Short Takes – 11-5-24

Latest space station science reveals news for astronaut health and telescope longevity. Phys.org article. Pull quote: “The day they return from space flight, astronauts demonstrate significant impairments in fine motor control and the ability to multitask in simulated flying and driving challenges. This finding could help develop countermeasures so crew members can safely land and conduct early operations on the moon and Mars.”

Bacteria discovery could accelerate mosquito control schemes. Phys.org article. Pull quote: “The mechanism for this is unclear, but it does not appear that these bacteria provide direct nutritional benefits. Instead, they changed the wider bacterial community, reducing the abundance of certain bacteria—including some species that may be slightly parasitic.”

NASA’s infrastructure crossroads. TheSpaceReview.com article. Pull quote: “In a webinar held by the National Academies to roll out the report [“NASA at a Crossroads”], Augustine and other committee members said that NASA has underinvested in facilities because of budget pressures. The amount of the agency’s budget that went to “mission support,” a line that includes facility maintenance, fell from 20% of NASA’s overall budget in 2013 to 14% in 2023. “In an opportunity-rich environment, such as NASA has confronted over the years, the choice has too frequently been to pursue near-term missions at the expense of investing in the ostensibly invisible foundational assets of the organization,” the report stated.”

How the Election Could Unfold: Four Scenarios. NYTimes.com article. Pull quote: “If the final result resembles the polls, all strengths and weaknesses will more or less cancel out, yielding yet another close election. There are reasons to think, however, that the race might break one way or another. The polls may show a tight race now, but they could err either way. Even if the polls are better this cycle, voters still might summarily decide that one side’s liabilities are more important as they head to the polls.”

Agencies have completed their pre-election transition briefings. Trump may still not get them on time. GovExec.com article. Pull quote: “A former federal transition official told Government Executive that GSA is currently having discussions over how to handle access to buildings and classified materials for his landing team members who have not been cleared. Under law, the official said, those individuals must be publicly disclosed and their ethics agreements posted in order to participate. Harris has already released her team’s ethics agreement as part of its White House memorandum of understanding.”

Public Briefing on Revisions to Space-Related Export Controls Under Export Administration Regulations and International Traffic in Arms Regulations. Federal Register BIS meeting notice. Summary: “On October 23, 2024, the Bureau of Industry and Security (BIS) published in the Federal Register related rules: a final rule, “Export Administration Regulations: Removal of License Requirements for Certain Spacecraft and Related Items for Australia, Canada, and the United Kingdom,” and an interim final rule, “Export Administration Regulations: Revisions to Space-Related Export Controls.” This document announces that, on November 6, 2024, BIS will host a public briefing on these rules. This document also provides details on the procedures for participating in the public briefing. Elsewhere in this issue of the Federal Register, BIS is publishing notification of the public briefing on related proposed rulemaking.”

Short Takes – 11-4-24

How the Brain Summons Deep Sleep to Speed Healing. ScientificAmerican.com article. Pull quote: “To understand the purpose of the extra sleep, the researchers repeatedly interrupted slow-wave sleep in mice that had had a heart attack. The team found that these mice had more inflammation in both the brain and the heart, and had a much worse prognosis than mice that were allowed to sleep undisturbed after a heart attack.”

People Overestimate Political Opponents’ Immorality. ScientificAmerican.com article. Pull quote: “Although this solution clearly cannot resolve all of our political divisions, it can still have powerful effects. Sometimes we need a reminder that they are like us. We may disagree on many issues, but underneath those disagreements lies a common moral sense: we all care deeply about protecting our friends, family and communities from harm. Talking about our core principles and values—many of which we have in common—before talking about issues that can easily turn contentious can help those conversations go better.”

This Black Fungus Might Be Healing Chernobyl By Drinking Radiation—A Biologist Explains. Forbes.com article. Pull quote: “This fungus has adapted to a level of radiation that would be lethal for most life forms. Even more fascinating is its ability to “feed” on this radiation, using it as a source of energy, similar to how plants use sunlight for photosynthesis.” There is a difference between using ‘radiation’ as an energy source and remediating the radioactive materials in the environment.

