Not too long ago, it was discovered that Intel CPUs were vulnerable to exploits known as Spectre and Meltdown. An article on PCGamer.com reports that a security company from Israel, CTS-Labs, recently discovered security flaws in AMD’s new Ryzen and Epyc processor lines. CTS-Labs reports no less than 13 vulnerabilities that allow malicious code to be installed onto AMD Ryzen or Epyc CPUs. Attackers are able to install malware into the BIOS (Basic Input/Output System), which is a type of built-in software that allows the computer hardware to interact with the installed operating system, or OS.
Malware that is installed in the BIOS is able to bypass any security scans that are performed in the OS and has the potential to remain undetected indefinitely. Malware installed in the BIOS can then operate directly from the CPU, potentially stealing passwords, personal data or installing ransomware that encrypts your personal files. As of March 15, 2018, AMD is still researching the depth and nature of the security flaws and no fixes have yet been released. CTS-Labs have made all current information about these security flaws available, which you can view at https://amdflaws.com/.
If you have any questions about these security flaws or would like to know if your computer is at risk, please feel free to contact one of our friendly IT support technicians at (920) 569-2681. If you live in the greater Green Bay / De Pere area, you can stop in and see us for some advice at our office located at 400 Reid Street in De Pere, WI.