Fri. 03/06 - Sonos Won’t Brick Your Old Hardware Anymore

Tech Brew Ride Home

Amalgamated Internets, LLC

News, Tech News, Technology

4.7 • 1K Ratings

🗓️ 6 March 2020

⏱️ 18 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Another flaw in Intel chips, this time unfixable. Y Combinator demo day is going online only. Sonos won’t brick your old hardware anymore. Jack Dorsey probably won’t be moving to Africa anymore. And, of course, the weekend longreads suggestions. Links: Metalab.co TheUSample.com/product Links: 5 years of Intel CPUs and chipsets have a concerning flaw that’s unfixable (Ars Technica) Apple is rejecting coronavirus apps that aren’t from health organizations, app makers say (CNBC) YC W20 Online Demo Day (YCombinator) Sonos kills its device-bricking 'recycle mode' (Engadget) Quibi is giving people a 90-day free trial in hopes they’ll actually sign up (The Verge) Jack Dorsey is reconsidering Africa move amid coronavirus and activist investor threats (The Verge) Weekend Longreads Suggestions: So you wanna buy a used IP address block? (Web Informant) The Untold Story of the Man That Made Mainstream Encryption Possible (One Zero) Sportswriting’s future may depend on the Athletic, which is either reassuring or terrifying (Washington Post) Hideo Kojima’s Strange, Unforgettable Video-Game Worlds (NYTimes Magazine) Can You Really Hire a Hit Man on the Dark Web? (NYTimes) This Utility Heats New York State—And Mines Its Own Bitcoin (Bloomberg) Classic iPod Hackers Say There’s No Better Way to Listen to Music (One Zero) Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	Welcome to the Tech Meme Right Home for Friday, March 6, 2020. I'm Brian McCullough.
0:08.4	Today, another flaw in Intel chips, this time unfixable.
0:13.2	Why Combinator demo day is going online only and I think you probably can guess why.
0:17.8	Sonos won't break your old hardware anymore.
0:19.9	Jack Dorsey probably won't be moving to Africa anymore and of course the weekend long read suggestions.
0:25.0	Here's what you miss today in the last five years has been discovered
0:39.0	that allows sophisticated attackers to access the Mask ROM, a piece of the chip that boots the very first piece of
0:46.0	CSME firmware and the vulnerability can't be patched with a firmware update quoting
0:51.6	Ars Technica.
0:53.3	The flaw resides in the converged security and management engine, a subsystem inside Intel
0:58.7	CPUs and chipsets, that's roughly analogous to Amd's platform security processor.
1:04.0	Often abbreviated as CSME, this feature implements the
1:08.0	firmware-based trusted platform module used for
1:11.0	silicon-based encryption, authentication of UEEFI Biose firmware,
1:16.0	Microsoft System Guard, and BitLocker, and other security features.
1:19.0	The bug stems from the failure of the input-output memory management unit which provides
1:24.4	protection preventing the malicious modification of static random access memory
1:28.6	to implement early enough in the firmware boot process.
1:32.0	That failure creates a window of opportunity for other chip
1:34.7	components such as the integrated sensor hub to execute malicious code that runs very early in
1:40.3	the boot process with the highest of system privileges.
1:44.0	Quote, this vulnerability jeopardizes everything Intel has done to build the root of trust and
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from Amalgamated Internets, LLC, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of Amalgamated Internets, LLC and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.