On whose authority? EPA asserts right to regulate DOT-governed activities. BultTransport.com article. Pull quote: “Instead, the violations all relate to Multistar’s “storage” of a hazardous chemical called trimethylamine (TMA) on its rail siding. The TMA was produced by Eastman Chemical Company, sold to Moses Lake Industries, and held in Eastman’s tank cars while awaiting delivery by truck to its final destination. The court mentions Multistar’s previous EPA compliance issues settled in 2005, 2016, 2019, and 2021; the amount of TMA held on Multistar’s rail siding; the length of time it was there; the lack of “motive power” attached to the tank cars; and the absence of shipping papers in justifying its decision. “The court once again rejects Multistar’s claim that the TMA was in transit while it was stored on Multistar’s rail siding,” the decision reads. “No facts support such a conclusion.”

Influential Attorneys Send a Message to Their Peers: No More Frivolous Election Lawsuits. USNews.com article. Pull quote: “The ABA’s letter came together in a manner of days, says Monte Frank, a member of the task force’s advisory commission and past president of the bar associations of Connecticut and New England. He says members were discussing ways that they could remind lawyers that they are “oath-bound protectors of the Constitution and rule of law and to not only uphold their ethical obligations, but to make efforts to ensure free and fair elections, which is a bedrock principle of our democracy.””

CISA Adds 2 IP Camera Vulnerabilities to KEV Catalog

Today, CISA added two new vulnerabilities to their Known Exploited Vulnerabilities (KEV) catalog. Both vulnerabilities are for PT30X-SDI/NDI Cameras from PTZOptics. The vulnerabilities were originally reported by Konstantin Lazarev of GreyNoise. PTZOptics has a new firmware version that mitigates the vulnerabilities. Federal agencies that own or operate these cameras have until November 25^th, 2024, to “Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.”

The two newly added vulnerabilities are:

• OS command injection - CVE-2024-8957, and

• Improper authentication - CVE-2024-8956

Note: Links above are for advisories published by VulnCheck.

An interesting side note: PTZOptics made the corrected version of the firmware available on September 17^th, 2024. The change log for v6.3.40 does not specifically identify these two vulnerabilities. Instead, it reports: “General Security Fixes.”

One final note: The two VulnCheck advisories reports that these vulnerabilities also affect: “Other white-label AV equipment based on ValueHD Corporation PTZ Camera Firmware”. This is not mentioned in the CISA KEV notice.

Short Takes – 11-4-24 – Space Geek Edition

Starship Flight 6 might come faster than previous launches. SpaceExplored.com article. Pull quote: “With both pieces of hardware nearing flight readiness, Flight 6 I would expect will be nearly the same as Flight 5 (with likely some changes to operations while in space) and could be ready for flight in December. All this is based on the fact that the company is already in the flight test campaign; an even sooner date could be possible. It is SpaceX, after all.”

NASA warns SpaceX over safety issues after astronaut hospitalization. PopSci.com article. Pull quote: “NASA is concerned SpaceX is prioritizing its mission schedule over safety after a recent ocean landing resulted in the brief hospitalizations of all four astronauts. Former astronaut Kent Rominger admonished the company during an October 31 meeting of the Aerospace Safety Advisory Panel, citing a list of recent problems involving both SpaceX’s Falcon 9 rocket and Dragon capsule.” Still nothing about why astronauts were taken to hospital.

Launch: The Fundamental Prerequisite for Space Superiority. AirAndSpaceForces.com article. Well thought out discussion. Pull quote: “With so many providers today, the state of U.S. launch appears solid. But the reality is far more complex. Launch is literally “rocket science.” Early failures in development are common, and catastrophic failures are always possible, potentially causing downstream ripple delays across multiple launch systems. Constant attention and investment are required to ensure the necessary levels of confidence, capacity, and cadence for U.S. space launch to deliver the on-orbit architecture the Space Force needs to deter conflict in the future—or win if deterrence fails.”

Watch Rocket Lab launch mystery mission early on Nov. 5. Space.com article. Pull quote: “"Changes in Latitudes, Changes in Attitudes" will be Rocket Lab's 12th launch of 2024 and 54th overall. All of these missions have been performed by the 59-foot-tall (18 meters) Electron, which is designed to give small satellites dedicated rides to Earth orbit or beyond. (An Electron launched NASA's CAPSTONE mission, which sent a cubesat to the moon.)”

Review – HR 8770 Introduced – Cybersecurity Clinic Grants

Back in June, Rep Veasey (D,TX) introduced HR 8770, the Cybersecurity Clinics Grant Program Act. The bill would require CISA to establish a new Cybersecurity Clinics Grant Program to provide “grants to fund university-based cybersecurity clinics”. The program would be administered by FEMA. The legislation would authorize “such sums as may be necessary to carry out the Program.”

