US Researchers Spot New Hertzbleed Flaw Affecting AMD and Intel CPUs
New side-channel attacks reportedly use frequency side channels to extract cryptographic keys
Intel Corporation designs processors and platforms whose firmware, microcode, and hardware flaws can affect system security, isolation, and data protection.
Search across headline titles and summaries.
Background for this topic.
Intel Corporation is a semiconductor designer whose processors, chipsets, firmware, and platform components underpin many servers, PCs, and embedded systems. In security news, the tag usually concerns vulnerabilities or mitigations affecting this hardware and its supporting software, rather than “intel” meaning threat intelligence.
Security impact can arise below the operating-system boundary: speculative-execution flaws may expose data through side channels, while firmware or platform-management weaknesses can enable privilege escalation or persistence in some configurations. Intel security advisories, operating-system updates, BIOS or UEFI releases, and microcode updates (small processor-control patches) therefore form a coordinated remediation chain. Administrators should inventory affected processor generations and firmware versions, apply trusted updates where applicable, and assess performance or compatibility trade-offs. Researchers and defenders may also need to distinguish hardware limitations from software bugs when investigating suspected exploitation.
New side-channel attacks reportedly use frequency side channels to extract cryptographic keys
A newly discovered security vulnerability in modern Intel and AMD processors could let remote attackers steal encryption keys via a power side channel attack
Plus: Intel, AMD react to Hertzbleed data-leaking holes in CPUs Patch Tuesday Microsoft claims to have finally fixed the Follina zero-day flaw in Windows as part of its June Patch Tuesday batch, which included security updates to address 55 vulnerabilities.…
A new side-channel attack known as Hertzbleed allows remote attackers to steal full cryptographic keys by observing variations in CPU frequency enabled by dynamic voltage and frequency scaling (DVFS). [...]
A new side-channel attack known as Hertzbleed allows remote attackers to steal full cryptographic keys by observing variations in CPU frequency enabled by dynamic voltage and frequency scaling (DVFS). [...]
Today is Microsoft's June 2022 Patch Tuesday, and with it comes fixes for 55 vulnerabilities, including fixes for the Windows MSDT 'Follina' zero-day vulnerability and new Intel MMIO flaws. [...]