A third-party company that was paid to review the validity of the recent AMD flaws —
RyzenFall, MasterKey, Fallout, and Chimera— has confirmed that these vulnerabilities are real, but that regular users shouldn't panic for the time being.
The author of this review is Trail of Bits, a New York-based cyber-security company that CTS Labs, the company that discovered the AMD flaws, contracted and paid to review its findings.
AMD flaws aren't easy to exploit
"There is no immediate risk of exploitation of these vulnerabilities for most users," said Dan Guido, the CEO of Trail of Bits.
"Even if the full details were published today, attackers would need to invest significant development efforts to build attack tools that utilize these vulnerabilities. This level of effort is beyond the reach of most attackers," he added.
....
....
....
....
