A new vulnerability in Intel chips now allow attackers to take control of your system

According to recent sources, two new security vulnerabilities have been discovered in Intel’s CPUs. These vulnerabilities will essentially let the attacker take control of the device. According to security experts, the flaw is present in all present Intel processors, with a notebook and mobile chips being the most vulnerable. Oh, boy time to head to AMD boys.

Reports indicate that all Intel CPUs have two undocumented instructions that allow you to modify the microcode and gain control over the processor and eventually the device.

The instructions are kept as a fail-safe, but they work in favor of the attacker. From what we know, all Atom-based CPUs have these two instructions, with certain hints indicating that they could be supported by all modern Intel processors.

So, any hacker with the necessary info can use these instructions to hijack a system, with the results varying from a simple system crash (shutdown) to flashing the processor with a few bits of microcode that can be used to perform a certain task (Scary).

To add to the troubles, the system experts also believe that these instructions can also be activated remotely, however, they require a special mode of operation. These instructions are likely meant for Intel engineers for debugging purposes.

Intel has justified it by stating that the instructions help their engineers to repair and debug the system in extreme cases. But the idea of knowing that our system can be easily taken over by just using two instructions gives me Goosebumps.

However, it has been brought to notice that the instructions can only be run in “Red Unlock Mode” which itself is quite hard to enable. According to sources, in the older Intel systems (before Ice Lake), “Red Unlock Mode” can be enabled through known side-channel vulnerabilities.

Since the new system is quite immune to the vulnerability, it makes the hack quite hard to accomplish in the real world. And also, only someone with extensive knowledge of the process architecture and design can carry out such an attack which is why this isn’t a well-known vulnerability.

Source

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.

More like this

The Best App Lockers for Android You Should Know...

Best App Lockers for Android: The Ultimate Guide In the realm of technology, app lockers play a crucial...
SentinelOne cybersecurity

Empowering India’s Cyber Defenses: SentinelOne Cybersecurity Launches Virtual Data...

In an exciting development for India's cybersecurity landscape, SentinelOne Cybersecurity, a global leader in autonomous cybersecurity, has...

AMD Ryzen Master vulnerability allows attackers to take control...

AMD disclosed a new vulnerability, rated 7.2 which is high, in its popular Ryzen Master software utility,...

Cybersecurity: Data of about 6 lakh Indians is reportedly...

As data-harvesting malware or bots proliferate, the data of at least 6 lakh Indians has been stolen...
Cybersecure

Better ‘Cybersecure’ than Sorry

Mr Harsh Bharwani, CEO & Managing Director of Jetking Infotrain tell us about Better ‘Cybersecure’ than Sorry Cybersecurity...

LATEST NEWS

OnePlus 13T Sets New AnTuTu Record with Over 3 Million Score

The OnePlus 13T is just weeks away from its official launch, but it has already made an impressive appearance on AnTuTu. Well, according to...

ISL 2024-25: Javi Hernandez’s Late Heroics Hand Jamshedpur FC Crucial First-Leg Edge Over Mohun Bagan Super Giant

Jamshedpur FC took a significant step towards the Indian Super League (ISL) 2024-25 final with a dramatic 2-1 victory over Mohun Bagan Super Giant...

Smart Samsung Cooling: Goodbye Sleepless Summers with Style!

Imagine a world where your air conditioner and fan work in perfect harmony, creating the ideal sleeping environment without you lifting a finger. Samsung...

IPL 2025: Venkatesh, Arora Star as KKR Hand SRH Their Biggest-Ever Loss

Kolkata Knight Riders (KKR) rediscovered their explosive batting form in Mumbai, while Sunrisers Hyderabad (SRH) continued their struggles, suffering a third consecutive defeat despite...

Featured