• Some users have recently had their accounts hijacked. It seems that the now defunct EVGA forums might have compromised your password there and seems many are using the same PW here. We would suggest you UPDATE YOUR PASSWORD and TURN ON 2FA for your account here to further secure it. None of the compromised accounts had 2FA turned on.
    Once you have enabled 2FA, your account will be updated soon to show a badge, letting other members know that you use 2FA to protect your account. This should be beneficial for everyone that uses FSFT.

AMD CPU Attack Vectors and Vulnerabilities

Your link is basically a paid advert, ie. the guy that got paid wrote that.

Nothing wrong with paid research (in this case, CTS paid Dan Guido to confirm their findings), the problem is non-disclosure and inconsistent disclaimers with the VICE article.
 
Nothing wrong with paid research (in this case, CTS paid Dan Guido to confirm their findings), the problem is non-disclosure and inconsistent disclaimers with the VICE article.

That's exactly what makes it what it is. Guido didn't admit to being paid anywhere except his twitter.
 
I just read at a different site that 2 of the guys shown in the video were Intel employees as recently as 8 months ago.
 
CTS Labs disclaimer(https://amdflaws.com/disclaimer.html)
View attachment 58471

Oh and Visceroy had an article all ready to go with this news... that was about what 25 pages long, so they had the security article prior to it being "Released"

https://viceroyresearch.org/2018/03/13/amd-the-obituary/

Sus AF... Bughunter and netsec communities are going to be hyper critical of this for the complete lack of forewarning to the company. It's unethical, and completely dissolves the credibility of CTS Labs, if there is even such a thing. I don't want to sound too much like an AMD fanboy, but this does read more like smear/marketing than an actual bug disclosure.

There will always be bugs in complex software and hardware and they need to be disclosed responsibly -- clearly not the intention here.
 
So, the contact phone number is: +1-585-233-0321

That's a New York phone number.

I thought this supposed "company" is in Israel

That doesn't mean anything these days. They could have a hosted number in New York and a VOIP config to forward their phones to Israel.
 
Still betting this is AMD short-sellers trying to manipulate the market, not Intel.
AMD stock is still up on the day (though less so than earlier)
I'm thinking the Schmeckles behind this video and website better be afraid of the SEC's long bladed Mohel knife.

This will only profit AMD in the end.
 
CTS Labs disclaimer(https://amdflaws.com/disclaimer.html)
View attachment 58471

Oh and Visceroy had an article all ready to go with this news... that was about what 25 pages long, so they had the security article prior to it being "Released"

https://viceroyresearch.org/2018/03/13/amd-the-obituary/

Another followup. Fakenews on twitter is really entertaining (look at the responses).
edit: (this forum changing my input is pissing me off -- I can't provide a direct link to twitter without it fucking up the link)
 
anything executing is local if you wanna put it like that.
If you have an SQL injection it executes locally so it's a local exploit as well.
Javascript can be called in numerous ways, on an Amazon shared VM server to gain access to other machines and get outside the sandbox, none of these issues can


The defining point is that it requires someone who is already locally logged in to execute it. That's all I'm saying.
 
So, the contact phone number is: +1-585-233-0321

That's a New York phone number.

I thought this supposed "company" is in Israel

+1-585-233-0321 : Welcome to intel's technical support, all our agents are actualy occupied, please wait for your call to be redirected to CTS Labs....
 
Last edited:
I found this flaw in Intel too, when I am logged in as admin I can destroy my BIOS, or execute any code I want. AMD and Intel really need to address these flaws with their processors

it's way easier to steal a car if you have the keys.

you know?

Kyle when i discovered the company making these claims is based of israel i suspected it was likely was funded by intel mdf funds to stunt amd's growth in the server space. kinda like a backwards metoo?!

#youtoo

:ROFLMAO:
 
anything executing is local if you wanna put it like that.
If you have an SQL injection it executes locally so it's a local exploit as well.
Javascript can be called in numerous ways, on an Amazon shared VM server to gain access to other machines and get outside the sandbox, none of these issues can

Please stop. All of these are local exploits that require a means of getting code to execute on the target.
Argue however you want, but you are incorrect. For the Meltdown/Spectre stuff that can be run through java with a web browser, that requires an active user to browse to a website and then run code.

