Hello, welcome to the Wednesday, December 19th, 2018 edition of the Sands and at Storm Center's Stormcast.

My name is Johannes Ulrich, and today I'm recording from Washington, D.C.

Today, let's start with an sort of interesting vulnerability in AIS drivers.

This affects some of the higher-end AIS

motherboards that are targeting particular gamers and tech enthusiasts that come with the AIS

Sync applications. You typically use AIS Sync in order to, for example, control LED strips and the like that are often added to these sort of higher-end gaming PCs.

In exploiting, this vulnerability attacker is able to elevate privileges, and there is currently no patch available from ASAS.

So your only real option is to just uninstall this software.

Now, ASIS isn't the only company that is having issues.

The company that discovered the vulnerability secure off found similar problems with equipment

made by a gigabyte.

It affects gigabyte motherboards and graphics cards again can lead to privilege escalation and no patch is available.

Now apparently in both cases, Secureoth wasn't really able to communicate with the vendor in order

to disclose the vulnerability, which is why they now went public. However, they also went public

with proof of concept, exploit code, which of course makes exploitation of these vulnerabilities

quite a bit more likely.

Now during the holidays, there's always sort of a chance that the bad guys try to take advantage of the increase in online shopping and such by launching various campaigns

that target online merchants.

One example that bleeping computers reporting about is Apple's App Store.

Now, that's always a favorite fishing target, of course.

This latest wave arrives as an email with a PDF as an attachment,

where the PDF is actually in itself not really malicious, not using

...