Wednesday, September 19, 2018
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Nintendo Switch Online has Arrived
Cadence Tensilica DNA 100 Processor IP for On-Device AI
ASUS RoG Announces ROG Delta and ROG Delta Core Headsets
Fitbit Launches Fitbit Care Health Platform for Wellness and Disease Management
China Plans to Strengthen Security of Internet of Things With Laws and New OS
GIGABYTE Releases New NVMe M.2 SSDs
Toshiba Memory Accelerates 96-layer 3D flash Memory Production, Sticks with IPO Plans
New Sony PlayStation Classic Comes With 20 Pre-Loaded Games
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > PC Parts > AMD Chi...
Last 7 Days News : SU MO TU WE TH FR SA All News

Tuesday, March 13, 2018
AMD Chips Have Security Flaws, Report Claims


Advanced Micro Devices (AMD) is investigating a report that processors from its AMD Ryzen & EPYC product lines have 13 "critical" security vulnerabilities and manufacturer backdoors.

Israel-based cybersecurity firm CTS Labs said it found 13 critical security vulnerabilities and manufacturer backdoors in AMD's EPYC, Ryzen, Ryzen Pro and Ryzen Mobile lines of processors. The flaws could put organizations at increased risk of cyber-attacks, the report said.

"We are actively investigating and analyzing its findings, "AMD said. "This company was previously unknown to AMD and we find it unusual for a security firm to publish its research to the press without providing a reasonable amount of time for the company to investigate and address its findings. At AMD, security is a top priority and we are continually working to ensure the safety of our users as potential new risks arise. We will update this blog as news develops, "the chip maker added.

Accoring to the report, the affected chips are the AMD Secure Processor, responsible for maintaining security within EPYC and Ryzen processors, and the AMD Ryzen Chipset co-developed by AMD and ASMedia.

The report says that the AMD Secure Processor is currently being shipped with critical security vulnerabilities allowing malicious actors to install malware inside the chip. The vulnerabilities may allow malicious actors to proliferate through corporate networks using stolen network credentials, by allowing Microsoft Windows Credential Guard to be bypassed.

Secure Encrypted Virtualization, a key feature that AMD advertises to cloud providers, could be defeated as soon as attackers obtain malicious code execution on the EPYC Secure Processor, according to the report.

"A malicious actor can gain full access to the compromised system, its physical memory, peripherals and to the secrets stored inside (fTPM). Attackers could execute malicious code on the EPYC Secure Processor," CTS Labs says.

The AMD Ryzen Chipset is a central component on Ryzen and Ryzen Pro workstations: it links the processor with hardware devices such as WiFi and network cards.

According to CTS Labs, the Ryzen chipset is currently being shipped with exploitable backdoors that could let attackers inject malicious code into the chip, providing them with a safe haven to operate from.

AMD's outsource partner, ASMedia, is a subsidiary of ASUSTeK Computer. In the past, the company has been penalized by the Federal Trade Commission for neglecting security vulnerabilities.

The Chipset backdoors exist on virtually all Ryzen and Ryzen Pro workstations on the market today. "USB, SATA, PCI-E, and network traffic may flow through the chipset. Malware could leverage this position of power," the security report says.



Previous
Next
Google Assistant Coming to iPad        All News        Apple's Worldwide Developers Conference Kicks off June 4
Google Assistant Coming to iPad     PC Parts News      400 Gbit/s Ethernet Optical Modules Debut at Optical Fiber Conference

Get RSS feed Easy Print E-Mail this Message

Related News
AMD Expected to Respond to NVIDIA's New RTX Real-Time Ray Tracing Technology
AMD Releases New "Zen" Based Athlon Desktop Processors, 2nd Generation Ryzen PRO Desktop Processors
The PC GPU Market Decreased Year-to-year by 5 Percent
AMD Focuses on 7nm Chips
New AMD Radeon Pro V340 Graphics Card Delivers Accelerated Performance to Power Datacenter Visualization Workloads
AMD Says New 2nd Generation, 32-core AMD Ryzen Threadripper Processors Break Boundaries of High-End Desktop Market
AMD Radeon Pro WX 8200 Delivers High Workstation Graphics Performance for Under $1,000
AMD 2nd Gen Threadripper 2990WX AND 2950X Available for Pre-order
New AMD Semi-Custom SOC Combines AMD Ryzen CPU and AMD Vega GPU for Gamers in China
AMD Unveils B450 Chipset-based Motherboards
AMD Reports High Quarterly Profit on New EPYC and Ryzen Sales
AMD's 7nm Processors to Compete With Intel's 10nm Chips

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2018 - All rights reserved -
Privacy policy - Contact Us .