Everybody's flashing for the weekend, even Intel wants a little romance

Subject: General Tech | April 12, 2019 - 12:32 PM | Jeremy Hellstrom
Tagged: security, patch, Intel, flash

If you and your Intel chips are feeling insecure, why not show them some love this Friday night and flash them with new updates?  There are new updates including one to mitigate Spoiler, and one for the Broadwell U i5 vPro found in the Intel NUC.  There are also software update, which resolves permission escalation vulnerabilities in the Graphics Performance Analyzer for Linux and the Intel Media SDK. 

As when flashing your motherboard or GPU, do be careful to read and follow all the steps, unless you have a love of bricking expensive equipment.  Drop by The Register for links to all four updates.

"Chipzilla's April patch load includes fixes for a pair of bugs considered by Intel to be high security risks, as well as a speculative execution bug reported by university researchers last month."

Here is some more Tech News from around the web:

Tech Talk

• Intel shortages, weak-ass consumer spending, 'peak' Win10 refresh. No, global PC market didn't grow in Q1 @ The Register
• Intel's 'priceless' Core i9-9980XE CPU, er, goes on sale @ The Inquirer
• As Alexa's secret human army is revealed, we ask: Who else has been listening in on you? @ The Register
• Mozilla releases first Firefox build for ARM-based Windows PCs @ The Inquirer
• WiFi Controlled Plane Is Cheap Flying Fun @ Hackaday
• LinkedIn adds emoji reactions for you hip young jobseekers @ The Inquirer

I see your wireless password is early adopter

Subject: General Tech | April 11, 2019 - 12:25 PM | Jeremy Hellstrom
Tagged: WPA3, wireless, security, bug, dragonblood, sae

WPA3 is a year old and it seems it has a few flaws which still need to be ironed out, though it can still offer better protection than WPA2.  The Inquirer describes this flaw in Simultaneous Authentication of Equals (SAE) handshake, dubbed Dragonblood, in this recent article.  It is not a theoretical architectural flaw, indeed the researchers that discovered it could make use of it to brute-forcing an eight-character lowercase password with about $125 in Amazon EC2 instances; not good for a protocol which was intended to prevent all dictionary attacks. 

The good news is that a change in the SAE algorithm could mitigate this specific flaw and as WPA3 is not yet widely adopted that is something which could be done before it does start to become mainstream.

"Launched in January 2018, WPA3 uses the Advanced Encryption Standard (AES) protocol to improve WiFi network security. However, a new research paper published by Mathy Vanhoef and Eyal Ronen shows that the protocol may not be as safe as previously thought."

Here is some more Tech News from around the web:

Tech Talk

• Implementing Qi Inductive Charging Yourself @ Hackaday
• Orders from Huawei, AMD key to driving TSMC growth in 2Q19 @ DigiTimes
• Intel brings Optane and QLC NAND to a single M.2 memory chip @ The Inquirer
• Windows Subsystem for Linux distro gets a preening, updated version waddles into Microsoft's app store @ The Register
• Amazon Workers Are Listening To What You Tell Alexa @ Slashdot
• China responsible for just, oh, 20% of global semiconductor revenue in 2018, no biggie @ The Register
• The Witness Is FREE For A Limited Time! Get It Now! @ TechARP

DNS, you are the weakest D-Link!

Subject: General Tech | April 5, 2019 - 01:30 PM | Jeremy Hellstrom
Tagged: D-Link, security, dns

Do you have a love/hate relationship with DNS and how it makes your life so interesting?  If not, hopefully you aren't using one of the D-Link, ARG-W4, DSLink, Secutech or TOTOLINK routers listed in this article at Slashdot as it is bound to ruin your trust in DNS.  Three distinct waves of attacks, late December 2018, early February 2019, and late March 2019 have been detected by Bad Packets and the attacks continue to this day. 

Using some well known but as of yet patched exploits, hackers are changing the DNS server on those routers so they can easily and invisibly redirect you to cloned sites to harvest account info as you attempt to log into these faked sites.  If you do have one of these routers, see about getting a firmware update from the manufacturer or your ISP ... just don't do it from a machine connected to the router!

"Troy Mursch, founder and security researcher at internet monitoring firm Bad Packets, said he detected three distinct waves during which hackers have launched attacks to poison routers' DNS settings --late December 2018, early February 2019, and late March 2019. Attacks are still ongoing, he said today in a report about these attacks."

Here is some more Tech News from around the web:

Tech Talk

• Google dissolves its AI ethics board after just one week @ The Inquirer
• VR modes coming to Super Mario Odyssey, Breath of the Wild on Nintendo Switch @ Ars Technica
• Xen 4.12 shrinks code, beefs up security, rethinks x86 support @ The Register
• Lend me your ears and AI will play with your brain: Machine voice imitators outsmart us @ The Register
• GPS “rollover” event on April 6 could have some side-effects @ Ars Technica
• Arozzi Arena Leggero Star Trek Edition Gaming Desk Review @ NikKTech

Today it's Huawei, let's hope tomorrow doesn't bring a new one

Subject: General Tech | March 27, 2019 - 03:32 PM | Jeremy Hellstrom
Tagged: Huawei, PCManager, security

ASUS have addressed the issue reported yesterday, if you hadn't seen the updated post, today it is Huawei that is the problem.   As part of the latest update to Windows 10, Microsoft deployed new tools which can detect software accessing the kernel in less than auspicious ways and they immediately spotted an issue with Huawei's PC Manager app, which updates drivers on their products.  All an attacker need do is create malicious instance of the MateBookService.exe and even without running it with full admin privileges they could still gain control of the machine.

