Vulnerability in Intel CPUs that Could Allow an Attacker To Read Sensitive Encrypted Data

-
Intel
A team of security researchers has discovered another serious side-channel vulnerability in Intel CPUs that could allow an attacker to sniff out sensitive protected data, like passwords and cryptographic keys, from other processes running in the same CPU core with simultaneous multi-threading feature enabled.

The vulnerability, codenamed PortSmash (CVE-2018-5407), has joined the list of other dangerous side-channel vulnerabilities discovered in the past year, including Meltdown and Spectre, TLBleed, and Foreshadow.

Discovered by a team of security researchers from the Tampere University of Technology in Finland and Technical University of Havana, Cuba, the new side-channel vulnerability resides in Intel's Hyper-Threading technology, the company's implementation of Simultaneous MultiThreading (SMT). From here

Comments

Post a Comment

Popular posts from this blog

Facebook has much to cheer about. As has become increasingly clear, the public no longer seems to care about their digital privacy or security

-
Image
T his week was both fantastic and terrible for Facebook. Its latest earnings report shows the company has become an unstoppable force whose user growth and profits are immune to its never-ending parade of privacy and security breaches. Even the FCC appears willing to back down from its confrontation with the company and slap it with a fine that amounts to just a tiny fraction of its quarterly profit, making even legal violations nothing more than the cost of doing business. At the same time, Facebook confronts newly emboldened regulators around the world all clamoring for their own chance to bring the world’s most powerful gatekeeper to heel. The only problem is that Facebook may already be unstoppable. Facebook has much to cheer about. As has become increasingly clear, the public no longer seems to care about their digital privacy or security. Despite breach after breach after breach after breach, users aren’t leaving and aren’t demanding any changes to the company’s business
Read more

FreshBooks is One of the Best Cloud Software Solutions in Finance & Accounting for Small Business Owners

-
Image
FreshBooks is the current holder of FinancesOnline’s Best Accounting Software Award for 2018 and has the highest customer satisfaction rates of all similar apps in this category. As you will find out in this review, there is a long list of reasons why our experts considered FreshBooks for these prestigious acknowledgments. Freshbooks is popular among businesses for streamlining client invoicing and time tracking processes. Built with small and growing businesses in mind, the software packs a robust set of features that are offered in flexible, SMB-friendly pricing plans. In fact, freelancers who want to optimize their sales cycle and collection can easily deploy the software. This gives them the ability to customize the branding of their financial documents by modifying its design, colors, and logo to be more professional. FreshBooks is a reliable and fast accounting suite that turns otherwise complex financial management into an enjoyable experience. Creating professional-lookin
Read more

Facebook Sues New Zealand Firm For Selling Fake Likes On Instagram

-
Image
F acebook has filed a lawsuit in the US against a New Zealand-based company and three individuals that it says have been selling 'fake likes' on Instagram. Through websites such as SocialEnvy.co, IGFamous.net and Likesocial.co, says Facebook, Social Media Series Limited and its directors made more than $9.4 million by selling fake engagement to Instagram users. The three directors of the company have been named locally as Arend Alexander Hubert Nollen, Leon Francis Hedges and David James Pekka Pasanen. Facebook says it sent cease-and-desist letters to two of the company's directors in July and December last year. "We previously suspended accounts associated with the defendants and formally warned them in writing that they were in violation of our Terms of Use, however their activity persisted," says Jessica Romero, Facebook's director of platform enforcement and litigation. Read more at Forbes
Read more