Intel CPUs Vulnerable To New 'BranchScope' Attack (securityweek.com)

← Back to Stories (view on slashdot.org)

Intel CPUs Vulnerable To New 'BranchScope' Attack (securityweek.com)

Posted by msmash on Tuesday March 27, 2018 @10:05AM from the aftermath dept.

wiredmikey writes: Researchers have discovered a new side-channel attack method dubbed "BranchScope" that can be launched against devices with Intel processors. The attack has been identified and demonstrated by a team of researchers, and similar to Meltdown and Spectre, can be exploited by an attacker to obtain potentially sensitive information they normally would not be able to access directly. The attacker needs to have access to the targeted system and they must be able to execute arbitrary code.

Researchers believe the requirements for such an attack are realistic, making it a serious threat to modern computers, "on par with other side-channel attacks." The BranchScope attack has been demonstrated on devices with three types of Intel i5 and i7 CPUs based on Skylake, Haswell and Sandy Bridge microarchitectures. Further reading: As predicted, more branch prediction processor attacks are discovered (ArsTechnica).

6 of 102 comments (clear)

Min score:

Reason:

Sort:

Hype! Hype! Hype! by Anonymous Coward · 2018-03-27 10:17 · Score: 2, Insightful

Every vulnerability needs a HYPED UP MARKETING NAME in the TECHSOCIAL INDUSTRY!!
EVERYTHING ABOUT TECH IS SOCIAL!!!!
Nerds who built all our technology, die in a fire. We the Social don't need nerds anymore.
1. Re:Hype! Hype! Hype! by Tablizer · 2018-03-27 10:42 · Score: 5, Insightful
  
  It's not hype in the sense that our IT stacks have so many layers, parts, and levels that it's nearly impossible to keep them all safe. Plus, co's rush products in order to stay ahead of competition at the expense of security.
  Thus, they are indeed a steaming pile of leaks what should worry people. However, I will agree that focusing on specific problems may be a form of hype because for every 1 you hear about, there's probably dozens (already publicized) that you don't.
  If people keep finding enough of these vulnerabilities, the patches will make the CPU run as slow as a Commodore 64. Maybe we should go back to '64s, eh? I got used to ASCII pr0n anyhow; I have a thing asterisks.
  
  --
  Table-ized A.I.
Re:TL;DR by Anonymous Coward · 2018-03-27 10:51 · Score: 4, Insightful

Non-news? Really? You can execute arbitrary code in virtual machines which could allow an attacker to access other running virtual machines or the host itself. This attack surface is absolutely HUGE! All an attacker has to due is get for example an Amazon Web Service instance and then be able to attack anything else running on that host. MASSIVE portions of the Internet run on services like AWS, VPS systems, etc.
Your browser can also present a target due to running Javascript or similar.
Re:Media Bias is finally slowing down by HiThere · 2018-03-27 11:21 · Score: 3, Insightful

Well, to be fair a lot of the hype about the AMD problem was because it was presented in a way that made it look as if Intel sponsored the release of information. I'm still not sure that isn't true.

--

I think we've pushed this "anyone can grow up to be president" thing too far.
Re:Yawn by Mal-2 · 2018-03-27 11:22 · Score: 3, Insightful

It's not trivial if it spans VMs, and one client of a hosting service can eavesdrop on another via this side channel. That has been the fear with Spectre and Meltdown, and it is most likely the fear here as well.

--
How is the Riemann zeta function like Trump rallies? Both have an endless number of trivial zeros.
Re:Yawn by Anonymous Coward · 2018-03-27 15:07 · Score: 2, Insightful

can be exploited by an attacker to obtain potentially sensitive information
In other words, there is a one in a billion chance that an attacker would obtain something of importance.
Yes, and when you have the computing power at your disposal to make billions of attempts per second it doesn't really take long at all.