March 25, 2024 at 05:39AM A new security loophole in Apple M-series chips, called GoFetch, enables extraction of secret keys during cryptographic operations. Exploiting the Data Memory-Dependent Prefetcher (DMP), it targets constant-time cryptographic implementations to access sensitive data. This flaw can’t be fixed in existing Apple CPUs, posing a significant risk and requiring developers to … Read more
March 22, 2024 at 11:07AM The “GoFetch” attack targets modern Apple M-series CPUs’ constant-time cryptographic implementations, allowing it to steal secret cryptographic keys from the CPU’s cache. The attack, developed by researchers in the U.S., cannot be fixed in affected CPUs. Mitigating it with software patches would reduce cryptographic performance. Apple owners should practice safe … Read more
March 22, 2024 at 07:54AM A team of US researchers revealed a new side-channel attack named GoFetch, targeting Apple CPUs to extract secret encryption keys. By exploiting a hardware optimization, they inferred keys through specially crafted inputs and demonstrated successful attacks on various cryptographic implementations. The findings were reported to Apple and other developers for … Read more