Close Menu
  • PC Hardware
    • Graphics Cards
    • Laptops
    • Storage
    • CPU & Motherboards
    • Memory
    • Cases
    • Cooling
  • Games
    • PC
    • Playstation
    • Nintendo Switch
    • Mobile
  • Guides
    • PC Build Guides
  • Tech
    • Smartphones
  • Hobby & Entertainment
    • Anime & Manga
    • Toys & Collectibles
    • Lifestyle
    • Gaming
      • Esports
    • Movies & Series
  • About Back2Gaming
  • Advertise on B2G
  • Contact Us
Facebook X (Twitter) Instagram
  • Contact Us
  • Advertise on B2G
  • About B2G
    • Privacy Policy
  • More
    • Review Directory
    • News
Facebook X (Twitter) Instagram
Sunday, July 13th, 2025
Back2GamingBack2Gaming
  • PC Hardware
    1. Graphics Cards
    2. Laptops
    3. Storage
    4. CPU & Motherboards
    5. Memory
    6. Cases
    7. Cooling
    8. View All

    COLORFUL Shows Off iGame DUO SSD Graphics Card Featuring Two M.2 Slots

    July 12, 2025

    GeForce RTX 5060 Launches with DLSS 4, Neural Rendering, and Blackwell Architecture at $299

    May 27, 2025

    GeForce RTX 50 Graphics for Laptops Aims to Improve Battery-only Gaming With These Features

    April 29, 2025

    ASUS PRIME RTX 5070 12GB Graphics Card Review

    March 30, 2025

    GeForce RTX 50 Graphics for Laptops Aims to Improve Battery-only Gaming With These Features

    April 29, 2025

    ASUS Zenbook S14 (UX5406SA) 14″ Laptop Review

    November 28, 2024

    Intel Core (14th-gen) Mobile Processor Review

    July 18, 2024

    ASUS Zenbook Pro 16X OLED UX7602B (2023) Laptop Review

    February 26, 2024

    COLORFUL Shows Off iGame DUO SSD Graphics Card Featuring Two M.2 Slots

    July 12, 2025

    ADATA SC750 USB3.2 Gen2 (10Gbps) External SSD Review

    March 31, 2025

    Kingston NV3 Gen4 SSD Review

    February 11, 2025

    TEAMGROUP T-FORCE G50 SSD Review

    December 31, 2024

    COLORFUL CVN X870 ARK FROZEN V14 AM5 Motherboard Review

    May 12, 2025

    Intel Expands Arrow Lake-S Line-Up with Non-K SKUs, Debuts Arrow Lake-H/HX Processors at CES 2025

    January 9, 2025

    ASUS ROG CROSSHAIR X870E HERO AM5 Motherboard Review

    December 23, 2024

    ASUS ROG MAXIMUS Z890 HERO LGA1851 Motherboard Review

    October 24, 2024

    G.SKILL Trident Z5 CK DDR5 CUDIMM Memory Kit Review

    December 31, 2024

    TEAMGROUP T-FORCE XTREEM ARGB DDR5 Memory Kit Review

    December 31, 2024

    Kingston FURY Renegade RGB DDR5-8400 CUDIMM Memory Kit Review

    December 31, 2024

    Kingston FURY Renegade DDR5 RGB Limited Edition Memory Kit Review

    September 29, 2024

    Corsair FRAME 4000D Modular Mid-Tower Chassis Review

    March 6, 2025

    Corsair 6500X Dual Chamber Mid-Tower Case Review

    November 3, 2024

    APNX C1 Mid-Tower Case Review

    September 2, 2024

    Corsair 2500X microATX Case Review

    May 1, 2024

    Corsair iCUE LINK LX120-R RGB Reverse PWM Fans Review

    March 6, 2025

    Corsair NAUTILUS RS ARGB AIO Liquid CPU Cooler Review

    January 21, 2025

    Corsair iCUE LINK TITAN RX 240 AIO Liquid CPU Cooler Review

    October 18, 2024

    Arctic Liquid Freezer III 360 A-RGB AIO Liquid CPU Cooler Review

    September 2, 2024

    COLORFUL Shows Off iGame DUO SSD Graphics Card Featuring Two M.2 Slots

    July 12, 2025

    GeForce RTX 5060 Launches with DLSS 4, Neural Rendering, and Blackwell Architecture at $299