The good news, as The Inquirer points out, is that this was patched back in January so unless you haven't updated in a while you are safe.

"Security boffins from Microsoft discovered a pretty nasty local privileged execution vulnerability in the Huawei PCManager driver software, found in machines like the MateBook X Pro, after new kernel sensors were brought into Windows 10 through the much-maligned October 2018 Update."

Here is some more Tech News from around the web:

Tech Talk

• Huawei driver flaw left Windows 10 systems open to kernel-level hacks @ The Inquirer
• Google to build new R&D center in Taiwan @ DigiTimes
• With the right training, algorithms can predict Li-ion battery lifetime – with 95% accuracy @ The Register
• BitTorrent Live Returns as a Snapchat-like Social Media App @ Slashdot
• Google is using AMP to make emails a bit less rubbish @ The Inquirer
• Apple Still Hasn't Fixed Its MacBook Keyboard Problem @ Slashdot
• Guru3D Rig of the Month - March 2019
• ApexGaming Elite ZT Motorized Desk Riser Review @ NikKTech

Report: Supply Chain Attack ShadowHammer Leveraged ASUS Live Update

Subject: General Tech | March 25, 2019 - 01:47 PM | Jeremy Hellstrom
Tagged: ShadowHammer, security, Kaspersky Labs, asus

Update, 3/26/19: As reported by TechRadar this morning ASUS has responded to the issue and implemented a fix to the latest version of Live Update (version 3.6.8) which provides "an enhanced end-to-end encryption mechanism" for the software. ASUS states that they "have also updated and strengthened our server-to-end-user software architecture to prevent similar attacks from happening in the future”. The company has also released a software tool to see if your system is affected, available directly from ASUS here (ZIP file).

Further, Bloomberg reports today that ASUS has disputed the numbers from the Kaspersky report, stating the attacks impacted only several hundred devices - and not "over a million" as had been estimated by Kaspersky. An ASUS spokesperson also said that "the company had since helped customers fix the problem, patched the vulnerability and updated their servers," in a statement quoted in the Bloomberg report.

The original news post follows.

Today, unfortunately, we have a perfect example of a supply chain attack posted at Slashdot and a very good reason for anyone using ASUS products to do a full scan on their systems as soon as they can.  It seems that attackers compromised the ASUS update server, forged two different ASUS digital certificates and pushed out malware to about a half million customers when their machines ran an auto-update. Kaspersky Labs published details on their findings this afternoon as well, cautioning that "the investigation is still in progress and full results and technical paper will be published during SAS 2019 conference in Singapore".

What makes this even more interesting is that the infection was looking for 600 specific MAC addresses, when it found one it would immediately reach out to another server to install additional payload.  This does not mean those without one of the listed MAC addresses is safe, the infection could still be there and modified to install additional nastiness on all infected machines.  According to the information from Motherboard, Kaspersky first detected this in January and have reached out to ASUS several times, as did Motherboard who "has not heard back from the company".

"The researchers estimate half a million Windows machines received the malicious backdoor through the ASUS update server, although the attackers appear to have been targeting only about 600 of those systems. The malware searched for targeted systems through their unique MAC addresses."

Here is some more Tech News from around the web:

Tech Talk

• Nintendo planning two new Switch models @ Ars Technica
• Netflix wants to choose its own adventure where Bandersnatch trademark case magically vanishes @ The Register
• Apple is reportedly working on App Store games by subscription @ The Inquirer
• We fought through the crowds to try Oculus's new VR goggles so you don't have to bother (and frankly, you shouldn't) @ The Register
• Microsoft's Chromium version of the Edge browser has leaked all over the internet @ The Inquirer
• Improved Estimates of the Distance To the Large Magellanic Cloud @ Slashdot
• 2019 Samsung Forum - QLED 8K + 4K TVs, iTunes & More @ TechARP

It's a good day to be running an AMD APU, unless you like updating iGPU drivers

Subject: General Tech | March 14, 2019 - 12:08 PM | Jeremy Hellstrom
Tagged: Intel, security, patch, igp

Today there are patches for no less than 19 vulnerabilities on Intel graphics drivers for Windows of various flavours.  Sysadmins out there should also pay attention, as there are  vulnerabilities specific to server chips as well, with patches for a variety of features up to and including the Trusted Execution Engine; if you are using a desktop chip with these features you should also pay attention.  The only silver lining to this is that the vulnerabilities require an already compromised machine to be exploited ... or physical access of course.

You can read through the synopsis of these CVEs over at The Register if you want to ruin your Thursday.

