Security News

Intel has pushed out a raft of security advisories for June, bringing its total discovered "Potential vulnerabilities" for the year to date to 132, only a quarter of which were reported by external contributors and the company's bug bounty programme. "Today we released 29 security advisories addressing 73 vulnerabilities," Intel's Jerry Bryant said of the company's latest updates.

Intel has addressed 73 security vulnerabilities as part of the June 2021 Patch Tuesday, including high severity ones impacting some versions of Intel's Security Library and the BIOS firmware for Intel processors. Intel detailed the security flaws in the 29 security advisories published today on its Product Security Center.

That's why last December we were one of the first in the world to launch support for the Intel SGX encryption standard in our public cloud. This technology dramatically enhances data protection with built-in cloud management tools from Intel.

An FBI analyst with top-secret security clearance illegally squirreled away national-security documents related to Osama bin Laden, al-Qaeda, cybersecurity and more in her home for years, the feds say. Kendra Kingsbury, who was working in the FBI's Kansas City Division until being put on leave in December 2017, has been indicted by a federal grand jury for allegedly routinely removing numerous documents from their safekeeping at the office, over and over during the period between June 2004 to Dec. 15, 2017.

Intel execs stressed the importance of secure technologies and solid collaborations to improve product resilience and fuel innovation. The "Chat" was moderated by Suzy Greenberg, vice president of Intel product assurance and security, and the Intel executive panel were Amy Santoni, principal engineer, security architecture and engineering group; Ron Perez, fellow, security architecture, data platform group; Tom Garrison, vice president and general manager of client security strategy and initiatives; and Michael Nordquist, senior director of strategic planning and architecture, client computing group.

There's going to have to be a lot more new procedures developed, a lot better procedures developed to bridge the gap between operational technology and information technology to get those control systems where they need to be. There's going to be a really good focus on what it means to be at that national, and even the regional levels within the control systems there, to start having more robust sharing of that information that's going on within these networks.

Venafi announced a machine identity management solution that combines the powerful, machine identity lifecycle automation in the Venafi Trust Protection Platform with Intel Software Guard Extensions powered by 3rd Gen Intel Xeon Scalable processors. "Organizations in the throes of digital transformation are consistently grappling with increasingly sophisticated attacks that target their machine identities," said Kevin Bocek, vice president of security strategy and threat intelligence at Venafi.

The new 11th Generation Intel Core H-series mobile processors is launched worldwide, led by the flagship Intel Core i9-11980HK. The Intel Core i9-11980HK delivers the highest-performance in laptops for gaming, content creators and business professionals reaching speeds of up to 5.0 gigahertz. "11th Gen Intel Core H-series processors take mobile gaming, content creation and commercial workstation systems to new heights. These new H-series processors are an exciting extension of our 11th Gen mobile family with double-digit single core and multi-core performance improvements, leading gameplay, direct attached storage and 20 PCIe 4.0 lanes for true enthusiast-level platform bandwidth."

A team of academics from the University of Virginia and University of California, San Diego, have discovered a new line of attack that bypasses all current Spectre protections built into the chips, potentially putting almost every system - desktops, laptops, cloud servers, and smartphones - once again at risk just as they were three years ago. The disclosure of Spectre and Meltdown opened a floodgates of sorts, what with endless variants of the attacks coming to light in the intervening years, even as chipmakers like Intel, ARM, and AMD have continually scrambled to incorporate defenses to alleviate the vulnerabilities that permit malicious code to read passwords, encryption keys, and other valuable information directly from a computer's kernel memory.

Version 90 of Google's Chrome browser includes a bit of extra security for users of recent versions of Windows and the latest x86 processors, in the form of hardware-enforced stack protection. This basically means that, if your PC supports it, it's a bit harder for malicious websites to exploit bugs in Chrome to hijack your computer.