Saturday, January 28, 2023
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory
  • Login
  • Register
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
No Result
View All Result
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
No Result
View All Result
Cloud7 News
No Result
View All Result

Home > Cybersecurity > Intel and AMD CPUs can be attacked by an interesting technique

Intel and AMD CPUs can be attacked by an interesting technique

Researchers have found a way to exploit CPUs by measuring their power consumption in real-time.


Rusen Gobel Rusen Gobel
June 17, 2022
2 min read
Intel and AMD CPUs can be attacked by an interesting technique

Hardware-based vulnerabilities are often impossible to fix; the mitigations via software patches generally affect the performance of the hardware. Intel users have suffered from some issues with Spectre and Meltdown issues, and with their mitigations. Now, there seems to be a new security flaw affecting both Intel and AMD CPUs in all categories.

Voltage + frequency = bingo?

Security researchers have been investigating the possibility of extracting cryptographic data from a target CPU just by measuring the power consumption while it’s processing data. While those attempts did not lead anywhere, yet, the researchers have discovered another way to abuse the CPU’s power consumption data. According to the researchers, it is possible to track the time that server spends responding to specific queries by monitoring dynamic voltage and frequency scaling data. This flaw, which is named Hertzbleed, can be tracked as CVE-2022-24436 for Intel CPUs and CVE-2022-23823 for AMD ones. It affects the 8th – 11th generations of Intel Core, Xeon, and AMD Ryzen CPUs.

While Hertzbleed has two CVEs for two CPU brands, it is not a real threat in almost any cases. The data processing on CPUs can lead to many, many different possibilities, and processes run so fast, that it is practically impossible to extract any data by abusing voltage and frequency scaling data other than the CPU’s performance. Intel states that while this issue is interesting from a research perspective, they don’t believe that it will work outside a lab environment. Neither of the CPU companies will update their chips against this technique.

See more Cybersecurity News


Tags: Advanced Micro Devices (AMD)Intel
Rusen Gobel

Rusen Gobel

Rusen Gobel is a news editor at Cloud7 News. With more than 10 years of experience, Rusen worked as a hardware and software news editor for technology sites such as Shiftdelete, Teknokolis, Hardware Plus, BT Haber. In addition, Rusen publishes consumer product reviews on his YouTube channel. While consumer electronics has been his main focus for years, now Rusen is more interested in WordPress and software development. He had contributed different web application projects in his professional career. Rusen had graduated from Istanbul University, department of Computer Engineering. Rusen has a very high passion for learning and writing for every kind of technology. That's why he has been working as a tech editor for more than ten years on several different technology magazines and online news portals.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

I agree to the Terms & Conditions and Privacy Policy.

Next Post
WordPress plugin Ninja Forms is critically vulnerable

WordPress plugin Ninja Forms is critically vulnerable

Related News

Thoma Bravo to acquire Magnet Forensics

Thoma Bravo to acquire Magnet Forensics

January 26, 2023 1:10 pm
LastPass faces yet another security incident

LastPass publishes an update on the November 2022 security incident

January 25, 2023 6:35 pm
VMware vRealize updates addressing security flaws

VMware fixes critical vRealize Log Insight security flaws

January 25, 2023 3:30 pm
Riot Games faces security breach

Riot Games faces a security breach

January 25, 2023 2:15 pm
Get free daily newsletters from Cloud7 News Get the Cloud7 Newsletter
Select list(s):

Check your inbox or spam folder to confirm your subscription.

By subscribing, you agree to our
Copyright Policy and Privacy Policy

Get the free newsletter

Subscribe to receive the latest IT business updates straight to your inbox.

Select list(s):

Check your inbox or spam folder to confirm your subscription.

Editor's Choice

What’s new in Linux kernel 6.2 rc5?

10 Best Web Hosting Services of 2023

Ubuntu 22.04 LTS is available for download. What is new?

CERN and Fermilab recommend AlmaLinux

7 best hosting control panels of 2023

How to update Linux Kernel without rebooting?

7 best Linux mail servers of 2023

7 best cPanel alternatives for 2023

7 best Linux web browsers for 2023

7 best CentOS alternatives

7 best Linux server distros of 2023

Interview with Igor Seletskiy on AlmaLinux

How to create a VM and install a Linux distro on VMware Workstation

Recent News

  • Cloud7 Expert Series: Emre Baran from Cerbos
  • How to connect to the local network on a virtual machine
  • [Event] PlatformCon 2023
  • GNOME 44 Alpha is out now
  • [Event] GUADEC 2023 Conference

Cloud7 News
Cloud7 is a news source that publishes the latest news, reviews, comparisons, opinions, and exclusive interviews to help tech users of high-experience levels in the IT industry.

EXPLORE

  • Web Hosting
  • Cloud Computing
  • Data Center
  • Cybersecurity
  • Linux
  • Network/Internet
  • Software
  • Hardware
  • How-Tos
  • Troubleshooting

RESOURCES

  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

Get the Cloud7 Newsletter

Get FREE daily newsletters from Cloud7 delivering the latest news and reviews.

  • About
  • Privacy & Policy
  • Copyright Policy
  • Contact

© 2022, Cloud7 News. All rights reserved.

No Result
View All Result
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

© 2022, Cloud7 News. All rights reserved.

Welcome Back!

Sign In with Facebook
Sign In with Google
Sign In with Linked In
OR

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Sign Up with Facebook
Sign Up with Google
Sign Up with Linked In
OR

Fill the forms below to register

*By registering into our website, you agree to the Terms & Conditions and Privacy Policy.
All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.