Cybersecurity

5941 readers

7 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago

MODERATORS

kid

[email protected]

Any recommendations against Sinkclose on older CPUs? (fedia.io)

submitted 5 months ago by [email protected] to c/cybersecurity

2 comments fedilink hide all child comments

As AMD has no intentions to release a patch for the Ryzen 3000 series and bellow, what users can do to protect themselves?

I can assume few things:

Do not run any untrusted software and closed source software in general.
Do not run untrusted OSes and distros. Also disable ability to boot from external devices.
Sandboxing (e.g. flatpaks) won't give you any protection, as it does not protect against kernel exploits.
VMs can give defense if you need to run untrusted apps. Probably it is good to run networking apps in a VM also.

What else? What about web browsers? What you are going to do with affected devices if you have them?

top 2 comments

sorted by: hot top controversial new old

[–] [email protected] 12 points 5 months ago

It requires kernel level access to abuse, so it will probably be mostly used in targeted attacks. General good technical hygiene should be good enough to prevent becoming a random victim.

[–] [email protected] 6 points 5 months ago

Maybe someone will prove me wrong, but I think there is still not enough public information about the vulnerability and the possible mitigations to answer your questions thoroughly.