speculative execution Archives

Offer Shlomi a/k/a Vince Offer, the Slap Chop guy

SLAP/FLOP: Apple Silicon’s ‘Son of Spectre’ Critical Flaws

Richi Jennings | January 29, 2025 | Apple, apple bug, Apple Data Security, Apple Silicon, ARM, Arm CPU Attack, arm64, Daniel Genkin, FLOP, iPad, iPhone, Jalen Chuang, Jason Kim, Mac, SB Blogwatch, Side-Channel, side-channel attack, side-channel attacks, SLAP, Spectre, Spectre attack, Spectre variant, speculative execution, Yuval Yarom

Watch this: Want more “speculative execution” bugs? You’re gonna be in a great mood all day ...

Security Boulevard

A closeup of an iPhone, lying screen down on a table

#iLeakage: All Apple CPUs Vulnerable — No Patch in Sight

Richi Jennings | October 26, 2023 | Apple Safari, ARM, Daniel Genkin, iLeakage, ios, macos, mobile safari, Safari, SB Blogwatch, Spectre, speculative execution, Webkit, WebKit engine

Son of Spectre: No fix for iOS, “unstable” workaround for macOS ...

Security Boulevard

Apple M1 Flaw Can’t be Fixed — PACMAN Panic

Richi Jennings | June 13, 2022 | Apple, ARM, M1, PACMAN, SB Blogwatch, speculative execution, Yo dawg we heard you had a vulnerability mitigator so we designed a vulnerability to mitigate your vulnerability mitigator

Apple’s M1 chip isn’t as safe from buffer overflows as previously thought. M1 and other designs based on ARMv8.3 can have their ‘PAC’ protection neutered ...

Security Boulevard

Specter of Spectre is Back, in New Micro-Op Cache Vuln

Richi Jennings | May 3, 2021 | AMD, CPU microcode, Intel, SB Blogwatch, Spectre, speculative execution

It’s been three years, but now researchers have disclosed new attacks on speculative execution in Intel and AMD chips ...

Security Boulevard

BlindSide: Intel/AMD Speculation Bugs Under Microscope Again

Richi Jennings | September 15, 2020 | AMD, ASLR, BlindSide, cpu, Intel, SB Blogwatch, Spectre, speculative execution

Researchers have published frightening details on what they’re calling BlindSide, which relies on co-opting our old friend speculative execution ...

Security Boulevard

Can Applications Withstand the ZombieLoad Attack?

Bill Horne | November 27, 2019 | Application Security, Intel processors, Malware, speculative execution, ZombieLoad

As if Meltdown, Spectre and Foreshadow were not enough, recently a new critical vulnerability called ZombieLoad has been discovered that affects a series of modern Intel processors. This vulnerability enables a potential ...

Security Boulevard

Security Boulevard’s 5 Most Read Stories for the Week, August 13-17

Saleem Padani | August 20, 2018 | android malware, attorneys, consumer data, dynamic loading, fax protocol, Faxploit, Foreshadow, HIPAA, memory leak, multifunction printer, privacy rules, regulations, speculative execution, user privacy, Vulnerabilities

A new week, a new crop of security stories. Last week, lack of user privacy, man-in-the-attack, dumb privacy rules and Intel CPUs vulnerabilities made the headlines. In addition, we discussed how to get ...

Security Boulevard

dark web, AI, AI threats, social security, exposed, internet, sextortion, dark web, attacks, threats, darktrace energy dark web intelligence Dark Side Quantum Computing

New Foreshadow Vulnerabilities Defeat Memory Defenses on Intel CPUs

Lucian Constantin | August 16, 2018 | CVE-2018-3615, CVE-2018-3620, CVE-2018-3646, Foreshadow, memory leak, speculative execution

Security researchers have uncovered a new way to exploit the speculative execution feature of Intel CPUs to bypass memory security barriers and leak protected information. The vulnerability, known as Foreshadow or L1 ...

Security Boulevard

Infoblox certificates Datadog Web3 DNSSEC OPSWAT web application security

CPU Speculative Execution Hits Again with 2 New Spectre Variants

Lucian Constantin | July 13, 2018 | CVE-2018-3693, Google Chrome, Spectre mitigation, Spectre variant, speculative execution

At the beginning of this year, the Spectre and Meltdown vulnerabilities shined a spotlight on the security risks associated with the speculative execution feature of modern CPUs. Since then, researchers have kept ...

Security Boulevard

Intel Releases Microcode Spectre Patches

Intel Faces Yet Another Speculative Execution Flaw in Its CPUs

Lucian Constantin | June 14, 2018 | Meltdown, Spectre, speculative execution

As predicted by security researchers, the Meltdown and Spectre vulnerabilities announced this year were just the tip of the iceberg when it comes to security issues related to the speculative execution feature ...

Security Boulevard