A remote exploit is something like hitting a vulnerable ftp server that gives me a root shell on the target. No victim interaction at all.
 
Last edited:
Why is every news site posting this? No one knew who these people were yesterday. That's like me making the following statement and it being posted to the front page of HardOCP and CNN...

"Qualcomm puts major backdoor in modems used by Trump."

Disclaimer: post may be hog wash.
 
Not nearly enough paranoia in this thread. Who else knows that Intel is big in Israel and would like to see a wedge between them and AMD? Check for green fingerprints! :D

The first thing that came to mind when I learned Intel had outsourced it's CPU design to Israel was HARDWARE BACKDOOR.

Chances the U.S. and Israeli security apparatus has backdoor hardware access to all Intel CPUs designed in Israel = 99.99%.
Chances the U.S. and Israeli security apparatus has backdoor hardware access to Zen based CPUs = .001%.

In 2019 Intel's 14nm monolithic architecture will be competing with AMD's 7nm modular architecture. Not hard to see where this is going market share wise.

Chances the U.S. and Israeli security apparatus stands idly by as it steadily loses that backdoor CPU access - 00.00000 per cent.
 
I have a better theory...it's aliens (from outer space). You see they are about to introduce themselves to us and sell us their goods and services, and they have these great bug free processors, real cheap (well until the competition is eliminated).
 
This Dan Guido guy seems to be backpedaling already. FFS people are dumb.
 
I picture EXACTLY Intel or Nv being behind such "tactics" in Intel case, the more they can "damage" AMD from selling anywhere, the more they themselves can potentially sell, seems to me that Ryzen absolutely caught Intel off guard, shit in their cornflakes. they are ot completely prevented from making sales like the shit they pulled against AMD many times over the years (and were forced to pay a paltry couple billion which they are still "fighting" against being forced to pay it)

If I were Intel I sure would be doing what I could because there is that "chance" that AMD is going to be releasing something that much more substantial than what Ryzen Gen 1 currently is soon enough, and they do not want their multi billion $ gravy train being derailed more than it is (a 5 or 6% loss wont "kill" Intel but it sure goes a long way to helping AMD have the $ they can to bolster their product, RND, support teams)

this reeks of BS claims against AMD to "damage them" before their next launch, if the issue was "so well known" you figure we would have known about such within the first few weeks of Ryzen launching, but they just "happened" to be "newly created" with financial incentives, seems to me, they more or less KNOW that if the next ones hit it out of the park the lower they can buy shares at, the more $$$$ they can make off of AMD success, if it were/is Intel behind such, they have billions they can do a side line investing in, the cheaper they can get the stock, no matter the % loss they "lose" the more they manage to keep in their pocket at the end of the day.

Intel/Nv are very much crooks for many different reasons (not that most companies are angels of course especially in the cut throat big corporate tech world)

anyways, another place found a good reading, figured would post here if someone did not already
https://www.gamersnexus.net/industr...y-viceroy-research-cts-labs#!/ccomment-page=1
 
lol...poor AMD fanbois thought they had an edge for a few months. *poof*
 
the flaws are real but it sounds much more limited in scope then Spectre and Meltdown...either way sounds like AMD was a little too excited after Spectre and Meltdown were mostly aimed at Intel users...I guess this is the universe correcting itself
 
Any time an article or report comes from a "think tank," "research lab," etc., you should be very very skeptical as to the motives behind the release and the people writing it. In this case, Viceroy releases a 25-page hitpiece analyzing a report released from an unknown company at the same time and "in consultation with experts" who are not named anywhere in the 25 pages. They couldn't even get out of their introduction before stating they believe AMD is worth $0.00 and will file for bankruptcy, and pretty much everything afterward starts with "Viceroy understands" or "we believe."
 
this looks like stock manipulation... I'm guessing someone wants to buy up some cheap stocks or something...

and.. i actually don't think intel nor nvidia would be behind this.. though i could see nvidia doing this for some reason..
 
lol...poor AMD fanbois thought they had an edge for a few months. *poof*
317.png


not today, not today.
 
Back
Top