PC troubles Win10

[icecream-guy]

when I insert USB drive into my PC, sometimes it is not recognized, when I go to reboot computer to see if that helps I get BSOD "Inaccessible boot device"
and PC doesn't boot anymore.  keeps happening more and more frequently.  happened last week, yesterday, and now again today.  End up having to a system restore to get the PC to boot again,   runs fine when usb devices are not recognized, other than the USB drive is not accessible.  usually only happens when or I seem to recognize this problem when I try to connect a USB device. Any ideas?

[icecream-guy]

https://support.microsoft.com/en-us/help/4073707/windows-os-security-update-block-for-some-amd-based-devices

note
Microsoft has reports of some customers with AMD devices getting into an unbootable state after installing this KB.
To prevent this issue, Microsoft will temporarily pause Windows OS updates to devices with impacted AMD processors at this time.


This issue is resolved in KB4073290.  which does not exist,  trying to uninstall KB4056892.

[deanwebb]

Is this one of those AMD boxes?

[SimonV]

Windows 10 automatically updates device drivers, and it's a real PITA to stop it.

[icecream-guy]

Is this one of those AMD boxes?

yup AMD box.

Still trying to figure out how to stop the install of KB4056892.
I found a MS util to hide driver updates from windows, but it didn't seem to work.
Microsoft says that they are blocking that KB  from deployment, I have not followed up on that.
I did a system restore back to a time before the patch was installed, before I went to sleep.
will check on it after work today.

[icecream-guy]

I think the fix is here, haven't tried it.  got link from MS answers forum

https://support.microsoft.com/en-us/help/4073290/unbootable-state-for-amd-devices-in-windows-10-version-1709

[icecream-guy]

I think the fix is here, haven't tried it.  got link from MS answers forum

https://support.microsoft.com/en-us/help/4073290/unbootable-state-for-amd-devices-in-windows-10-version-1709

I installed the patch yesterday morning,  no issues seen yet.

[deanwebb]

Thing is, these vulnerabilities are for multi-tenant systems. Exploiting on a single-user system would be like gaining access to your head so you could read your own thoughts. On multi-tenant systems, it's like being able to gain access to a switchboard so as to be able to listen in on all the phone calls. That's where you want to get in with this.

So, for IC systems, no big deal. Industrial controls tend to not be multi-tenant systems. If an attacker has physical access to exploit this vulnerability, he's got sufficient access to do far worse with far less effort.

[icecream-guy]

Thing is, these vulnerabilities are for multi-tenant systems. Exploiting on a single-user system would be like gaining access to your head so you could read your own thoughts. On multi-tenant systems, it's like being able to gain access to a switchboard so as to be able to listen in on all the phone calls. That's where you want to get in with this.

So, for IC systems, no big deal. Industrial controls tend to not be multi-tenant systems. If an attacker has physical access to exploit this vulnerability, he's got sufficient access to do far worse with far less effort.

I been wondering that with the Spectre and meltdown vulnerabilities, why they are making such a big deal out of home systems. sure in some capacity, someone _could_ get a username/password, or a bank account number, but no such greater risk than someone getting that info by other (easier) means.

[deanwebb]

Yeah, I'm not worried about it. And if my virtual host is compromised, oooooh, you just got access to my daughter's Minecraft server! Not really an "exposed credit card info" type of situation.