July 3, 2024 at 10:33AM Researchers at UCSD have developed a new method, called “Indirector,” to execute Spectre-like side channel attacks on high-end Intel CPUs. This technique exploits the speculative execution feature to redirect a program’s control flow, potentially leaking sensitive data. The attack works on various generations of Intel CPUs and poses challenges for … Read more
May 8, 2024 at 11:07AM Researchers discovered two new attack methods targeting high-performance Intel CPUs, collectively called Pathfinder. These attacks exploit the branch predictor to manipulate program control flow and execute Spectre-style attacks, potentially exposing confidential data, including AES encryption keys and secret images. Intel stated that existing mitigations for Spectre v1 help protect against … Read more
March 15, 2024 at 02:03PM A group of researchers has discovered a new data leakage attack called GhostRace (CVE-2024-2193), a variation of the spectre v1 vulnerability, impacting modern CPU architectures. This exploit allows unauthenticated attackers to extract sensitive data from the processor by accessing speculative executable code paths. Both AMD and Xen have provided solutions … Read more