 packets, dubbed “BlackNurse” can be highly effective over low bandwidths and can cause firewalls, including Cisco Adaptive Security Appliance (ASA) and SonicWall, to enter a temporary denial-of-service (DoS) condition. TDC reported that all the firewalls observed recovered once the DDoS attacks stopped. Source: http://www.securityweek.com/low-bandwidth-blacknurse-ddos-attacks-can-disrupt-firewalls
21. November 10, SecurityWeek – (International) High severity DoS flaw patched in OpenSSL. The OpenSSL Project released OpenSSL 1.1.0c resolving three vulnerabilities after a Google security researcher discovered a heap-based buffer overflow associated with Transport Layer Security (TLS) connections using ChaCha20-Poly1305 cipher suites that can lead to a denial-of-service (DoS) condition, which could result in a crash of OpenSSL. The update also addresses a moderate severity flaw that can cause applications to crash, and a low severity issue related to the Broadwell-specific Montgomery multiplication procedure. Source: http://www.securityweek.com/high-severity-dos-flaw-patched-openssl
Nothing to report