Security researchers from Eclypsium have detailed yesterday a new variation of the Spectre attack that can recover data stored inside a secure CPU area named the System Management Mode (SMM).
Microsoft has halted the deployment of the Windows 10 April 2018 Update for computers using certain types of Intel and Toshiba solid state drives (SSDs).
Last week, the Department of Homeland Security (DHS) released another National Terrorism Advisory System Bulletin as an extension of the alert the agency issued in November, 2017. This latest alert expires on September 14, 2018.
Almost all major OS vendors released security patches yesterday after a researcher discovered that some OS makers have misinterpreted an Intel CPU debug feature and left their systems open to attacks.
Researchers at cybersecurity firm Checkmarx have found a way to turn an Amazon Echo (Alexa-powered) smart speaker into an eavesdropping device.
MikroTik has released firmware patches for RouterOS, the operating system that ships with some of its routers. The patches fix a zero-day vulnerability exploited in the wild.
A security researcher has released a proof-of-concept exploit affecting the Nvidia Tegra chips that come with Nintendo Switch devices.
Intel announced yesterday at the RSA 2018 security conference several new security-focused technologies, among which is a feature that will let security products offload virus scanning operations to integrated graphics processors embedded with some Intel CPUs.
Intel has addressed a vulnerability in the configuration of several CPU series that allow an attacker to alter the behavior of the chip's SPI Flash memory —a mandatory component used during the boot-up process [1, 2, 3].
The US Federal Trade Commission (FTC) sent letters this week to six major companies containing warnings that using "warranty void if removed" or similarly worded stickers on their products is illegal.
AMD has released CPU microcode updates for processors affected by the Spectre variant 2 (CVE-2017-5715) vulnerability. The company has forwarded these microcode updates to PC and motherboard makers to include them in BIOS updates.
At the end of this month, Nvidia will no longer be offering graphic card driver updates for 32-bit operating systems. While this is not surprising considering that all current operating systems have been distributed as 64-bit for quite some time, there are still users who are using older 32-bit versions of Windows and Linux.
Intel has decided that instead of fixing three security bugs affecting the Intel Remote Keyboard Android app, it would be easier to discontinue the application altogether.
macOS High Sierra 10.13.4, the latest macOS version released on March 29, breaks support for many externally-connected displays, according to users of four popular app & driver providers.
Intel released an update to the Meltdown and Spectre mitigation guide, revealing that it stopped working on mitigations for some processor series.
A team of academics from four US universities have discovered a new side-channel attack that takes advantage of the speculative execution feature in modern processors to recover data from users' CPUs.
AMD has officially confirmed the validity of the RyzenFall, MasterKey, Fallout, and Chimera vulnerabilities that came to light on March 12, and said it would be releasing patches in "the coming weeks."
Using old dusty hardware being sold on eBay, hardware hackers can transform them into modern devices that perform tasks that they were never intended. Such is the case when hardware hacker Trammel Hudson discovered some Motorola MDT-9100T Mobile Data Terminals being sold on eBay that looked straight from the Fallout universe.
The Linux Foundation announced a new project called ACRN (pronounced "acorn") that will provide generic code for the creation of hypervisors for IoT devices.