Chrome OS Gets an Optional TPM Security Update That Requires a Powerwash
There is a new, optional security update for Chrome OS that fixes a vulnerability with the Trusted Platform Module (TPM) in the majority of Chromebooks. To apply the update however, you will need to Powerwash your device.
The vulnerability has to do with hackers potentially being able to brute force the RSA keys generated by your TPM. This, in theory, could give the the opportunity to plant malicious code on your device or take it over. For those not familiar, a Trusted Platform Module (TPM) is a specialized chip on an endpoint device that stores RSA encryption keys specific to the host system for hardware authentication. It essentially makes sure that the hardware and software on your device are secure and encrypted and what has access to the keys generated by it. Thus, you see the problem. If the TPM gets compromised, it can lead to a lot of issues for end users.