November 13, 2024 at 08:03AM Intel and AMD released November 2024 Patch Tuesday advisories, addressing newly identified vulnerabilities in their products. Intel issued 44 advisories, while AMD provided 8. This update serves to inform customers about necessary security measures for their devices. **Meeting Takeaways:** 1. **Intel Security Advisories**: Intel has released 44 new security advisories … Read more
October 29, 2024 at 02:33AM Research from ETH Zürich reveals that AMD and Intel processors remain vulnerable to speculative execution attacks, despite previous mitigations. A microcode bug allows attackers to bypass the Indirect Branch Predictor Barrier (IBPB), enabling unauthorized memory leaks. Intel has issued patches, while AMD tracks its variant of the vulnerability. **Meeting Takeaways … Read more
August 26, 2024 at 12:48PM AMD’s internal communications have been breached by digital data thieves who are offering the stolen goods for sale on the dark web. The criminal groups IntelBroker and EnergyWeaponUser claimed responsibility for the break-in, offering compromised comms from various sources and sensitive information. AMD has not responded to inquiries about the … Read more
August 12, 2024 at 04:42PM AMD has issued firmware updates to address a nearly two-decades-old silicon-level vulnerability in its EPYC data center processors and its Ryzen processors for PCs and embedded systems. The “SinkClose” flaw affects a component in the processor protecting System Management Mode, potentially allowing attackers to implant almost undetectable malware. AMD has … Read more
June 18, 2024 at 07:12PM Cyber-criminals are selling what they claim to be AMD’s internal data on the dark web, including customer databases, product specifications, financial figures, and staff information. AMD is working with law enforcement to investigate the situation. The individual responsible, known as IntelBroker, has a history of distributing stolen data from high-profile … Read more
March 13, 2024 at 12:51PM Intel and AMD released 10 new security advisories on Patch Tuesday. Intel’s advisories include 8 new issues, with 2 high-severity vulnerabilities impacting BIOS firmware and 4th Generation Xeon processors. They also address medium and low-severity vulnerabilities affecting processors. The company has released microcode updates to mitigate these issues. AMD’s advisories … Read more
February 14, 2024 at 09:03AM AMD and Intel released patches for over 100 vulnerabilities, including 21 high-severity vulnerabilities, in their processors and software products. AMD addressed flaws in embedded processors, SEV firmware, and UltraScale and UltraScale+ FPGA series devices. Intel issued patches for various drivers, device firmware, Ethernet tools, and software products, resolving a total … Read more
December 12, 2023 at 02:02PM Today’s December 2023 Patch Tuesday from Microsoft addresses 34 flaws, including an unpatched vulnerability in AMD CPUs. Notably, it resolves a public zero-day AMD bug and includes a total of 8 fixes for Microsoft Edge flaws. Additionally, updates from other vendors in December are detailed, along with a list of … Read more
November 16, 2023 at 04:02PM Researchers have discovered a vulnerability in AMD CPUs that can be exploited to undermine memory protections in cloud environments. Known as CacheWarp, this vulnerability impacts first- through third-generation EPYC processors. Attackers can use the vulnerability to gain unauthorized access and perform privilege escalation. AMD has released a microcode patch for … Read more
November 14, 2023 at 02:27PM Researchers from the CISPA Helmholtz Center for Information Security have discovered a new software fault attack called CacheWarp that targets AMD’s Secure Encrypted Virtualization (SEV) technology. The attack exploits a vulnerability in SEV to infiltrate encrypted virtual machines and achieve privilege escalation. AMD has released a microcode update to address … Read more