Cyware Daily Threat Intelligence March 21, 2018

Windows Remote Assistance flaw
A critical vulnerability was found in Windows Remote Assistance Tool that can allow a remote attacker to steal sensitive files on the targeted machine. This flaw, dubbed as CVE-2018-0878, affects all versions of Windows-including Windows 10, 8.1, RT 8.1, and 7. This vulnerability has already been fixed.

AMD processor vulnerabilities
Several vulnerability exploits have been discovered in AMD processors, recently. All these flaws require an ability to run an executable as admin. However, users must note that these are mere secondary vulnerabilities and can't be used as part of a payload to gain access to a system. There is no immediate risk of exploitation.

Flaws in Geutebrück-made IP cameras
Security flaws were found affecting Geutebrück-made IP-based security cameras--especially, Geutebrück G-Cam/EFD-2250 and the Topline TopFD-2125 IP cameras. All the vulnerabilities in routers, IP cameras, and other smart devices are critical and include XSS, SQL injection, CSRF, SSRF, improper authentication, and improper access control. Attacks on Russian election commission site
Russian officials are claiming that their Central Election Commission website came under a series of DDoS attacks during the country’s national election. Malicious traffic was generated from IP addresses originating from 15 different countries. Officials claimed the websites for telecoms watchdog Roskomnadzor and online newspaper Lenta.ru were also targeted.

Orbitz security breach
Expedia's Orbitz revealed that the company might have suffered a data breach, resulting in loss of personal information of 880,000 payment cards. As per reports, the breach took place between October and December 2017 and involved records dating between January 2016 to December 2017. Names, dates of birth, email addresses, and gender information of users is likely stolen by hackers.