Collaborate Disseminate
A team of cybersecurity researchers demonstrated a novel yet another technique to hijack Intel SGX, a hardware-isolated trusted space on modern Intel CPUs that encrypts extremely sensitive data to shield it from attackers even when a system gets compro… Continue reading New PlunderVolt Attack Targets Intel SGX Enclaves by Tweaking CPU Voltage
Zombieload is back.
This time a new variant (v2) of the data-leaking side-channel vulnerability also affects the most recent Intel CPUs, including the latest Cascade Lake, which are otherwise resistant against attacks like Meltdown, Foreshadow and oth… Continue reading New ZombieLoad v2 Attack Affects Intel’s Latest Cascade Lake CPUs
Unlike previous side-channel vulnerabilities disclosed in Intel CPUs, researchers have discovered a new flaw that can be exploited remotely over the network without requiring an attacker to have physical access or any malware installed on a targeted co… Continue reading NetCAT: New Attack Lets Hackers Remotely Steal Data From Intel CPUs
A new variant of the Spectre (Variant 1) side-channel vulnerability has been discovered that affects all modern Intel CPUs, and probably some AMD processors as well, which leverage speculative execution for high performance, Microsoft and Red Hat warne… Continue reading SWAPGS Attack — New Speculative Execution Flaw Affects All Modern Intel CPUs
Academic researchers today disclosed details of the newest class of speculative execution side-channel vulnerabilities in Intel processors that impacts all modern chips, including the chips used in Apple devices.
After the discovery of Spectre and Mel… Continue reading New Class of CPU Flaws Affect Almost Every Intel Processor Since 2011
Cybersecurity researchers have discovered a way to hide malicious code in Intel SGX enclaves, a hardware-based memory encryption feature in modern processors that isolates sensitive code and data to protect it from disclosure or modification.
In other… Continue reading Researchers Implant “Protected” Malware On Intel SGX Enclaves
A team of security researchers has discovered another serious side-channel vulnerability in Intel CPUs that could allow an attacker to sniff out sensitive protected data, like passwords and cryptographic keys, from other processes running in the same C… Continue reading New Intel CPU Flaw Exploits Hyper-Threading to Steal Encrypted Data
2018 has been quite a tough year for Intel.
While the chip-maker giant is still dealing with Meltdown and Spectre processor vulnerabilities, yet another major speculative execution flaw has been revealed in Intel’s Core and Xeon lines of processors th… Continue reading Foreshadow Attacks — 3 New Intel CPU Side-Channel Flaws Discovered
Intel has paid out a $100,000 bug bounty for new processor vulnerabilities that are related to Spectre variant one (CVE-2017-5753).
The new Spectre-class variants are tracked as Spectre 1.1 (CVE-2018-3693) and Spectre 1.2, of which Spectre 1.1 describ… Continue reading Two New Spectre-Class CPU Flaws Discovered—Intel Pays $100K Bounty
Security-oriented BSD operating system OpenBSD has decided to disable support for Intel’s hyper-threading performance-boosting feature, citing security concerns over Spectre-style timing attacks.
Introduced in 2002, Hyper-threading is Intel’s implemen… Continue reading OpenBSD Disables Intel Hyper-Threading to Prevent Spectre-Class Attacks