TPM-FAIL – security vulnerabilities in Trusted Platform Modules:
http://tpm.fail/tpmfail.pdf (PDF file)
– Affected are Platform Trust Technology (Intel), and ST33 TPM chip (STMicroelectronics). TPMs from Nuvoton/Infineon aren't affected.
– A remote attacker could retrieve certain private keys (e.g., as used by ECDSA).
– Intel provides a firmware update; vulnerable ST33 chips can't be patched.
#tpm #tpmfail #sidechannel #attack #vulnerability #infosec #security #cybersecurity
It is proven! I am willscott on Keybase: https://keybase.io/willscott/sigchain#4117258158e7c8fc5817dc476f4d67cc48c856f50e33ae2164050999a8facfcd0f
If you are binge watching a lot of #35c3 talks, this python script could be interessting for you.
adm.amsterdam was evicted this week :/
Heres a documentary with english subtitles from AT5 about ADM called 'The lost free state'
As seen on this Toronto AC unit, the next cloudflare bug should really be dubbed cloudglare.
https://mastodon.social/media/HQq_GOx1rgW0xWbpjI0
Multiple vulnerabilities in Intel Manageability Engine Firmware allow local arbitrary code execution & privilege escalation. Good luck upgrading your CPU firmware 🤤 https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr #Intel #vulnerability