Weird no one on TPU has mentioned: A new vulnerability in Intel and AMD CPUs lets hackers steal encryption keys Hertzbleed attack targets power-conservation feature found on virtually all modern CPUs. arstechnica.com Retbleed: Arbitrary Speculative Code Execution with Return Instructions - Computer Security Group Retbleed (CVE-2022-29900 and CVE-2022-29901) is the new addition to the family of speculative execution attacks that exploit branch target injection to leak information, which we call Spectre-BTI. Unlike its siblings, who trigger harmful branch target speculation by exploiting indirect jumps or... comsec.ethz.ch From the paper: Affected machines We have verified that Retbleed works on AMD Zen 1, Zen 1+, Zen 2 and Intel Core generation 6–8. Mitigations Kernel and hypervisor... Click to expand... Read more Weiterlesen...
