Apparently people don't realize that root/admin is not the highest level of privilege anymore. Ring 0, a.k.a. kernel, isn't either. There's a whole security architecture around virtualization and trusted enclaves. And you're not supposed to run code in there as a mere admin.
-
-
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
the source of all the problems is their way of disclosure. AMD already "acknowledged" their flawed PSP, which can since be deactivated, much unlike Intel's ME on some platforms. Their way of disclosure leaves to many open questions, especially the poc part.
-
the Video is 90% stock backdrops (no real office there) and so on. The claims might be legit and the PSP is definitely problematic, but hell they horded shit on themselves with such a way of disclosure and then add partnering with a smear company on such a campaign.
-
You know, I fully agree with all of this. I don't agree with the "that aren't relevant bugs, if they are shown to actually exist" analysis.
-
which is the core problem of this case. what made them take this path of disclosure, making everything so fucking problematic. even without proof, we know that Spectre is a problem because of the speculative nature of modern pipelines, the analysis showed the core problem.
End of conversation
New conversation -
-
-
Because it's quite hard to leverage this type of flaws. Hardware related defects are know for the Intel platform. Particularly, attack against SMM aren't new. This series of defect is relevant to some and not worth the attention they produce.
-
I disagree. Post exploitation with these bugs can be impossible to detect
End of conversation
New conversation -
-
-
The second paragraph explains the first, I think?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.