    May 27, 2025

    COLORFUL CVN X870 ARK FROZEN V14 AM5 Motherboard Review

    May 12, 2025

    GeForce RTX 50 Graphics for Laptops Aims to Improve Battery-only Gaming With These Features

    April 29, 2025
  • Games
    • PC
    • Playstation
    • Nintendo Switch
    • Mobile
  • Guides
    • PC Build Guides
  • Tech
    • Smartphones
  • Hobby & Entertainment
    • Anime & Manga
    • Toys & Collectibles
    • Lifestyle
    • Gaming
      • Esports
    • Movies & Series
Back2GamingBack2Gaming
Home » News » 13 Security Vulnerabilities and Backdoors Discovered in AMD Zen Architecture
News

13 Security Vulnerabilities and Backdoors Discovered in AMD Zen Architecture

BossMac SubaBy BossMac SubaMarch 15, 20183 Comments4 Mins Read
Share Facebook Twitter Reddit Pinterest WhatsApp LinkedIn Copy Link Email
13 Security Vulnerabilities And Backdoors Discovered In Amd Zen Architecture

Israel-based security research firm CTS-Labs has published their discovery of alleged multiple critical flaws in AMD’s Zen CPU microarchitecture which they claim is as serious as the recent public disclosure of the Meltdown and Spectre vulnerabilities that affected CPUs from Intel, ARM and AMD. CTS-Labs cites 13 vulnerabilitties which they file under four groups based on which function they exploit. The exploit classes are dubbed Ryzenfall, Masterkey, Fallout and Chimera. CTS-Labs states that “… some of these vulnerabilities amounts to complete disregard of fundamental security principles. This raises concerning questions regarding security practices, auditing, and quality controls at AMD.”

The researchers claims that they “believe that networks that contain AMD computers are at a considerable risk,” with the malware capable of surviving reboots and re-installations all the while being virtually undetectable by endpoint security solutions like antivirus software.

The exploit classes are detailed as follows:

  1. Ryzenfall – a class of vulnerabilities that target Secure Processor. This class allows malware to place code in the Secure Processor of a system and execute during system up-time. This attack requires admin privileges on the target but can be performed in real-time on the system without modifying firmware. Secure Processor uses system alojngside on-die memory. While normally this part of the memory is inaccessible by the CPU, certain bugs can be exploited to bypass this protection allowing code to be ran on Secure Processor and have full access to the system. Microsoft Virtualization-based Security can be bypassed and more malware can be dumped into system management storage where it will not be detected by traditional antivirus software. Windows Defender Credentials Guard, a password-authentication and storage component can also be bypassed and allows the malware to spread to other systems in the networks. The firmware can also be modified to exploit the Masterkey.
  2. Masterkey – An exploit targetting the Secure Boot feature which checks the machine for any tampering that may have occurred during power down states e.g. firmware changes, hardware or software state before shutdown. Masterkey bypasses this via a compromised system BIOS that can be flashed from within Windows with admin privileges. The user does not have to manually be involved in the flashing of the BIOS for the infection to occur, malware that target this vulnerability can flash the system on the fly. Once infected, Secure Boot is rendered useless with the malware allowing any ARM Cortex A5 code to be executed in the Secure Processor.
  3. Fallout – These vulnerabilities are restricted to AMD’s EPYC server CPUs only. It requires admin privileges and has similar effects as the previous vulnerabilities. Fallout allows an attacker to gain access to memory regions which are not normally accessible even with administrative privileges. Its similar to Ryzenfall but with a different attack vector.
  4. Chimera – A chipset exploit which utilizes a backdoor implemented in the chipset by exploiting the motherboard. With the right passcode, an attacker can gain access to the chipset including running arbitrary code. This grants direct-memory access  to system memory which can be used to inject malware to the operating system. Peripherals and many other connected devices can then be targeted including keyloggers. Since a second backdoor was found that is in the physical chip design, this cannot be patched via software updates and the researches have hinted at possible recalls of affected products.

The researches have published AMDFlaws.com to detail their findings and publish white papers in the future.

Responding to TechPowerUp, AMD reps gave the following statement:

“We have just received a report from a company called CTS Labs claiming there are potential security vulnerabilities related to certain of our processors. We are actively investigating and analyzing its findings. This company was previously unknown to AMD and we find it unusual for a security firm to publish its research to the press without providing a reasonable amount of time for the company to investigate and address its findings. At AMD, security is a top priority and we are continually working to ensure the safety of our users as potential new risks arise.”