Moving Forward

While Veasy is not a member of the House Homeland Security Committee to which this bill was assigned for consideration, one of his cosponsors {Rep Pfluger (R,TX)} is a member. This means that there may be sufficient influence to see the bill considered in Committee. There will be objections from a number of Republicans to the establishment of a new grant program, particularly a program that targets minority institutions. There still should be some level of bipartisan support for the bill, but it is not clear if that support would be sufficient to move the bill to the floor of the House under the suspension of the rules process.

 

For more details about the provisions of this bill, including a commentary on the scope of the term ‘cybersecurity’ used in the bill, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/hr-8770-introduced - subscription required.

UAVs for CBRN Sampling

There is an interesting article over at I-HLS.com that describes the operation of the US Army’s new Stryker Nuclear Biological Chemical Reconnaissance Vehicle. The article highlights the operational capabilities of the relatively new vehicle system (including the carried CBRN reconnaissance UAV), while neglecting the shortcomings that the Army identified in their testing program. Still the idea of using a drone for conducting rapid chemical and radiological surveillance is a worthwhile concept.

How many times have we seen news footage of ominous dark clouds from fires at chemical facilities while the same news reports quote regulatory officials claiming that groundside atmospheric monitoring detects ‘no chemicals of concern’. If those officials were able to sample within that very large cloud, they might provide a very different and more complete description of the downwind hazard.

Emergency response managers with a significant number of chemical facilities (or even just one or two with particularly noxious toxic chemicals on hand) might find it worthwhile to invest in such UAVs to be launched from Fire Department chemical response vehicles. This would allow first responders to have real-time data about the location and concentration of airborne chemicals during incidents.

Review – Public ICS Disclosures – Week of 10-25-24 – Part 2

For Part 2 this week we have nine additional vendor disclosures from Moxa, Palo Alto Networks, Philips (3), QNAP (2), Western Digital, and Zyxel. There are six vendor updates from FortiGuard, Hitachi Energy (4), and Moxa. We also have 12 researcher reports for vulnerabilities in products from FortiGuard and ABB (11).

Advisories

Moxa Advisory - Moxa published an advisory that discusses two vulnerabilities (both with publicly available exploits) in their Ethernet Switches.

Palo Alto Networks Advisory - Palo Alto Networks published an advisory that discusses 42 open-source software vulnerabilities.

Philips Advisory #1 - Philips published an advisory that discusses a missing authentication for critical function vulnerability.

Philips Advisory #2 - Philips published an advisory that discusses an SQL injection vulnerability.

Philips Advisory #3 - Philips published an advisory that discusses an improper neutralization of expression/command delimiters vulnerability.

QNAP Advisory #1 - QNAP published an advisory that describes an uncharacterized vulnerability in their HBS 3 Hybrid Backup Sync.

QNAP Advisory #2 - QNAP published an advisory that describes an uncharacterized vulnerability in their SMB Service.

Western Digital Advisory - Western Digital published a security update notice for their My Cloud products.

Zyxel Advisory - Zyxel published an advisory that describes an insufficiently protected credentials vulnerability in their USG FLEX H series firewalls.

Updates

FortiGuard Update - FortiGuard published an update for their Missing authentication in fgfmsd advisory that was originally published on October 23^rd, 2024, and most recently updated on October 28^th.

Hitachi Energy Update #1 - Hitachi Energy published an update for their FOXMAN-UN advisory that was originally published on June 11^th, 2024.

Hitachi Energy Update #2 - Hitachi Energy published an update for their UNEM advisory that was originally published on June 11^th, 2024.

Hitachi Energy Update #3 - Hitachi Energy published an update for their MSM product advisory that was originally published on January 30^th, 2024.

Hitachi Energy Update #4 - Hitachi Energy published an update for their MicroSCADA advisory that was originally published on August 27^th, 2024, and most recently updated on August 30^th, 2024.

Moxa Update - Moxa published an update for their Cellular Routers, Secure Routers, and Network Security Appliances advisory that was originally published on October 14^th, 2024 and most recently updated on October 15^th, 2024.

Researcher Reports

FortiGuard Report - Bishop Fox published a report on the missing authentication for critical function vulnerability (CVE-2024-47575) for FortiGuard’s FortiManager product.

ABB Reports - Zero Science published eleven reports about individual vulnerabilities (with publicly available exploits) in the ABB Cylon Aspect building energy management product.

 

For more information on these vulnerabilities, including links to 3rd party advisories, researcher reports, and exploits, as well as brief summaries of the changes made in updates, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-10-a32 - subscription required.

