SoylentNews is people
SoylentNews
from the deep-seated-insecurities-and-paranoia dept.
Researchers discover and abuse new undocumented feature in Intel chipsets
Researchers find new Intel VISA (Visualization of Internal Signals Architecture) debugging technology.
At the Black Hat Asia 2019 security conference, security researchers from Positive Technologies disclosed the existence of a previously unknown and undocumented feature in Intel chipsets.
Called Intel Visualization of Internal Signals Architecture (Intel VISA), Positive Technologies researchers Maxim Goryachy and Mark Ermolov said this is a new utility included in modern Intel chipsets to help with testing and debugging on manufacturing lines.
VISA is included with Platform Controller Hub (PCH) chipsets part of modern Intel CPUs and works like a full-fledged logic signal analyzer.
[ . . . . ] Unauthorized access to the VISA feature would allow a threat actor to intercept data from the computer memory and create spyware that works at the lowest possible level.
But despite its extremely intrusive nature, very little is known about this new technology. Goryachy and Ermolov said VISA's documentation is subject to a non-disclosure agreement, and not available to the general public.
[ . . . . ] Intel says it's safe. Researchers disagree.
I'm stumped to think of a joke. It would be nice if you could trust the hardware and only deal with securing the software and firmware.
(Score: 1, Touché) by Anonymous Coward on Saturday March 30 2019, @06:00PM
the fact that the US gov is not heavily into Gnu/Linux, FOSS and open hardware is one of the biggest threats to national security and is obvious to any moderately tech educated civilian. the fact that it is still ignored, while scum like MS, apple and intel/amd/arm are exalted should be grounds for investigations and charges.