Security News

The need for chips spiked as well-given how central they became for more devices for people staying home. One way grifters are operating is they've turned to purchasing ads for chips on search engines to bait buyers, as the Wall Street Journal recently reported.

A vulnerability within the Realtek RTL819xD module allows attackers to gain complete access to the device, installed operating systems and other network devices. The chips supplied by Realtek are used by almost all well-known manufacturers and can be found in VoIP and wireless routers, repeaters, IP cameras, and smart lighting controls - just to name a few.

Researchers have described a voltage glitching attack that shows AMD's Secure Encrypted Virtualization technology may not provide proper protection for confidential data in cloud environments. The TU Berlin researchers showed that an attacker who has physical access to the targeted system can gain access to SEV-protected VM memory content by launching a voltage fault injection attack on SP. In order to work as intended, integrated circuits need to operate within specific temperature, clock stability, electromagnetic field, and supply voltage ranges.

The Secure Identity Alliance believes that a trusted legal identity is essential to protecting people's rights, fostering social inclusion and supporting economic growth. Embedded in national electronic identity cards and electronic passports, this identity provides access to essential public and private services for billions of people around the world.

Impinj introduced three next-generation RAIN RFID reader chips that enable IoT device makers to meet the increasing demand for item connectivity in retail, supply chain and logistics, consumer electronics, and many other markets. The new Impinj E710, E510, and E310 RAIN RFID reader chips are high-performance, low-power systems-on-chips that extend the item connectivity opportunity to hundreds of billions of things worldwide.

This foundry technology is expected to provide a 'one chip solution,' specifically for 5G communications with support for multi-channel and multi-antenna chip designs. Samsung's 8nm RF platform extension is expected to expand the company's leadership in the 5G semiconductor market from sub-6GHz to mmWave applications.

The fascinating tale of a bug that's baked into Apple's latest chip. Why the Aussie data breach warning site HIBP is partnering with the FBI. A coronavirus tracking toolkit that fell foul of privacy rules.

The website for the M1racles security vulnerability is an excellent demonstration that not all vulnerabilities are exploitable. Be sure to read the FAQ through to the end. EDITED TO ADD: Wired article.

Apple's brand new Mac has a security hole, right inside the processor itself! The vulnerability is baked into Apple Silicon chips, and cannot be fixed without a new silicon revision.

Apple's Arm-based M1 chip, much ballyhooed for its performance, contains a design flaw that can be exploited to allow different processes to quietly communicate with one another, in violation of operating system security principles. Martin has published a proof-of-concept script to demonstrate how to read and write data to the overly talkative system register and a proof-of-concept script for setting up a covert channel on an M1 system.