Researchers warn the undead are making their way towards your customers' PCs-- or rather a set of critical vulnerabilities lurking within Intel processors allowing for the colourfully dubbed "ZombieLoad" attack.
Discovered by security researchers from Graz University of Technology, the ZombieLoad vulnerabilities affect all Intel chips dating back to 2011. The attack is similar to the Meltdown and Spectre flaws. Also known as Microarchitectural Data Sampling (MDS), ZombieLoad allows for the leaking of sensitive data, such as passwords, secret keys, account tokens and private messages, stored in a processor. It is a side-channel attack, since it allows hackers to exploit design flaws without need to inject malicious code, and consists of 4 bugs first reported to Intel just a month ago.
Continue reading...