Security researchers at IOActive have uncovered a decades-old vulnerability in AMD processors, dubbed the “Sinkclose” flaw, which could allow hackers to execute code in the highly secure System Management Mode of the chips. This flaw, present in nearly every AMD chip since 2006, poses a significant risk as it enables malware to deeply embed itself within a computer’s firmware, potentially surviving even a complete OS reinstallation. While exploiting this vulnerability requires substantial access to the target system, making it less of a threat to individual users, it represents a serious concern for corporations and governments due to the difficulty in detection and removal of such deeply rooted malware. AMD has acknowledged the issue, providing mitigation options for various products and emphasizing the complexity of exploiting this vulnerability. However, IOActive warns that kernel exploits, which could facilitate the use of the Sinkclose flaw, are readily available, urging AMD to quickly develop and deploy patches to secure the foundation of affected systems.
Read more at Engadget…