Elite: Dangerous PvE - Mobius

Hello fellow commanders,

In case you aren't aware, yet. Numerous security vulnerabilities have been found in Intel chipsets. A large number of hardware products is affected.

This is huge, because it allows attacks from the internet as soon as you are connected. Patching Windows or similar can not secure your system, because the vulnerabilities are within the firmware on the mainboards.

Fortunately there are patches available for most mainboards, servers, routers etc. already.
I urge everyone with an Intel chipset on their mainboard to check if the product is affected and to patch as soon as possible.
I'll link the official page on Intel's website but I advise anyone to check back with security experts you know and trust and google for yourselves.

https://www.intel.com/content/www/us/en ... tware.html

I can't stress enough how critical this is and we can expect a gigantic shitstorm of worms, viruses, backddoors and whatnot now, that the details of these vulnerabilities are public.

Fly safe!
/Yeshe

Well, at least there is one bonus to buying AMD.

Yep....

But thought I'd better check the old box as going to use for CAD-CAM shit...........

Cmdr Kharma wrote:Yep....

But thought I'd better check the old box as going to use for CAD-CAM shit...........

Also if not actual CPU architecture etc, could be all kinds of other Intel chips in things.

Also.

My system is identified as being vulnerable

Been in touch with my system manufacturer which is a small(ish) UK firm, they say its an Intel issue. Been in touch with Intel, they say if my manufacturer is not on their current fix list, to get in touch with the manufacturer. Intel say more manufacturers will be added to their fix list as time goes on. Intel also say I can contact another Intel section if my manufacturer is not on their list. But every live chat contact is down.

As someone who is not so very PC technical, I feel like I am left with my ass hanging out.

Well my machine is about two weeks old.
I build myself.
So my guess it's primarily a motherboard and BIOS patch if not I'm sadly out of guesses.

But I suspect that's where I would start, updating bios via the manufacturer, that being Asus, MSI or Gigabyte etc.
As for how I would point you to your manual and say it isn't difficult but some care need to be taken.

DarkMere wrote:My system is identified as being vulnerable...

TorTorden wrote:So my guess it's primarily a motherboard and BIOS patch if not I'm sadly out of guesses.

This has little (nothing?) to do with the BIOS.
It is a patch for the Intel-Chipset _on_ the motherboard.
It's provided by Intel, but the manufacturer of the motherboard has to provide the delivery method, aka the patch program.

TorTorden wrote:But I suspect that's where I would start, updating bios via the manufacturer, that being Asus, MSI or Gigabyte etc.

Almost
What you do is you search the website of your motherboards manufacturer for said patch program.
My box was vulnerable and I found the patch on ASRock's website with Google within seconds.
When in doubt, contact your motherboards manufacturer by chat or phone, I guess.

Yeshe McGermot wrote:

DarkMere wrote:My system is identified as being vulnerable...

TorTorden wrote:So my guess it's primarily a motherboard and BIOS patch if not I'm sadly out of guesses.

This has little (nothing?) to do with the BIOS.
It is a patch for the Intel-Chipset _on_ the motherboard.
It's provided by Intel, but the manufacturer of the motherboard has to provide the delivery method, aka the patch program.

TorTorden wrote:But I suspect that's where I would start, updating bios via the manufacturer, that being Asus, MSI or Gigabyte etc.

Almost
What you do is you search the website of your motherboards manufacturer for said patch program.
My box was vulnerable and I found the patch on ASRock's website with Google within seconds.
When in doubt, contact your motherboards manufacturer by chat or phone, I guess.

Good to know.
At least it's patch able, or people would have to send their hardware in for a recall if it was deep enough.

That would not be fun.
And a significant amount of people wouldn't bother, leaving more exploitable systems in the wild.

afaik you don't need to use the intel drivers provided by the mobo manufacturer. These are always outdated anyway.
I always used the official Intel releases directly (just like you don't use the MSI or ASUS video drivers but use Nvidia releases for example..)