Intel’s China unit issued a statement on Thursday addressing recent accusations from a prominent Chinese cybersecurity association, which has called for a security review of the U.S. chipmaker’s products sold in the country. The call for review comes at a time when concerns over supply chain security and foreign technology in critical infrastructure are growing within China.
Recent advancements in security research have shed light on critical vulnerabilities affecting Intel and AMD processors. These findings have prompted both chip manufacturers to issue responses to separate studies that target their products' trusted execution environments (TEEs). This article explores these significant developments, focusing on the implications for data security in computing.
The Iran-linked cyberespionage group OilRig (also known as APT34, Cobalt Gypsy, Earth Simnavaz, and Helix Kitten) has been ramping up its cyber operations against government entities across the Gulf region, cybersecurity firm Trend Micro reports. This advanced persistent threat (APT) group, active since at least 2014, continues to target the energy sector and other critical infrastructures in alignment with Iranian government interests.
Internet Archive Breach: 31 Million Users' Data Compromised in Massive Hack
The Internet Archive’s "Wayback Machine," a cornerstone for online digital preservation, has experienced a significant data breach. A threat actor compromised the website and stole an authentication database containing 31 million unique records. The breach was first made public through a JavaScript alert displayed on the compromised archive.org website.
In February 2024, CrowdStrike launched a new InterProcess Communication (IPC) Template Type with its Falcon sensor version 7.1, introducing 21 input fields. Their rapid response mechanism utilizes content delivered via Channel Files. However, the interpreter for Channel File 291 only accounted for 20 values. On July 19, 2024, when two additional IPC Template Instances were deployed, the attempt to access the 21st value led to an out-of-bounds memory read, ultimately causing system crashes.
American Water, the largest water utility in the U.S., recently disclosed that it was targeted by a cyberattack. Based in Camden, New Jersey, the company announced on its website that it detected "unauthorized activity in our computer networks and systems" last Thursday, which it has determined to be the result of a cybersecurity incident.
Qualcomm has announced the release of critical security patches to address a significant zero-day vulnerability in its Digital Signal Processor (DSP) service, identified as CVE-2024-43047. This flaw poses risks to a wide range of chipsets and was discovered by researchers from Google Project Zero and Amnesty International Security Lab.
Intel China Responds to Cybersecurity Accusations Amid Call for Product Security Review Intel’s China unit issued a statement on Thursday ...
