foreshadow – WindowsTechs.com

SIM Swapper Abducted, Beaten, Held for $200k Ransom

Posted on September 21, 2022 by BrianKrebs

A Florida teenager who served as a lackey for a cybercriminal group that specializes in cryptocurrency thefts was beaten and kidnapped last week by a rival cybercrime gang. The teen’s captives held guns to his head while forcing him to record a video message pleading with his crew to fork over a $200,000 ransom in exchange for his life. The youth is now reportedly cooperating with U.S. federal investigators, who are responding to an alarming number of reports of physical violence tied to certain online crime communities. Continue reading SIM Swapper Abducted, Beaten, Held for $200k Ransom→

RSAC 2019: Picking Apart the Foreshadow Attack

Posted on March 5, 2019 by Lindsey O'Donnell

Raoul Strackx, one of the researchers who discovered the Foreshadow speculative execution vulnerability, talks at RSA about the Catch-22 issue when it comes to fixing speculative execution flaws. Continue reading RSAC 2019: Picking Apart the Foreshadow Attack→

What is Foreshadow, and How Can You Overcome this Vulnerability?

Posted on August 29, 2018 by cspi

What is Foreshadow, and How Can You Overcome this Vulnerability? Earlier this month it was revealed that another vulnerability – the fourth – was discovered in Intel’s x86 chip architecture. Researchers in Belgium originally alerted I… Continue reading What is Foreshadow, and How Can You Overcome this Vulnerability?→

Microsoft Pushes Microcode Updates for Foreshadow CPU Flaws

Posted on August 24, 2018 by Lucian Constantin

Microsoft has released patches for Windows 10 and Windows Server 2016 that update the microcode for some Intel microprocessors to address CPU vulnerabilities, including the recently announced Foreshadow flaws. Foreshadow, or L1 Terminal Fault (L1TF), … Continue reading Microsoft Pushes Microcode Updates for Foreshadow CPU Flaws→

Security Boulevard’s 5 Most Read Stories for the Week, August 13-17

Posted on August 20, 2018 by Saleem Padani

A new week, a new crop of security stories. Last week, lack of user privacy, man-in-the-attack, dumb privacy rules and Intel CPUs vulnerabilities made the headlines. In addition, we discussed how to get smarter about securing smart technologies. Be su… Continue reading Security Boulevard’s 5 Most Read Stories for the Week, August 13-17→

How to Stop an Intel Foreshadow Bug Exploit Attack

Posted on August 17, 2018 by Vencislav Krustev

Several execution vulnerabilities has been detected to affect Intel Processors. The vulnerabilities which were detected so far have been reported to be an execution type of flaws and were quickly named Foreshadow. The vulnerabiltities aim to gain contr… Continue reading How to Stop an Intel Foreshadow Bug Exploit Attack→

‘Foreshadow’ flaw found in Intel CPUs – what to do

Posted on August 17, 2018 by John E Dunn

For Intel and more than a billion computers with Intel CPUs, the microprocessor flaws just keep coming. Continue reading ‘Foreshadow’ flaw found in Intel CPUs – what to do→

New Foreshadow Vulnerabilities Defeat Memory Defenses on Intel CPUs

Posted on August 16, 2018 by Lucian Constantin

Security researchers have uncovered a new way to exploit the speculative execution feature of Intel CPUs to bypass memory security barriers and leak protected information. The vulnerability, known as Foreshadow or L1 Terminal Fault (L1TF), has three v… Continue reading New Foreshadow Vulnerabilities Defeat Memory Defenses on Intel CPUs→

VU#982149: Intel processors are vulnerable to a speculative execution side-channel attack called L1 Terminal Fault (L1TF)

Posted on August 15, 2018 by CERT

Intel processors are vulnerable to one or more L1 data cache information disclosure and terminal fault attacks via a speculative execution side channel. These attacks are known as L1 Terminal Fault:SGX,L1 Terminal Fault:OS/SMM,and L1 Terminal Fault:VMM. Continue reading VU#982149: Intel processors are vulnerable to a speculative execution side-channel attack called L1 Terminal Fault (L1TF)→

Foreshadow: The Sky Is Falling Again for Intel Chips

Posted on August 14, 2018 by Brian Benchoff

It’s been at least a month or two since the last vulnerability in Intel CPUs was released, but this time it’s serious. Foreshadow is the latest speculative execution attack that allows balaclava-wearing hackers to steal your sensitive information. You know it’s a real 0-day because it already has a domain, a logo, and this time, there’s a video explaining in simple terms anyone can understand why the sky is falling. The video uses ukuleles in the sound track, meaning it’s very well produced.

The Foreshadow attack relies on Intel’s Software Guard Extension (SGX) instructions that allow user code to allocate …read more

Continue reading Foreshadow: The Sky Is Falling Again for Intel Chips→