Attackers can exploit vulnerabilities in how laptops use memory to force the machine to execute unauthorized code while it is booting up, giving them unauthorized privileges and access to information, researchers said.
Researchers have identified yet another speculative execution attack method against Intel processors.
Security researchers at Graz University of Technology in Austria discovered the fixes for the ZombieLoad speculative execution attacks on Intel processors were not completely effective. The researchers have disclosed a new variant that works on Intel processors that have hardware mitigations in place.
The OpenTitan chip project launched by Google and several partners will produce open-source designs for secure root of trust hardware.
Microsoft's Secured-core PC initiative is a partnership with OEM partners (including HP and Dell), silicon vendors (such as Intel, AMD, and Qualcomm) to provide deeply integrated hardware, firmware and software that can withstand firmware-based attacks.