‘Sinkclose’ Flaw in Hundreds of Millions of AMD Chips Allows Deep, Virtually Unfixable Infections
WIRED | “Researchers warn that a bug in AMD’s chips would allow attackers to root into some of the most privileged portions of a computer—and that it has persisted in the company’s processors for decades.” Check out this piece from WIRED featuring research from IOActive Principal Security Consultants, Enrique Nissim and Krzysztof Okupski, on a vulnerability in AMD chips called Sinkclose.
Not if, but when
Inflight Magazine | Our very own John Sheehy, IOActive Senior Vice President, Research & Strategy, recently shared his thoughts in this Inflight Magazine piece, ‘Not if, but when,’ discussing cybersecurity in aviation. “While there is a broader acceptance of the importance of cybersecurity in aviation and within aircraft themselves, there are still significant opportunities for improvement.”
NEWS ANALYSIS Q&A: Striving for contextual understanding as digital transformation plays out
LastWatchdog.com | “The tectonic shift of network security is gaining momentum, yet this transformation continues to lag far behind the accelerating pace of change in the operating environment. … I first tapped Gunter Ollmann’s insights about botnets and evolving malware some 20 years when he was a VP Research at Damballa and I was covering Microsoft for USA TODAY.”
Teslas Can Still Be Stolen With a Cheap Radio Hack—Despite New Keyless Tech
WIRED | Check out this recent piece featuring commentary from IOActive Principal Security Consultant, Josep Pi Rodriguez. “Ultra-wideband radio has been heralded as the solution for “relay attacks” that are used to steal cars in seconds. But researchers found Teslas equipped with it are as vulnerable as ever.”
Researcher Strips ROM for Binary Code
Bank Info Security | “One bastion against multifactor authentication hacks has been the security key. A physical device outdoes other methods such as one-time codes – which hackers can intercept – and safeguards against machine-in-the-middle attacks.”