Joris L.’s Post

https://lnkd.in/gNvYUVnm Well, apparently speculative execution causing issues is not patented by Intel... Researchers have figured a way to leverage this feature to break ARM's memory protection feature (memory tag extension).

your intel cpu has israeli/nsa hidden mini os.  https://lnkd.in/gcKVNzqJ Since 2008, Intel has embedded a subsystem called Management Engine in almost all of its own chipsets, equivalent to the CPU that comes with a simple operating system, allowing it to operate independently of the installed operating system as long as the motherboard is powered. When connected to a network, it can send and receive data packets. According to Intel’s official document, the Management Engine is an embedded microcontroller running a lightweight microkernel operating system that provides a variety of features and services for Intel processor-based computer systems. At system initialization, the Intel Management Engine loads its code from system flash memory. This allows the Management Engine to be up before the main operating system is started. Since its release, Intel’s Management Engine has faced significant skepticism. Many question the necessity of a CPU performing tasks typically reserved for an operating system. Additionally, the Management Engine is a closed-source black box, leaving users in the dark about its potential capabilities. Only Intel knows its limits, and the company’s assurances of the subsystem’s security rely solely on its unilateral commitment. This raises concerns about accountability, as Intel acts both as the athlete and the referee in this scenario. Who can guarantee impartiality? Secondly, there is no official shutdown switch for the Management Engine; as long as it is powered, it will remain operational. Intel has not provided a clear description of the technology or functions within the Management Engine, and its roles and risks are being gradually uncovered by researchers worldwide.

BadRAM Attack Uses $10 Equipment to Break AMD Processor Protections: Academic researchers devise BadRAM, a new attack that uses $10 equipment to break AMD’s latest trusted execution environment protections. The post BadRAM Attack Uses $10 Equipment to Break AMD Processor Protections appeared first on SecurityWeek.

With no end in sight to cyber crime, your organization needs to ensure its systems and data are secure at the chipset level. We can help with @HP PCs powered by AMD Ryzen™ PRO processors. Get this solution brief for a look at how they give you the solid security foundation your organization needs. DM us to discuss your HP PC options.

Chip Level Performance and Security Intel Corporation decision to phase out Hyper-Threading in their upcoming 15th Gen Arrow Lake processors indeed marks a significant performance and security shift. This smart move is primarily driven by Intel's findings that traditional Hyper-Threading didn't deliver the expected performance improvements with their new architectures. Instead, they are exploring new approaches like "Rentable Units" for future generations, such as the 16th Gen Panther Lake. Chip level Security concerns have also played a crucial role in this decision. Hyper-Threading has been associated with vulnerabilities like MDS attacks (Microarchitectural Data Sampling), which include exploits like ZombieLoad, RIDL, Meltdown and Spectrem, and Fallout, etc.. These vulnerabilities arise from the sharing of resources between threads on the same CPU core, potentially exposing systems to data inference attacks. The proactive steps by operating systems like OpenBSD to disable Hyper-Threading highlight the seriousness of these security risks. Despite potential performance benefits, the decision underscores Intel's commitment to enhancing both performance and security in their processors moving forward. We look forward to seeing better innovations and technology from Intel as they lead in this new era of CPU innovation and generation. Resource: Hardware Times: https://lnkd.in/gCvB9_Sr Hyper-Threading and the Processor Pipeline: https://lnkd.in/gGeTirPt

Researchers have found that the security mechanism AMD uses to protect virtual machine memory can be bypassed with $10 of hardware – and perhaps not even that. https://lnkd.in/gU4FcgZM

Shocking news - Secureboot on 200 models from Acer, Dell, Gigabyte, Intel, and Supermicro compromised. ArsTechnica's post below also has a good explainer on how SecureBoot works.

AMD secure VM tech undone by DRAM meddling https://ift.tt/Mh3aZPd Boffins devise BadRAM attack to pilfer secrets from SEV-SNP encrypted memory Researchers have found that the security mechanism AMD uses to protect virtual machine memory can be bypassed with $10 of hardware – and perhaps not even that.… via The Register - Security https://ift.tt/okBrTq0 December 10, 2024 at 11:00AM

Great to see Arqit's collaboration with Intel Corporation on the world's first quantum-safe 1.89 Tb IPsec solution. This is a game-changing step towards safeguarding our networks against quantum threats. Kudos to both teams for pushing the boundaries of cybersecurity standards. Looking forward to the insights from the upcoming webinar! #QuantumComputing #CyberSecurity #Innovation

If you have an AMD processor in your computer, you should read tonight's post. While they are working on a fix, it is not here yet and until then, you need to be very careful. Details at https://lnkd.in/gR_GkNa9