HPSBHF03647 rev. 2 - HP Open-Chassis Pre-boot Direct Memory Access (DMA) Vulnerability

Potential Security Impact Arbitrary Code Execution, Denial of Service, Information Disclosure. Source: HP, HP Product Security Response Team PSRT. Reported by: Mickey Shkatov from Eclypsium, and Zoltan Harmath from Microsoft. VULNERABILITY SUMMARY A potential security vulnerability with pre-boot...

New Flaws Re-Enable DMA Attacks On Wide Range of Modern Computers

Security researchers have discovered a new class of security vulnerabilities that impacts all major operating systems, including Microsoft Windows, Apple macOS, Linux, and FreeBSD, allowing attackers to bypass protection mechanisms introduced to defend against DMA attacks. Known for years, Direct...

Apple OS X Yosemite 10.10.2 Update to Patch years-old Thunderstrike vulnerability

Apple is preparing to release the second update to OS X Yosemite in the coming days to its customers. The upcoming beta update OS X Yosemite 10.10.2 contains a patch for the Thunderstrike vulnerability that allows malware to be injected into Macs via the Thunderbolt port. Earlier this month,...