AMD security
Follow on Facebook Follow on X (Twitter)
Share. Facebook Twitter Reddit LinkedIn Pinterest WhatsApp Copy Link Email
Previous ArticleLife is Strange: Before the Storm Coming to Linux this Spring 2018
Next Article AMD Only Given 24 Hours Notice Before Security Flaws Were Made Public
BossMac Suba
  • Website
  • Facebook
  • X (Twitter)
  • Instagram

Boss Mac Suba is the driving force behind Back2Gaming.com, a leading authority in PC gaming hardware and video game reviews. With over a decade of experience in IT and more in doing reviews for things he love, he combines in-depth technical expertise with a no-nonsense approach to deliver data-driven, insightful content. If we've ever been in a media briefing together before, you know I'm the guy that asks the good questions. Favorite quote: My favorite animal is the scapegoat.

Related Posts

News 3 Mins Read

Hatsune Miku Receives the ROG Premium Treatmeant with ROG x HATSUNE MIKU Collection

July 12, 20250
News 3 Mins Read

NVIDIA Kicks Off Back-to-School Campaign with GeForce RTX 50 Series-Powered Systems in the Philippines

July 10, 20250
News 3 Mins Read

HYTE x Gundam Wing Collection Revealed

July 4, 20250

3 Comments

  1. Noel Calara on March 15, 2018 10:46 am

    I’m sorry, but other tech news sites and fora are beginning to see that the supposed Israeli “research lab” had a website which was only set up last year, a URL that was registered a few weeks ago, that some of the videos were shot with fake backgrounds, that many are calling it out for stock manipulation.

    Reply
    • Back2Gaming on March 15, 2018 10:52 am

      yup was gonna add that last night but gonna finish up the entire thing with an editorial. this does seem like a demolition job so AMD stocks drop

      Reply
  2. John Erick Viñalon on March 16, 2018 4:56 am
    Reply
Leave A Reply Cancel Reply

Stay updated!
  • Facebook
  • Twitter
  • Instagram
  • YouTube
Keeping the Lights On!
Avail of SUPER DEALS on MSI laptops!
Hubbyte Toy Store - The Largest Online Toy Store in th Philippines!
Latest Reviews

COLORFUL CVN X870 ARK FROZEN V14 AM5 Motherboard Review

8.3
1

ADATA SC750 USB3.2 Gen2 (10Gbps) External SSD Review

8.6
2

ASUS PRIME RTX 5070 12GB Graphics Card Review

8.5
3

Corsair iCUE LINK LX120-R RGB Reverse PWM Fans Review

8.7
4

Corsair FRAME 4000D Modular Mid-Tower Chassis Review

8.7
5
Today's Exchange Rate

Exchange Rate USD: Sun, 13 Jul.

Connect with us!
  • Facebook
  • Twitter
  • Instagram
  • YouTube
About B2G
About B2G

The only dedicated PC gaming hardware site in the Philippines. I cover PC gaming hardware news and reviews as well as report on games and technology adjacent to the field.

Back2Gaming is a B2G Marketing Services brand.

Email: [email protected]

Facebook X (Twitter) Instagram YouTube
Latest Reviews
8.3

COLORFUL CVN X870 ARK FROZEN V14 AM5 Motherboard Review

8.6

ADATA SC750 USB3.2 Gen2 (10Gbps) External SSD Review

8.5

ASUS PRIME RTX 5070 12GB Graphics Card Review

8.7

Corsair iCUE LINK LX120-R RGB Reverse PWM Fans Review

Recent Comments
  • Back2Gaming on Ghost of Yōtei State of Play Deep Dive: Open World, Combat, Gameplay Details
  • freddyReturns2 on Outriders (PC) Review and Performance Analysis
  • Gregg Paul on From Guild Raids to Market Trades: Why Gamers Are Leveling Up with CFD Trading
  • Santiago on Back 4 Blood Benchmark Testing and Performance Review (PC BETA)
  • Edwin Hodges on Death Stranding 2: On The Beach (PS5) Review
Reigning. Defending. Undisputed. Back2Gaming.com
© 2025 ThemeSphere. Designed by ThemeSphere.
  • Contact Us
  • Latest News
  • Reviews Directory
  • Advertise on B2G
  • About Back2Gaming

Type above and press Enter to search. Press Esc to cancel.