The original flaw, found back in May, called Zombieload, is “a speculative execution side-channel attack that may allow malicious actors to locally execute code to extract sensitive data that would otherwise be protected by Intel processors’ architectural mechanisms.” Initially, it was thought this flaw only affects CPUs from 2011 to 2018, as per Intel’s statement. As part of Intel’s November IPU, the company revealed TAA, a vulnerability that gives attackers another way to access data stored in the processor.
Read full article on KitGuru