Researchers say they've found serious security flaws in some AMD chips

AMD Ryzen and EPYC platforms at risk: More than a dozen critical security flaws discovered

New Spectre-like flaws found in 'virtually all' AMD processors

Ryzenfall is a threat that allows for malware to completely hijack a Secure Processor allowing access to secure data that would normally be out of the reach of attackers.

While the vulnerabilities all require administrator access before they can be exploited, making them significantly more hard for intruders to use, they are unsafe in that they allow complete access to the system, including secure processing areas normally off-limits to malware.

CTS-Labs, an Israeli cybersecurity firm, says it has found multiple flaws in AMD's RYZEN and EPYC processors that could let hackers who've already compromised computers access secure portions of the processors to install malware or steal sensitive data like encryption keys. Ryzen chips power desktop and laptop computers, while EPYC processors are found in servers.

Fallout exposes the bootloader within the Epyc Secure Processor, allowing access to protected memory regions, CTS-Labs claims. However, the statement AMD provided to PCWorld implied that the company wasn't given the usual amount of time to investigate the vulnerabilities internally, which is typically about 90 days.

"CTS believes that networks that contain AMD computers are at a considerable risk", the report said.

Walmart to Expand Online Grocery Delivery to 100 Metros
Other retailers such as Kroger and Target have been partnering with third-party providers such as Instacart, Deliv and Shipt. Amazon recently offered home delivery via Whole Foods in six cities, along with Amazon Fresh and other delivery options.

"This can allow attackers to bury themselves deep within the computer system and to potentially engage in persistent, virtually undetectable espionage, executed from AMD's Secure Processor and AMD's chipset".

Considering the "risk" involved, it is surprising that CTS Labs went public with their finding just 24 hours after notifying AMD. We are actively investigating and analyzing its findings.

Investment firm Viceroy Research published a 25-page report on the issues after the company said it was anonymously emailed a copy of CTS' findings on Monday afternoon.

AMD developers stated that they've just found out about these new vulnerabilities and said they will investigate this further to see if the vulnerabilities are real and if they are really risky to the devices powered by AMD CPUs.

Guido also said CTS-Labs paid him the company's "week rate for the work".

Michy Batshuayi Fee Rumoured as Dortmund Hunt Summer Deal
The Italian clearly does not fancy Batshuayi and if he is still in charge next season could move him on. He said: "It's clear that we will have a good setup for this position next season".

This had raised suspicions that CTS Labs may have a commercial motive for disclosing the AMD vulnerabilities so soon after notifying the chip maker. At AMD, security is a top priority and we are continually working to ensure the safety of our users as potential new risks arise.

In a statement on its website, AMD added, "This company was previously unknown to AMD and we find it unusual for a security firm to publish its research to the press without providing a reasonable amount of time for the company to investigate and address its findings".

This story was updated on March 13 at 2:06 PM with additional comments from AMD.

It's unclear how long it would take to fix these issues.

Finally, Chimera relates to backdoor vulnerabilities at a hardware and firmware level, which could allow hackers to inject malicious code into the Secure Processor.

Margot Robbie To Play Sharon Tate In Tarantino Film, Alongside Leonardo DiCaprio
Pitt previously worked with Tarantino on 2009's " Inglorious Basterds ", and DiCaprio appeared in 2013's "Django Unchained". In the film Tate is Rick's very famous next door neighbor.

Latest News