Short Takes – 11-2-24 – Cybersecurity Edition

Data Normalization Challenges and Mitigations in Software Bill of Materials Processing. Mitre.org report. Pull quote: “The U.S. FDA has recognized the importance of SBOMs in managing postmarket software vulnerabilities in medical devices and providing transparency to the users of these devices since the 2018 Medical Device Safety Action Plan [link added] [10], including considering the need for additional regulatory authorities in this space. These authorities were granted in Section 3305 in the Consolidated Appropriations Act, 2023, which added Section 524B “Ensuring Cybersecurity of Medical Devices” to the Federal Food, Drug, and Cosmetic (FD&C) Act. This provision, among other requirements, requires SBOMs (Section 524B(b)(3)) as part of premarket submissions for cyber devices. The 2023 guidance, Cybersecurity in Medical Devices: Quality System Considerations and Content of Premarket Submissions [link added] (henceforth called “premarket cybersecurity guidance”) [11], provides, among other things, FDA’s recommendations on using SBOMs to manage cybersecurity risks.”

New Research: The Proliferation of Cellular in IoT. Rapid7.com blog post. Pull quote: “They go on to demonstrate the importance of breaking open these IoT devices with the goal of penetration testing (pentesting) the strength of the security — or lack thereof — built into the onboard tech. Absent a Wi-Fi connection, they say, it’s critical these devices are able to leverage cellular as a back-up communications method, particularly in the category of potentially life-saving medical devices.”

Testing the security of CCTV systems. PenTestParners.com blog post. Pull quote: “Some vendors, particularly those who operate at the ‘higher end’ of the market have excellent security controls and development practices. Mid-market vendors have distinctly variable security issues. Those at the low end, at a price point where it is hard to drive strong investment in cyber security, are where we have found some depressingly simple compromises.”

Unveiling the Persistent Risks of Connected Medial Devices. Forescout.com report. Pull quote: “The most common OS in embedded firmware is Linux, followed by: The real-time operating systems (RTOS) VxWorks, KADAK AMX RTOS, NutOS, ThreadX, and Digi Net+OS.”

NOTE: During my search for Researcher Reports on control system vulnerabilities for my weekly Public ICS Disclosures post I frequently run across more generic articles and blog posts that provide information of potential interest to the community at large. I will try to bring those to my Short Takes posts on Saturdays. As always, points to such vulnerability reports and articles are much appreciated.

CRS Reports – Week of 10-26-24 – Supreme Court Jurisdiction

This week the Congressional Research Service (CRS) published a report on: “The Exceptions Clause and Congressional Control over Supreme Court Jurisdiction”. The report looks at the constitutional differences between the different types of cases that the Supreme Court may here. It describes the cases over which the Court has ‘original jurisdiction’, cases that are brought directly to the Court dealing with Ambassadors, other public Ministers and Consuls, and those in which a State shall be Party. All other cases reach the Court on appeal of judgements of the lessor courts. It takes special pains to discuss the fact that the Constitution limits those appeals under the ‘Exceptions Clause’ (Article III, Section 2, Clause 2) by making those appeals subject to ““such Exceptions, and … Regulations as the Congress shall make”.

The ‘Considerations for Congress’ section of the report is much more detailed than typically seen in these CRS reports. Instead of laying out specific actions that Congress could/should consider in respect to this topic, the Report continues the legal discussion about practical limits on the topics Congress could expect try to address in regulating the topics of potential litigation before the Court.

To anyone that has taken any courses on constitutional law (and I have taken a handful of undergraduate courses when I was a political science major), this discussion is hardly unusual, but for most folks (including the majority of congresscritters) it demonstrates how complicated these matters can get. Still, this relatively short report (20 pages) is well worth reading. 

Chemical Incident Reporting – Week of 10-26-24

NOTE: See here for series background.

Davenport, IA – 10-10-24

Local News Report: Here, here, and here.

There was an anhydrous ammonia leak at a food processing facility. The leak was isolated and the employees evacuated. No injuries were reported.

Not CSB reportable.

Litchfield, CT – 10-23-24

Local News Reports: Here, here, and here.

There was an explosion in a sewage treatment sludge tank, reportedly due to flammable gas produced by sludge decomposition reaching unidentified ignition source. No injuries were reported and there was some damage to storage tank lid.

Not CSB reportable.

Alcoa, TN – 10-25-24

Local News Report: Here, here, and here

There was an anhydrous ammonia leak at a food processing facility. The leak was due to a malfunctioning valve. No injuries were reported. There is no mention of damages in the articles.

