14 votes

Making sense of the Supermicro motherboard attack

2 comments

  1. nathan
    Link
    From the article: “There are few facts, and much supposition.” Sums it up pretty nicely. It was an interesting read though, it’s always amazing to me to read about how many computers are in a...

    From the article: “There are few facts, and much supposition.”

    Sums it up pretty nicely. It was an interesting read though, it’s always amazing to me to read about how many computers are in a computer (in several senses of the word) I really can’t imagine being a security engineer in charge of securing such a complex machine.

    7 votes
  2. Defluo
    Link
    I found the comments enlightening. I lean heavily towards the attack being a fabrication of Bloomberg or their sources, but a little less so after reading the comments. It seems an attack like...

    I found the comments enlightening. I lean heavily towards the attack being a fabrication of Bloomberg or their sources, but a little less so after reading the comments. It seems an attack like this is possible, but it's not very plausible at all. There would need to be a ton of errors from professionals in different fields all lining up for this attack to have been executed correctly.

    The last comment mentioning this component: digikey link is pretty damning too. The supposed chip the bloomberg article showed looks exactly like this and the "chip" they have an arrow pointing to is just an alignment mark.

    6 votes