Modern Intel CPUs Plagued By Plundervolt Attack
The Intel attack uses a similar technique that gamers commonly use to overclock their CPUs. Continue reading Modern Intel CPUs Plagued By Plundervolt Attack
Category Archives: SPECTRE
are small SOC chips also affected by Meltdown and Spectre?
How can I find out, if given CPU is affected by the Meltdown and Spectre bugs ?
My CPU is relatively older, and it is a SOC chip:
AMD GX-412TC SOC
I was not able to find, whether these chips also use speculative execution… Continue reading are small SOC chips also affected by Meltdown and Spectre?
Linux maintainer: Patching side-channel flaws is killing performance
Mirror, mirror on the wall, which is the worst side-channel vulnerability of them all? Continue reading Linux maintainer: Patching side-channel flaws is killing performance
What kind of attacks can hardware level memory encryption protect from?
Both AMD and Intel have introduced memory encryption at the hardware level. AMD calls this Secure Memory Encryption (SME), with the Intel version being Total Memory Encryption (TME).
What kind of attacks can this technology … Continue reading What kind of attacks can hardware level memory encryption protect from?
Sacrificing 30% of my CPU performance (by disabling Hyper-Threading) to fully mitigate CPU vulnerabilities, necessary?
I used the spectre-meltdown-checker, version 0.42, without any option resulting in all-green results. But, in a help page, I found the –paranoid switch, which resulted in about a half of later CVEs to become red. I read what… Continue reading Sacrificing 30% of my CPU performance (by disabling Hyper-Threading) to fully mitigate CPU vulnerabilities, necessary?
Side-Channel Attacks: Cyber Warfare’s New Battleground
The current state of cybersecurity is complex, fast-moving and a critical risk to all organizations. Understanding where U.S. businesses stack up in terms of their security knowledge and defense strategy is of utmost importance. It’s critical that lea… Continue reading Side-Channel Attacks: Cyber Warfare’s New Battleground
This Week in Security: SWAPGS, Malicious Shaders, More iOS Woes, and WPA3
I’m sure you’ve heard of Spectre, which was the first of many speculative execution vulnerabilities found in modern processors. A new one just popped up this week. At Blackhat on Tuesday, CVE-2019-1125 was announced by Bitdefender as SWAPGS.
SWAPGS is an x86_64 instruction that is intended for use in context …read more
Continue reading This Week in Security: SWAPGS, Malicious Shaders, More iOS Woes, and WPA3
SWAPGS attack: The Spectre-like flaw affecting Intel CPUs
Security researchers at Bitdefender have discovered a way of exploiting a flaw in Intel chips that could be used to steal passwords and encryption keys.
Continue reading SWAPGS attack: The Spectre-like flaw affecting Intel CPUs
How would one compare Cache Allocating Technology against MIT’s Dynamically Allocated Way Guard for prevention of the Spectre side-channel Attack?
Upon research, I’m finding it difficult to identify a way to compare each solution. Is it correct in saying both solutions are software based? Therefore, could I compare overall PC perfomance with each software implementation… Continue reading How would one compare Cache Allocating Technology against MIT’s Dynamically Allocated Way Guard for prevention of the Spectre side-channel Attack?
Do I need microcode update if I update Kernel?
There is a CPU vulnerability Microarchitectural Fill Buffer Data Sampling.
I use a Linux OS and I think to fix Microarchitectural Fill Buffer Data Sampling you need to update intel microcode or update kernel to a fixed one h… Continue reading Do I need microcode update if I update Kernel?