Businessweek
Security

How Short Sellers Built a Business on Security Bugs

Is it ethical for a security firm to give traders a first look at their research?
Illustration: Jack Sachs for Bloomberg Businessweek
Contact us:
Provide news feedback or report an error
Confidential tip?
Send a tip to our reporters
Site feedback:
Take our SurveyNew Window
By
Lock
This article is for subscribers only.
This article is part of the April 30, 2018 issue of businessweek.
Chevron Right

The message came on the morning of March 12 like a warning shot—or, as executives at Advanced Micro Devices Inc. might have seen it, a sucker punch.

In an email sent to the general security inbox maintained by the Santa Clara, Calif., chipmaker, an executive of a security company located on the other side of the world claimed to have discovered 13 critical vulnerabilities in AMD’s line of chips. The alleged flaws, which the sender described in detail, could allow an attacker to get into the most secure part of AMD’s chips, where passwords and other sensitive information are typically stored. Any network with the faulty AMD processors, the researcher claimed, would be in serious danger.

HomeBTV+Market DataOpinionAudioOriginalsMagazineEvents
News
MarketsEconomicsTechnologyPoliticsGreenCryptoAI
Work & Life
WealthPursuitsBusinessweekCityLabSportsEqualityManagement & Work
Market Data
StocksCommoditiesRates & BondsCurrenciesFuturesSectorsEconomic Calendar
Explore
NewslettersExplainersPointed News QuizAlphadots GameThe Big TakeGraphicsSubmit a TipAbout Us
Terms of ServiceTrademarksPrivacy Policy
CareersAdvertise
Ad Choices
Help©2026 Bloomberg L.P. All Rights Reserved.