// Security NEWS // Intel Victims Of New Critical Vulnerabilities In All Its Processors (+video proof)

ZombieLoad attacks allow access to data processed regardless of access privileges. And therefore to extract sensitive information.

Source
Researchers who discovered the famous Meltdown and Spectre vulnerabilities have just set the scene with "ZombieLoad", a new kind of attack on Intel processors. Similar to the Meltdown flaw, it allows a malicious process to access in real time the data processed by the physical computing core on which it is executed, regardless of privilege levels.

It can thus access data from another process or a virtual machine running on the same hardware. It can even access data from an Intel SGX secure execution area.

For example, the researchers made a video showing the malicious process of recovering navigation data in real time from a person using Tor Browser in a virtual machine.

Technically, this attack is based on a bad design in the management of data loaded in the buffer memory ("load buffer"). It can happen that a data loading causes an error and generates erroneous operations that will be cancelled later ("transient operations"). The ZombieLoad attack makes it possible to leak these provisional data.

You need to update your operating system

According to the researchers, all processors built since 2011 are affected by these vulnerabilities. For Intel, this attack results in four security vulnerabilities that require processor firmware updates to be addressed.

For the most recent models, updates are already available and will, in the clear majority of cases, be deployed by an update of the operating system. Some updates are still under development.

Finally, some older processor models will not be patched. Intel has posted on its website the list of impacted processors.

Apple, Google and Microsoft have already patches that can be installed to be secure. This obviously only applies to Intel-based devices, such as MacBooks, Chromebooks or Windows PCs.

The clear majority of connected smartphones, tablets and watches were not involved. When questioned by TechCrunch, an Intel spokesperson estimates that these patches will reduce the performance of consumer terminals by up to 3%. In data centres, this decrease could be up to 9%.

Stay Informed, Stay Safe

• I've made a lot of articles with tools, explanations and advises to show you how to protect your privacy and to secure your computer, GO check them out!

  • This is my guide To Secure your PC after a fresh installation of Windows

  • If you think that your Phone or your PC has been hacked, you have to check it right now!

  • That's how you can be more Anonymous on the internet!

  • The Future of Cyber-Security, what to expect?

  • The best Crypto debit card – Wirex!

  • These are the best VPN to protect your numeric life: NordVPN, ExpressVPN and CyberGhost!

  • Your PC is slow? That's why!

  • Why is it important to Be Discreet on the Internet

  • The 4 security measures to put in place on your WIFI router

  • The Security guide everyone must have on holidays!

  • Feel hot? Your Computer also!

  • How an Adware works?

  • That's how you should guard against Trojan!

  • Why Antiviruses are not your friend?!

  • Basics tools to protect your Privacy and your Computer

  • What are the different Types of hackers?