"When was the last time you saw a security advisory that was basically 'if you replace the BIOS or the CPU microcode with an evil version, you might have a security problem?' Yeah."

http://www.zdnet.com/article/linus-torvalds-slams-cts-labs-over-amd-vulnerability-report/