International Cyber Expo International Cyber Expo
  • About Us
Sunday, 12 July, 2026
IT Security Guru
International Cyber Expo
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

Security Flaw discovered within AMD Secure Processor – Security Pro’s have their say

by The Gurus
January 11, 2018
in Editor's News
Share on FacebookShare on Twitter

A security flaw has been discovered on the AMD PSP (Platform Security Processor), which is a chip-on-chip security system, that stores critical system data such as passwords, certificates, and encryption keys, in a secure environment and outside of the more easily accessible AMD cores. AMD has fixed but not released the firmware updates. Much like the Intel ME, the AMD PSP is an integrated coprocessor that sits next to the real AMD64 x86 CPU cores. A Google Cloud Security researcher discovered the vulnerability and reported the issue to AMD in September with AMD developing a patch in December.

The news was released on the same day as the Intel Meltdown and Spectre flaws announcement. AMD has since confirmed their units are only affected by the Spectre flaw.

With million’s potentially impacted by the news, what can organisations do to protect themselves? Cyber Security professionals from FireMon and Lastline have offered their advise:

Josh Mayfield, director at FireMon:

It can be difficult for organisations to know just how to protect themselves from the AMD PSP vulnerability without intimate knowledge of where the vulnerability exists.  Vulnerability scanners can be helpful to locate the assets affected, but unfortunately, scanners stop at this point.

The primary vehicle for mitigating the risk is basic analysis with attack simulation.  This happens when you combine policy with vulnerability details to see how a weak spot can be accessed (and exploited).  If an organisation can quarantine the communication of affected systems, they can reduce the risk of spread throughout the network.  This compresses the patch list, because assets removed from communication can go lower on the list, and critical systems (those with necessary connections) can take priority.

Furthermore, PSP can be disabled on the systems with this vulnerability.  However, it would be imprudent to suspend PSP on all AMD machines.  Again, attack simulation reveals this.  Ranking priorities is essential to mitigate the risk to systemic spread.

Unlike Spectre and Meltdown, this PSP vulnerability goes right to the security processing on the AMD chip.  Several processors for security were built-in to these chips, including: encryption keying, certificates, privileged passwords.  This is what makes the AMD vulnerability so frightening.  It’s like disabling the part of your brain that reminds you to avoid danger, like running in front of a bus.  The good thing is that it is not as widely distributed as the Intel Spectre/Meltdown vulnerabilities, so patching should not take as long to perform.

Organisations must reduce their attack surface.  They can do so by visualizing their vulnerabilities, control endpoints, segment networks, and do analysis with every breath.  Today it is Spectre, Meltdown, or AMD PSP.  Tomorrow, it will be something else.  Security teams need to reduce their attack surface to wage war on their own terms, compress the field of battle and remove these opportunities for exploit.

Giovanni Vigna, CTO and co-founder at Lastline:

This is not as bad as Spectre and Meltdown, as a fix to the firmware code would solve the problem.

However, this shows how “getting security right” is really hard, also when hardware-based support is available.

Another example of a similar class of vulnerabilities was Boomerang:

https://www.cs.ucsb.edu/~vigna/publications/2017_NDSS_Boomerang.pdf

Tags: CybersecurityTechnology
ShareTweet
Previous Post

Welcome to WPA3, the next step in Wi-Fi security

Next Post

Security Flaw discovered within AMD Secure Processor – Security Pro's have their say

Recent News

Cyber Shield

UK Government Unveils AI Powered Cyber Shield to Strengthen National Cyber Defense

July 10, 2026
KnowBe4 phishing by industry

Healthcare, Hospitality and Construction Named UK’s Most Phishing-Prone Industries

July 10, 2026
hand typing on keyboard

CitrixBleed 2 exploited in repeatable attack chain culminating in DragonForce ransomware, researchers find

July 9, 2026
malware

Huntress Uncovers ‘Vibe-Coded’ Malware Used to Map Active Directory Environments

July 8, 2026

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2026 IT Security Guru - Website Managed by Dessol

  • About Us
Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
View preferences
  • {title}
  • {title}
  • {title}
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2026 IT Security Guru - Website Managed by Dessol