AMD's processors have been shipping with a dangerous security bug
AMD's "Sinkclose" bug affects processors since 2006, allowing undetectable malware execution. Users may need to dispose of infected systems. AMD issued a security bulletin and is developing mitigation strategies.
Read original article
AMD has acknowledged a significant security vulnerability known as the "Sinkclose" bug, which affects nearly all of its processors dating back to 2006. Discovered by researchers at IOActive, this flaw allows malicious actors to gain access to the System Management Mode (SMM) of AMD chips, enabling them to execute undetectable malicious code with full control over the affected systems. The bug's persistence in the firmware means that even reinstalling the operating system may not eliminate the threat. Researchers have warned that if exploited, the only effective response may be to dispose of the infected computer. Although AMD has classified the bug as "high severity," it is not deemed "critical" due to the complexity of exploitation, which requires deep system access. The vulnerability was presented at the DEF CON hacking conference, raising concerns that it could attract attention from threat actors. AMD has released a security bulletin detailing affected products and potential mitigation measures, urging users to stay updated with Windows patches addressing the Sinkclose issue.
- AMD's Sinkclose bug affects processors dating back to 2006.
- The vulnerability allows undetectable malware execution via System Management Mode.
- Infected systems may require disposal as traditional recovery methods may not work.
- AMD has issued a security bulletin and is working on mitigation strategies.
- The bug's complexity makes it less likely to be exploited widely, but caution is advised.
Related
Vulnerability in Popular PC and Server Firmware
Eclypsium found a critical vulnerability (CVE-2024-0762) in Intel Core processors' Phoenix SecureCore UEFI firmware, potentially enabling privilege escalation and persistent attacks. Lenovo issued BIOS updates, emphasizing the significance of supply chain security.
Compromising the Secure Boot Process
Researchers from Binarly revealed a security vulnerability in the Secure Boot process affecting over 200 device models due to a leaked cryptographic key, raising concerns about potential cyberattacks and security practices.
SinkClose flaw impacts AMD EPYC and Ryzen CPUs, helps gain Ring -2 privileges
AMD's SinkClose vulnerability affects EPYC, Ryzen, and Threadripper processors, allowing privilege escalation to Ring -2. Detected after nearly 20 years, mitigations are available, but risks remain from advanced attackers.
Researchers discover potentially catastrophic exploit present in AMD chips
Researchers have found a serious vulnerability in AMD processors, affecting chips since 2006, allowing deep firmware access. AMD is developing patches, with risks primarily for corporations and government entities.
Almost unfixable "Sinkclose" bug affects AMD chips
Researchers discovered a major security vulnerability in AMD processors, named "Sinkclose," affecting millions of chips since 2006, allowing undetectable malware installation and posing severe risks to system security.
5 commentsIs that supposed to be a glimmer of hope or a dire warning?
Related
Vulnerability in Popular PC and Server Firmware
Eclypsium found a critical vulnerability (CVE-2024-0762) in Intel Core processors' Phoenix SecureCore UEFI firmware, potentially enabling privilege escalation and persistent attacks. Lenovo issued BIOS updates, emphasizing the significance of supply chain security.
Compromising the Secure Boot Process
Researchers from Binarly revealed a security vulnerability in the Secure Boot process affecting over 200 device models due to a leaked cryptographic key, raising concerns about potential cyberattacks and security practices.
SinkClose flaw impacts AMD EPYC and Ryzen CPUs, helps gain Ring -2 privileges
AMD's SinkClose vulnerability affects EPYC, Ryzen, and Threadripper processors, allowing privilege escalation to Ring -2. Detected after nearly 20 years, mitigations are available, but risks remain from advanced attackers.
Researchers discover potentially catastrophic exploit present in AMD chips
Researchers have found a serious vulnerability in AMD processors, affecting chips since 2006, allowing deep firmware access. AMD is developing patches, with risks primarily for corporations and government entities.
Almost unfixable "Sinkclose" bug affects AMD chips
Researchers discovered a major security vulnerability in AMD processors, named "Sinkclose," affecting millions of chips since 2006, allowing undetectable malware installation and posing severe risks to system security.