AMD CEO, Dr. Lisa Su, has confirmed the company is working closely with Microsoft on the future of cloud computing. Given AMD’s ongoing hardware partnership on the Xbox side of the business that does lend more credence to the rumors that the next-gen Microsoft machine could get a Scarlett Cloud version. Back in July, it was rumored the next-gen Xbox console was going to come in two flavors, one standard hardware box for local gaming and another, a more lightweight machine designed for cloud-based gaming. It would reportedly be a low-power device, with a moderate amount of computing power baked into it do deal with specific game-centric tasks like controller input, image processing, and collision detection, with the heavy rendering done in the cloud. Dr. Su was talking with Jim Cramer, of CNBC’s Mad Money, and was responding to his question about AMD’s relationship with Microsoft, suggesting it was no longer a case of Wintel and more WinAMD. Though, to be fair, that really doesn’t trip off the tongue anywhere near as well. “We’re partnered with them in game consoles,” says Dr. Su, “I think we have a vision of where cloud computing is going and we’re working closely with them.” The earlier console rumors surfaced on Thurrott back in July, after Microsoft mentioned it was at work on its next generation of a games console. The CNBC interview could well hint that AMD has been working with Microsoft to create the hardware which enables parts of a game to be computed locally on the low-power device while the heavy lifting is done in Microsoft’s cloud. We have posted further details on OUR FORUM.

An exploit for a vulnerability in Tor Browser was delivered today in a tweet that left sufficient room for comments. A security vulnerabilities broker disclosed the details because it no longer served its purpose. The exploit was part of Zerodium's portfolio and worked for Tor Browser 7.x. It existed in the NoScript component, which is a browser add-on that stops web pages from executing JavaScript, Flash, Java or Silverlight. An exploit that one can only assume Zerodium paid good money for, is just a matter of setting the Content-Type of the attacker's HTML/JS page, or a hidden service in the Tor network, to "text/html/json," to suppress any reaction from NoScript and permit all JavaScript code through. The bug worked when the user configured NoScript to block out all JavaScript by selecting the add-on's "Safest" security level. The recently released Tor Browser 8 is based on the new Firefox Quantum engine and did not inherit the flaw; neither is the latest NoScript version, which was re-written as a web extension. Zerodium burning this exploit was also prompted by the fact that Tor Browser, like all modern browsers, comes with an auto-update mechanism, which is enabled by default. This makes sure that users are not affected in any way by exploits that have already been addressed. One can disable this feature from the 'app.update' parameter in the 'about:config' menu. While some users prefer to deploy updates manually for sensitive software such as Tor Browser, the mechanism proves beneficial in such instances. There's more on OUR FORUM.