![]() ![]() Researchers were able to inject new predictions, tricking the processor into believing the predictions were instructions it had seen before, which allowed the researchers to bypass security checks that earlier ensured only trustworthy predictions would be processed. Computer processors use branch prediction to speed up calls to memory, which are relatively slow. To exploit the flaw, the researchers chained an older AMD vulnerability called Phantom Speculation that causes AMD processors to make a wrong branch predictor - that is, to force the computer to make an incorrect guess about the next instruction to execute. "Our results show that we are able to successfully leak the root password hash in all 10 runs, in a median of 11 minutes and 38 seconds," the report says. When exploited, the flaw allows attackers to inject code that will make the targeted devices misinterpret data, causing data leaks from the processor, a new paper from security researchers at Swiss university ETH Zürich finds. The researchers named the flaw after the 2010 movie of the same name, since both the hacking technique and the film's plot involve planting false ideas into memory. The flaw, tracked as CVE-2023-20569, and dubbed "Inception," affects all versions of AMD Zen computer processing unit. See Also: Live Webinar | Unmasking Pegasus: Understand the Threat & Strengthen Your Digital Defense Security researchers uncovered a vulnerability in Advanced Micro Devices chips that could allow hackers to trick a computer system into leaking data from its kernel.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |