Intel has revealed a slew of hardware security flaws, so patch right away

Advertisements

Users of Intel processors should prepare to update their firmware.

image credits: nssc

Intel has revealed a slew of firmware flaws that might affect endpoints such as datacenter servers, workstations, mobile devices, and storage devices.

The issues, which were initially revealed by The Register, could allow malicious actors to expose information and elevate their rights, according to Intel.

Advertisements

A complete list of products affected by the vulnerabilities can be found here, including Intel Core X-series processors and 10th Generation Intel Core Processors.

What actions should users take?

To resolve these vulnerabilities, Intel recommends that users of impacted processors update to the latest versions provided by their system manufacturer.

Unfortunately, the foregoing was not the only set of problems that Intel could reveal.

Advertisements

Intel also identified a potential security weakness in Intel processors that could allow information exposure, albeit Intel simply labelled it as “low severity.”

“Observable behavioural discrepancy in some Intel processors might potentially allow an authorised user to enable information disclosure via local access,” Intel claimed.

According to Intel, the flaw could possibly affect all of their chip models.

Advertisements

The LFENCE instruction should be used “after loads that should notice writes from another thread to the same shared memory address,” according to Intel.

In today’s environment, firewalls may not be enough; not just Intel has potential hardware security flaws floating around.

Academic researchers have demonstrated an effective attack approach to circumvent AMD’s renowned Secure Encrypted Virtualization (SEV) technology’s defences.

Advertisements

Anyone who wants to report more bugs or have information about a security issue or vulnerability with an Intel-branded product or technology can submit it to [email protected] after encrypting sensitive data with the company’s PGP public key.

According to Intel’s own research, there is a demand for more secure hardware.

The survey indicated that 75% of respondents were interested in hardware-based methods to security, while 40% were interested in “security at a silicon level,” based on conversations with 1,406 people in the United States, Europe, the Middle East, Africa, and Latin America.

Advertisements

Leave a Comment