Home Security Intel CEO sold shares on same day OEMs informed of bugs: report

Intel CEO sold shares on same day OEMs informed of bugs: report

Intel CEO sold shares on same day OEMs informed of bugs: report Featured

Intel reportedly warned its OEM partners about the Meltdown and Spectre processor flaws on 29 November, the same day that its chief executive, Brian Krzanich, sold a tranche of stock and options and netted a healthy profit.

The French magazine LeMagIt said it had obtained a secret memorandum sent to Intel's OEMs under an agreement that insisted on confidentiality and non-disclosure.

The memo outlined the disclosure plan: that OEMs would be told on 29 November and a public disclosure would be made on 9 January. The latter date could not be adhered to, as news of the bugs broke prior to that and forced disclosure by others on 3 January.

intel memo

It said that any communications that OEMs sent to the company should be encrypted with its public key, the location of which was provided.

The processor manufacturer has also been accused of selectively informing customers about the flaws.

krzanich vertLeMagIt said that Krzanich (right) had given instructions on 30 October for the sale of the shares and that this transaction was the subject of at least one class action in the US, led by the Boston lawyers Block & Leviton, a company that has been part of the lawsuits against Volkswagen over the emissions scandal known as dieselgate.

A Google advisory shows that the bug was found on 1 June 2017 and a proof-of-concept was created by 22 June.

The two flaws were revealed in the first week of January and affect Intel processors made since 1995.

Meltdown removes the barrier between user applications and sensitive parts of the operating system. Spectre, which is also reportedly found in some AMD and ARM processors, can trick vulnerable applications into leaking the contents of their memory.

intel memo2

LeMagIt said "surprisingly" Intel continued to market the affected processors "and will likely continue to market vulnerable processors for the next year or more. While waiting for a new generation of chips whose design will be immune to Spectrum, the plan... seems to rely on the developers of operating systems".

Patches issued by Intel for the flaws have caused problems to the extent that the company has told users to hold off on using them and to instead wait for a fresh crop of updates. Linux creator Linus Torvalds described the Intel patches as "total garbage".

When news of Krzanich's share sale first broke, the company said that the sale was not related to the two flaws, “Brian’s sale is unrelated,” Intel said. Krzanich “continues to hold shares in line with corporate guidelines".

Photo of Brian Krzanich courtesy Intel; screenshots of Intel memo courtesy LeMagIT

LEARN HOW TO REDUCE YOUR RISK OF A CYBER ATTACK

Australia is a cyber espionage hot spot.

As we automate, script and move to the cloud, more and more businesses are reliant on infrastructure that has the high potential to be exposed to risk.

It only takes one awry email to expose an accounts’ payable process, and for cyber attackers to cost a business thousands of dollars.

In the free white paper ‘6 Steps to Improve your Business Cyber Security’ you’ll learn some simple steps you should be taking to prevent devastating and malicious cyber attacks from destroying your business.

Cyber security can no longer be ignored, in this white paper you’ll learn:

· How does business security get breached?
· What can it cost to get it wrong?
· 6 actionable tips

DOWNLOAD NOW!

RECOVERING FROM RANSOMWARE

Ransomware is a type of malware that blocks access to your files and systems until you pay a ransom.

The first example of ransomware happened on September 5, 2013, when Cryptolocker was unleashed.

It quickly affected many systems with hackers requiring users to pay money for the decryption keys.

Find out how one company used backup and cloud storage software to protect their company’s PCs and recovered all of their systems after a ransomware strike.

DOWNLOAD THE REPORT!

Sam Varghese

website statistics

A professional journalist with decades of experience, Sam for nine years used DOS and then Windows, which led him to start experimenting with GNU/Linux in 1998. Since then he has written widely about the use of both free and open source software, and the people behind the code. His personal blog is titled Irregular Expression.

 

Popular News

 

Telecommunications