Not CSB reportable.

Fredericktown, Mo – 10-30-24

Local News Report: Here, here, here, and here.

There was a fire with explosions at a Lithium-ion battery recycling facility. Evacuations and sheter-in-place orders have been issued. No injuries have been reported. No damage estimates have yet been published. The local fire department has published a down-wind advisory map.

Probable CSB reportable.

Hayfield, MN – 10-30-24

Local News Report: Here, here, here, and here.

A rural anhydrous ammonia storage tank began leaking, causing a local road to be closed while the leak was fixed. One deputy was taken to a local hospital for exposure related concerns, but was released without being admitted.

Not CSB reportable.

Review – Public ICS Disclosures – Week of 10-25-24 – Part 1

This week, for Part 1, we have 20 vendor disclosures from Broadcom (8), Beckhoff, Bosch, GE Vernova (2), Hikvision, Hitachi Energy (2), HP (3), HPE, and Omron.

Advisories

Broadcom Advisory #1 - Broadcom published an advisory that discusses a function call with incorrect argument type vulnerability in their SANnav product.

Broadcom Advisory #2 - Broadcom published an advisory that discusses an integer overflow or wrap around vulnerability in their SANnav product.

Broadcom Advisory #3 - Broadcom published an advisory that discusses nine vulnerabilities (three with publicly available exploits) in their Fabric OS, SANnav, and ASCG products.

Broadcom Advisory #4 - Broadcom published an advisory that discusses an incorrect resource transfer between spheres vulnerability in their SANnav product.

Broadcom Advisory #5 - Broadcom published an advisory that discusses two vulnerabilities (one with publicly available exploit) in their SANnav product.

Broadcom Advisory #6 - Broadcom published an advisory that discusses an incomplete cleanup vulnerability in their SANnav product.

Broadcom Advisory #7 - Broadcom published an advisory that discusses three inadequately described vulnerabilities in their SANnav product.

Broadcom Advisory #8 - Broadcom published an advisory that discusses six vulnerabilities in their SANnav products.

Beckhoff Advisory - CERT-VDE published an advisory that describes an OS command injection vulnerability in the Beckhoff TwinCAT Package Manager.

Bosch Advisory - Bosch published an advisory that describes an uncontrolled resource consumption vulnerability in the PROFINET stack implementation of the IndraDrive.

GE Vernova Advisory #1 - GE published an advisory that discusses two vulnerabilities in Control Server installations that use VMware vCenter Server.

GE Vernova Advisory #2 - GE published an advisory that describes a side-channel key recovery vulnerability in YubiKey’s in customers using Xona devices and those using YubiKey authentication for certain HMI deployments.

Hikvision Advisory - JP- CERT published an advisory that announces firmware updates for multiple network cameras as a security enhancement, changing the behavior to communicate with Dynamic DNS services, to prevent cleartext transmission.

Hitachi Energy Advisory #1 - Hitachi Energy published an advisory that describes two vulnerabilities in their TRO600 series products.

Hitachi Energy Advisory #2 - Hitachi Energy published an advisory that discusses two vulnerabilities (both with publicly available exploits) in their MSM product web services.

HP Advisory #1 - HP published an advisory that discusses the PixieFail vulnerabilities.

HP Advisory #2 - HP published an advisory that discusses 353 vulnerabilities in their ThinPro product.

HP Advisory #3 - HP published an advisory that describes an out-of-bounds write vulnerability in their Smart Universal Printing Driver.

HPE Advisory - HPE published an advisory that discusses the regreSSHion vulnerability.

Omron Advisory - Omron published an advisory that describes an improper authorization vulnerability in their Sysmac Studio product.

 

For more information about these disclosures, including links to 3rd party advisories, researcher reports and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-10-25a - subscription required.

Short Takes – 11-1-24

WHO sounds pandemic alarm as world's deadliest infection at highest level since records began. GNNews.com article. Pull quote: “Global funding for TB prevention and care decreased further in 2023, falling far short of targets. Low-and middle-income countries, which bear 98 per cent of the TB burden, faced significant funding shortages.”

What is happening with Boeing’s Starliner spacecraft? ArsTechnica.com article. Pull quote: “Does NASA actually need Starliner? Officials with the space agency have been consistently supportive of Boeing, and expressed a preference to work with the company on continuing certification work. Because the spacecraft will now fly a human mission no earlier than 2026, it would only be available for five or fewer years of the space station's remaining lifetime.”

