Search: Security and disclosure trust

Researchers attack AMD's Infinity Fabric to bypass hardware security protections with 'Fabricked' — flaw lets malicious cloud hosts silently read confidential VM memory and forge attestation reports

… AMD acknowledged the vulnerability following ETH Zurich's responsible disclosure in August 2025, assigned it CVE-2025-54510, and published security guidance under advisory AMD-SB-3034 when the embargo lifted in April 2026. …

May 19, 2026 · Etiido Uko

AI shrinks zero-day exploit time from a year to a single day, heading toward one minute — Zero-Day Clock warns security window has collapsed

… First, those that are fairly easy to swallow: ensure every piece of firmware, software, framework, and hardware platform has all the security features enabled by default, and always adopt a zero-trust architecture whenever possible. …

May 26, 2026 · Bruno Ferreira

Compromised Mistral AI and TanStack packages may have exposed GitHub, cloud and CI/CD credentials in 'mini Shai Hulud' malware infection — supply-chain campaign spreads across npm and AI developer ecosystems like wildfire

… Supply-chain attacks have become an increasingly serious concern across the software industry because of the sheer scale at which trusted dependencies are reused. …

May 12, 2026 · Etiido Uko

Microsoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoor

… They did this after their disclosure reports were allegedly dismissed by Microsoft's security team, resulting in a vendetta of sorts. …

May 13, 2026 · Bruno Ferreira

News Archive | December 2024 | Tom's Hardware

…dominance with 50% tariffs on solar wafers and polysilicon — tungsten products will see a 25% increase Microsoft Recall screenshots credit cards and Social Security numbers, even with the "sensitive information" filter enabled…

Followed topics

Researchers attack AMD's Infinity Fabric to bypass hardware security protections with 'Fabricked' — flaw lets malicious cloud hosts silently read confidential VM memory and forge attestation reports

AI shrinks zero-day exploit time from a year to a single day, heading toward one minute — Zero-Day Clock warns security window has collapsed

Compromised Mistral AI and TanStack packages may have exposed GitHub, cloud and CI/CD credentials in 'mini Shai Hulud' malware infection — supply-chain campaign spreads across npm and AI developer ecosystems like wildfire

Microsoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoor

News Archive | December 2024 | Tom's Hardware