#spectre

[ follow ]
#transient-execution #intel #cybersecurity #l1tf #cloud-security #vm-memory-leakage #vmscape
fromSecurityWeek
1 week ago

Researchers Earn $150,000 for L1TF Exploit Leaking Data From Public Cloud

Academic researchers from Vrije Universiteit Amsterdam have demonstrated that transient execution CPU vulnerabilities are practical to exploit in real-world scenarios to leak memory from VMs running on public cloud services. The research shows that L1TF (L1 Terminal Fault), also known as Foreshadow, a bug in Intel processors reported in January 2018, and half-Spectre, gadgets believed unexploitable on new-generation CPUs, as they cannot directly leak secret data, can be used together to leak data from the public cloud.
Information security
Information security
fromTheregister
2 weeks ago

VMSCAPE Spectre vulnerability leaks cloud secrets

A new Spectre-based transient execution vulnerability, VMSCAPE (CVE-2025-40300), enables guest VMs to leak hypervisor memory across virtualization boundaries on affected CPUs.
fromArs Technica
3 months ago

Ubuntu disables Intel GPU security mitigations, promises 20% performance boost

"After discussion between Intel and Canonical's security teams, we are in agreement that Spectre no longer needs to be mitigated for the Ubuntu users on Intel systems."
Privacy technologies
Information security
fromThe Hacker News
4 months ago

Researchers Expose New Intel CPU Flaws Enabling Memory Leaks and Spectre v2 Attacks

A new security flaw in Intel CPUs allows unauthorized access to sensitive data, showing Spectre's continued influence on security.
Cars
fromElite Traveler
4 months ago

Driving the New Rolls-Royce Black Badge Spectre

The Black Badge Spectre is a bolder and more powerful rendition of the original Spectre, ideal for those seeking an intense driving experience.
fromTechzine Global
4 months ago

Intel's Spectre defense against data leaks fails again

Researchers have identified a critical new flaw in Intel's processors called Branch Predictor Race Conditions (BPRC), which could further exploit existing Spectre vulnerabilities.
Information security
Tech industry
fromTheregister
4 months ago

Intel data-leaking Spectre defenses scared off once again

ETH Zurich researchers developed a method to bypass Intel's protections against Spectre vulnerabilities, highlighting ongoing security concerns.
[ Load more ]