Public Safety and Homeland Security Bureau Announces 15-Business Day Filing Window for Cybersecurity Labeling Administrator and Lead Administrator Applications; Correction. Federal Register FCC final rule correction notice. Corrected effective date: “Effective date: November 20, 2024, except for amendment 3 (47 CFR 8.220(f)(14)) which is delayed indefinitely until the Office of Management and Budget has completed review under the Paperwork Reduction Act. The Commission will publish a document in the Federal Register announcing that effective date.”

Review - S 5276 Introduced – SRM Industrial Base

Last month, Sen Cornyn (R,TX) introduced S 5276, the Solid Propulsion Enhancement and Advancement for Readiness (SPEAR) Act of 2024. The bill would require DOD to submit to Congress a “roadmap for the future desired state for the solid rocket motor (SRM) industrial base.” No new funding would be authorized by this legislation.

Moving Forward

While Cornyn is not a member of the Senate Armed Services Committee to which this bill was assigned for consideration, one of his two cosponsors {Wicker (R,MS)} is the Ranking Member of the Committee. This means that there may be sufficient influence to see the bill considered in Committee. I see nothing in the proposed legislation that would engender any organized opposition. I suspect that the bill would receive significant bipartisan support, but this late in the session, that will probably not be sufficient to see the bill considered before the end of the year.

 

For more information about the provisions of this bill, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/s-5276-introduced - subscription required.

NOTE: This bill is being covered here as part of the ‘Space Geek’ expansion of the scope of this blog. I am still working on determining how extensive that expansion will be.

Transportation Chemical Incidents – Week of 9-28-24

Reporting Background

See this post for explanation, with the most recent update here (removed from paywall).

Data from PHMSA’s online database of transportation related chemical incidents that have been reported to the agency.

Incidents Summary

• Number of incidents – 588 (561 highway, 21 air, 6 rail, 0 water)

• Serious incidents – 6 (4 Bulk release, 2 evacuation, 2 injury, 0 death, 0 major artery closed, 3 fire/explosion, 24 no release)

• Largest container involved – 30,520-gal DOT 117J100W Railcar {Alcohols, N.O.S.} Six manway bolts loose.

• Largest amount spilled – 412.6-gal Plastic drums {Sodium Bisulfite, Solution} Drum punctured by exposed nail in pallet. (Note: with just one drum affected, the reported amount “3301” lbs should have been something on the order of 300)

NOTE: Links above are to Form 5800.1 for the described incidents.

Most Interesting Chemical: N-Aminoethylpiperazine – A colorless liquid with a faint fishlike odor. Flash point 199°F. Corrosive to tissue. Toxic oxides of nitrogen are produced by combustion. (Source: CameoChemicals.NOAA.gov). It is used as an epoxy curing agent, and is used in the manufacture of pharmaceuticals and synthetic fibers.

Review - CSB Updates Recommendation Response Status – 10-23-24

Yesterday, the Chemical Safety Board updated their Recent Recommendation Status Updates page to reflect changes to ten open recommendations that were made as a result of four separate closed investigations. Eight of those recommendations were closed. The changes were approved at the recent public meeting of the Board. The updated recommendations included:

• Loy-Lange Box Company Pressure Vessel Explosion – 2017-04-I-MO-R8 - Open – Acceptable Response,

• Evergreen Packaging Paper Mill – Fire During Hot Work – 2020-07-I-NC-R3 - Closed – No Longer Applicable

• Evergreen Packaging Paper Mill – Fire During Hot Work – 2020-07-I-NC-R4 - Closed – No Longer Applicable

• Evergreen Packaging Paper Mill – Fire During Hot Work – 2020-07-I-NC-R7 - Closed – Acceptable Action

• Evergreen Packaging Paper Mill – Fire During Hot Work – 2020-07-I-NC-R8 - Closed – Acceptable Action

• Caribbean Petroleum Refining Tank Explosion and Fire – 2010-02-I-PR-R3 - Closed – Acceptable Action

• Husky Energy Superior Refinery Explosion and Fire – 2018-02-I-WI-R8 - Closed – Acceptable Action

• Husky Energy Superior Refinery Explosion and Fire – 2018-02-I-WI-R9 - Closed – Acceptable Action

• Husky Energy Superior Refinery Explosion and Fire – 2018-02-I-WI-R10 - Open – Acceptable Response

 

For more information about these incident response actions, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/csb-updates-recommendation-response - subscription required.