A group of Israeli experts report no less than 13 vulnerabilities in the AMD Ryzen processors

                                                                                

With just a few minutes ago, and interviews that seem to have been captured in a carefully directed framework, a few security company specialists called CTSlabs describe not less than 13 exploits that would target AMD Ryzen and EPYC processors, each baptized very suggestive names, based on the Meltdown / Specter exploit model that specifically targeted Intel's processors

Without denying or confirming what has been said, AMD states that it is investigating the issues brought to light the day before the public announcement made by CTSlabs, still too early to take a formal position

According to the CTSlabs report, systems equipped with AMD Ryzen and EPYC processors present no less than 13 major-security security issues that can be exploited by hackers to intercept sensitive data and force the installation of malware. Shared into four categories with very suggestive names - Ryzenfall, Masterkey, Fallout and Chimera, they would have at least the magnitude of the Meltdown exploitation, the development of adequate patches could take several weeks or months, while PCs equipped with AMD processors would be totally vulnerable

In addition to the descriptions provided in early interviews, CTSlabs also delivered a detailed technical report complete with executable code samples that would demonstrate each of the vulnerabilities presented. However, given the difficulty of investigating and testing such a large number of vulnerabilities in AMD processors, it seems hard to believe that only one company with a reputable reputation could do so. Other suspicions about a defamation campaign against AMD are also revealed in the public space of a report signed by Viceroy Research, an obscure group of investors foretelling AMD bankruptcy

Although suspicions arise from the way they were made public and the lack of prior notification of the company whose products are directly targeted by them, the security issues raised by CTSlabs deserve to be taken seriously. We must not forget that AMD processors are based on a relatively recently developed microarhitecture, with the possibility of design errors being undiscovered in the company's internal tests prior to validation of the final design

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *

*