Vulnerability cyber

AMD

Aug 10, 2024 1 min read
AMD

The disclosure of the Sinkclose vulnerability, affecting AMD processors since 2006, showcases a significant security oversight allowing hackers to gain access to the privileged System Management Mode. By implanting a bootkit, attackers gain persistent, undetectable control over a system, monitoring activity and surviving system reinstalls. The flaw exposes countless systems to a level of compromise where the only solution may be the physical disposal of the infected machine. This vulnerability not only undermines the trust in device security but also signifies immense potential losses in data integrity and financial repercussions for both AMD and affected users.

Source: https://www.wired.com/story/amd-chip-sinkclose-flaw/

TPRM report: https://scoringcyber.rankiteo.com/company/AMD

"id": "amd000081024",
"linkid": "AMD",
"type": "Vulnerability",
"date": "8/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Technology',
                        'name': 'AMD',
                        'type': 'Organization'}],
 'attack_vector': 'Bootkit',
 'description': 'The Sinkclose vulnerability affects AMD processors since '
                '2006, allowing hackers to gain access to the privileged '
                'System Management Mode by implanting a bootkit. This results '
                'in persistent, undetectable control over a system, monitoring '
                'activity and surviving system reinstalls. The flaw exposes '
                'countless systems to a level of compromise where the only '
                'solution may be the physical disposal of the infected '
                'machine. This vulnerability undermines trust in device '
                'security and signifies immense potential losses in data '
                'integrity and financial repercussions for both AMD and '
                'affected users.',
 'impact': {'brand_reputation_impact': 'Undermines trust in device security',
            'systems_affected': ['AMD processors since 2006']},
 'motivation': 'Persistent, undetectable control over systems',
 'response': {'recovery_measures': ['Physical disposal of infected machines']},
 'title': 'Sinkclose Vulnerability Affecting AMD Processors',
 'type': 'Vulnerability Exploitation',
 'vulnerability_exploited': 'Sinkclose vulnerability'}
Published by
Jeremy C
Jeremy C
You might also like
Vulnerability cyber

SBI

public 1 min read
A significant security flaw identified in the YONO SBI banking application exposes millions of users to cybersecurity threats. The vulnerability,…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.