"Chipzilla's March patch dump is highlighted by fixes for 19 CVE-listed vulnerabilities in its graphics drivers for Windows. If you use Windows and have those drivers (and if you're running an Intel CPU with integrated GPU, you almost certainly do) you will want to patch sooner than later."

Here is some more Tech News from around the web:

Tech Talk

• What today links Gmail, Google Drive, YouTube, Facebook, Instagram – apart from being run by monopolistic personal data harvesters? @ The Register
• Dropbox Now Limits Free Users To 3 Devices @ Slashdot
• It looks like Windows 10 Home can now defer updates for 35 days @ Ars Technica
• Two-Thirds of Android Antivirus Apps Are Total BS @ Slashdot
• Physicists Reverse Time Using Quantum Computer @ Slashdot
• noblechairs Hero Real Leather Gaming Chair @ TechPowerUp

The pen is mightier than the car alarm

Subject: General Tech | March 8, 2019 - 12:57 PM | Jeremy Hellstrom
Tagged: security, hack, automotive, car alarm

Another week goes by and another half dozen vulnerabilities have been announced, as has sadly become tradition.  If you prefer to jump directly to the Chrome and Win7 ones below feel free, but this particular vulnerability Hackaday describes is a bit different from the norm.  It seems popular car alarm systems from Viper/Clifford and Pandora can be used quite effectively as carjacking tools. 

They both had poorly implemented security protocols which made it fairly trivial to change any users password so you could gain access to the account.  That access allows you to locate the car via GPS, listen to what is going on if the car has a microphone open or lock the doors and even start and stop the engine, as well as triggering the alarm.  This is as they say, a bad thing, and thankfully it was effectively patched once reported to the companies involved.

"As ethics demand, the group notified the vendors and supposedly the holes have been plugged. Sometimes you hear about a hack that requires some very exotic work, but these were trivially simple. It is unknown if anyone ever used these hacks in a bad way, but it was certainly a real possibility."

Here is some more Tech News from around the web:

Tech Talk

• Put down the cat, coffee, beer pint, martini, whatever you're holding, and make sure you've updated Chrome (unless you enjoy being hacked) @ The Register
• A “serious” Windows 0-day is being actively exploited in the wild @ Ars Technica
• Microsoft's latest Windows 10 update is hurting game performance @ The Inquirer
• Microsoft Rolls Out New Skype for Web; Does Not Support Firefox, Safari, and Opera @ Slashdot
• It's a hard drive ahead: Seagate hits density problem with HAMR, WD infects MAMR with shingles @ The Register
• Monolayer resets record for thinnest non-volatile memory device @ PhysicsWorld
• The Raspberry Pi 3A+ is getting Linux 5.1 kernel support @ The Inquirer

Spoiler alert! Don't have a Meltdown but Spectre isn't the only spooky thing about Intel chips

Subject: General Tech | March 5, 2019 - 06:29 PM | Jeremy Hellstrom
Tagged: spoiler, spectre, security, meltdown, Intel

******Update*****

A spokesperson from Intel reached out to provide a statement for us.

“Intel received notice of this research, and we expect that software can be protected against such issues by employing side channel safe software development practices. This includes avoiding control flows that are dependent on the data of interest. We likewise expect that DRAM modules mitigated against Rowhammer style attacks remain protected. Protecting our customers and their data continues to be a critical priority for us and we appreciate the efforts of the security community for their ongoing research.”

This is good news as the original report suggested a sofware mitigation might not be possible.

********** End Update ***********

If Tim's post earlier today was bright spot on an otherwise dismal day, then get ready for the clouds to roll back in.  The performance drop experience from protecting yourself against Spectre and it's variants may have been mitigated to a point, however researchers from Worcester Polytechnic Institute, Massachusetts, and the University of Lubeck have discovered Intel chips are still vulnerable to a newly discovered vulnerability dubbed Spoiler. 

Like the previous vulnerabilities it exploits speculative execution however unlike Spectre, Meltdown and their variants, it attacks via the Memory Order Buffer, using the timing behaviour it exposes.  If there is one bit of good news in this discovery, it is that only Intel processors are affected and not AMD nor ARM.

Read on at Slashdot if you aren't already depressed enough.

"Like the Spectre and Meltdown attacks revealed in January 2018, Spoiler also abuses speculative execution in Intel chips to leak secrets. However, it targets a different area of the processor called the Memory Order Buffer, which is used to manage memory operations and is tightly coupled with the cache."

Here is some more Tech News from around the web:

Tech Talk

• Microsoft Edge running on Chromium has more than a hint of Chrome about it @ The Inquirer
• Structural supercapacitors prepare for take-off @ PhysicsWorld
• iPhone 11 release date, specs and price: 2019 iPhones might offer waterproof display tech @ The Inquirer
• 3D Print Your Own Electric Screwdriver @ Hackaday
• Armor Games admits all its users' deets slurped in database mega-hack as site moves to repair chink @ The Register
• Microsoft Will Launch Disc-Less, 'All Digital' Xbox One S Next Month, Report Says @ Slashdot
• Blender 2.80 (Beta) Viewport & Rendering Performance @ Techgage
• Dealmaster: A whole bunch of Anker charging gear is on sale today @ Ars Technica