TPM-Fail: What It Means. What to Do About It.

On November 12, 2019 researchers led by a team at Worcester Polytechnic Institute, disclosed details of two new potentially serious security vulnerabilities — dubbed TPM-Fail — that could allow attackers to steal cryptographic keys protected inside two types of Trusted Platform Modules (TPMs). Because millions of deployed systems probably have the TPM-Fail vulnerability, the scope of exposure is wide.