Undetected Backdoor Discovered: How a Security Glitch Endangers AMD CPU Users with Stealthy Malware
Undetected Backdoor Discovered: How a Security Glitch Endangers AMD CPU Users with Stealthy Malware
Security researchers at IOActive have discovered a critical flaw in almost two dozen AMD processor models. Attackers can exploit the vulnerability to infect a CPU with malware that loads before the operating system, but you probably don’t need to worry about it.
The security firm IOActive called the vulnerability “Sinkclose,” which has existed in PC, data center, and embedded (chips used in cars or industrial equipment) AMD processors since 2006. In order to keep AMD chips backwards compatible, the chipmaker added a feature that can modify privileged CPU configurations. It’s that CPU flaw which security researchers have managed to exploit.
By exploiting Sinkclose, malicious actors can modify processor configurations which are otherwise highly protected and only accessible to the System Management Mode (SMM). System Management Mode operates at a higher privilege level than the operating system. And because of that, any changes made to it are invisible and inaccessible to the OS.
In theory, threat actors could use this elevated access to install malware that runs on boot, before the operating system . Reinstalling the OS, wiping the storage, or antivirus software cannot get rid of it. You would have to physically link with the processor using a special programming device to detect and remove such malware.
Thankfully, t’s incredibly difficult to successfully execute this attack. For starters, the attackers will need kernel level access (kernel is an operating system’s core which has complete control over the entire OS). Modern operating systems have safeguards against unauthorized kernel access, so the attackers will have to bypass many layers of security to make it work. So while kernel exploits do exist, the threat Sinkclose poses is minimal for the average person.
In response to IOActive’s investigation, AMD has released a list of vulnerable processors , along with some mitigation tips. The company is also working on security patches for the affected processors.
Source: IOActive
Also read:
- [New] Channel Visualization Selecting the Ideal Size and Placement for YT for 2024
- [New] The Secret Sauce for a Viral TikTok Unboxer Masterpiece
- 5 Solutions For Samsung Galaxy F15 5G Unlock Without Password
- Exploring Alternatives to Dell & Lenovo for Professional Use - A Laptop Recommendation by ZDnet | Office Essentials
- How To Repair The ‘NoEntryPointFound’ Error on Your Computer's Operating System
- In 2024, How to Fix Life360 Shows Wrong Location On Lava Yuva 3 Pro? | Dr.fone
- In 2024, Implementing YouTube's Custom Markup Guide
- Perfecting Your Shoot Selecting Quality Equipment
- Top Durable and Sturdy Laptops - Insights From ZDNet
- Top Lenovo Laptop Pick for Seamless Hybrid Working - Now Just $1K Cheaper!
- Top Picks: Best October 2024 Prime Day-Like Savings on Laptops - Tips From ZDNet
- Top Reviewed 2023 Dual-Function Devices with a Surprisingly Useful Office Perk - Spotted
- Top-Rated Laptops Ideal for University Students: Comprehensive Expert Evaluations - ZDNet
- Unwrap Creativity This Season: Ultimate Guide to Selecting Perfect Gifts for the Home-Made Geniuses Innovations
- Updated Premiere Pro Transition Essentials Top 10 Plugins You Need for 2024
- What Does Idle Mean on Discord and Is It Accurate?
- Title: Undetected Backdoor Discovered: How a Security Glitch Endangers AMD CPU Users with Stealthy Malware
- Author: George
- Created at : 2024-12-21 17:21:49
- Updated at : 2024-12-27 22:17:34
- Link: https://hardware-tips.techidaily.com/undetected-backdoor-discovered-how-a-security-glitch-endangers-amd-cpu-users-with-stealthy-malware/
- License: This work is licensed under CC BY-NC-SA 4.0.