usbguard icon indicating copy to clipboard operation
usbguard copied to clipboard

Published 20 hours ago verified publisher icon USBGuard

Mitigate Thunderspy

Open bitnom opened this issue 4 years ago • 2 comments

Thunderspy:

We have found 7 vulnerabilities in Intel’s design and developed 9 realistic scenarios how these could be exploited by a malicious entity to get access to your system, past the defenses that Intel had set up for your protection.

Proof of concept vulnerability checker: spycheck-linux

Possible mitigation code: spiblock

This is a request for comment on rolling mitigation code into usbguard, if possible and not redundant.

bitnom avatar May 13 '20 19:05 bitnom

how does this affect USB and USBGuard?

muelli avatar May 13 '20 21:05 muelli

how does this affect USB and USBGuard?

The vulnerability is affecting usb-c/thunderbolt. It's exploited by maliciously interfacing with the usb-c port by various means.

bitnom avatar May 13 '20 23:05 bitnom