The attack uses a passive interposer to control the SGX enclave and extract the DCAP attestation key, breaking the mechanism.
The post WireTap Attack Breaks Intel SGX Security appeared first on SecurityWeek.
WireTap Attack Breaks Intel SGX Security
Apple Updates iOS and macOS to Prevent Malicious Font Attacks
The vulnerability could lead to a denial-of-service condition or memory corruption when a malicious font is processed.
The post Apple Updates iOS and macOS to Prevent Malicious Font Attacks appeared first on SecurityWeek.
Patch Bypassed for Supermicro Vulnerability Allowing BMC Hack
Binarly researchers have found a way to bypass a patch for a previously disclosed vulnerability.
The post Patch Bypassed for Supermicro Vulnerability Allowing BMC Hack appeared first on SecurityWeek.
Neon Cyber Emerges from Stealth, Shining a Light into the Browser
Neon Cyber argues that phishing, social engineering, and insider threats demand protections that follow users into the browser, where most attacks now begin.
The post Neon Cyber Emerges from Stealth, Shining a Light into the Browser appeared first on SecurityWeek.
Rowhammer Attack Demonstrated Against DDR5
Researchers devise Phoenix, a new Rowhammer attack that achieves root on DDR5 systems in less than two minutes.
The post Rowhammer Attack Demonstrated Against DDR5 appeared first on SecurityWeek.
Endpoint Security Firm Remedio Raises $65 Million in First Funding Round
The bootstrapped company will invest in an AI-powered unified enterprise platform combining configuration, compliance, patching, and vulnerability management.
The post Endpoint Security Firm Remedio Raises $65 Million in First Funding Round appeared first on SecurityWeek.
Flaws Expose 100 Dell Laptop Models to Implants, Windows Login Bypass
ReVault vulnerabilities in the ControlVault3 firmware in Dell laptops could lead to firmware modifications or Windows login bypass.
The post Flaws Expose 100 Dell Laptop Models to Implants, Windows Login Bypass appeared first on SecurityWeek.
Lenovo Firmware Vulnerabilities Allow Persistent Implant Deployment
Vulnerabilities discovered by Binarly in Lenovo devices allow privilege escalation, code execution, and security bypass.
The post Lenovo Firmware Vulnerabilities Allow Persistent Implant Deployment appeared first on SecurityWeek.
Flaws in Gigabyte Firmware Allow Security Bypass, Backdoor Deployment
Vulnerabilities in Gigabyte firmware implementations could allow attackers to disable Secure Boot and execute code during the early boot phase.
The post Flaws in Gigabyte Firmware Allow Security Bypass, Backdoor Deployment appeared first on SecurityWeek.
Windows’ Infamous ‘Blue Screen of Death’ Will Soon Turn Black
After more than 40 years of being set against a very recognizable blue, the updated error message will soon be displayed across a black background.
The post Windows’ Infamous ‘Blue Screen of Death’ Will Soon Turn Black appeared first on SecurityWeek.
