A new security vulnerability has been discovered in Apple's Mac and соня порнографияMacBook computers – and the worst part is that it's unpatchable.
Academic researchers discoveredthe vulnerability, first reported by Ars Technica, which allows hackers to gain access to secret encryption keys on Apple computers with Apple's new Silicon M-Series chipset. This includes the M1, M2, and M3 Apple MacBook and Mac computer models.
SEE ALSO: Bing vulnerability made it possible to alter search resultsBasically, this vulnerability can be found in any new Apple computer released from late 2020 to today.
The issue lies with prefetchers— components meant to predictively retrieve data before a request to increase processing speed — and the opening they leave for malicious attacks from bad actors.
The researchers have dubbed the attack "GoFetch," which they describe as "a microarchitectural side-channel attack that can extract secret keys from constant-time cryptographic implementations via data memory-dependent prefetchers (DMPs)."
A side-channel attack is a type of cyber attack that uses extra information that's left vulnerable due to the design of a computer protocol or algorithm.
The researchers explained the issue in an email to Ars Technica:
Prefetchers usually look at addresses of accessed data (ignoring values of accessed data) and try to guess future addresses that might be useful. The DMP is different in this sense as in addition to addresses it also uses the data values in order to make predictions (predict addresses to go to and prefetch). In particular, if a data value "looks like" a pointer, it will be treated as an "address" (where in fact it's actually not!) and the data from this "address" will be brought to the cache. The arrival of this address into the cache is visible, leaking over cache side channels.
Our attack exploits this fact. We cannot leak encryption keys directly, but what we can do is manipulate intermediate data inside the encryption algorithm to look like a pointer via a chosen input attack. The DMP then sees that the data value "looks like" an address, and brings the data from this "address" into the cache, which leaks the "address." We don’t care about the data value being prefetched, but the fact that the intermediate data looked like an address is visible via a cache channel and is sufficient to reveal the secret key over time.
Basically, the researchers discovered that the DMPs in Apple's Silicon chipsets – M1, M2 and, M3 – can give hackers access to sensitive information, like secret encryption keys. The DMPs can be weaponized to get around security found in cryptography apps, and they can do so quickly too. For example, the researchers were able to extract an 2048-bit RSA key in under one hour.
Usually, when a security flaw is discovered nowadays, a company can patch the issue with a software fix. However, the researchers say this one is unpatchable because the issue lies with the "microarchitectural" design of the chip. Furthermore, security measures taken to help mitigate the issue would require a serious degradation of the M-series chips' performance.
Researchers saythat they first brought their findings to Apple's attention on December 5, 2023. They waited 107 days before disclosing their research to the public.
Topics Apple Cybersecurity MacBook
Interview: 2Dawn Games on its upcoming shooter 'Ravaged' and life as an indie studio
'We'll Be Rooting for You'
Family Fun Sunday at Shoseian
An Evening with Renee Tajima
Вышел трейлер скинов в честь Uzi из Зала славы League of Legends — они стоят $450
Great Leap to Celebrate 40th Anniversary
A Look Back at Great Leap’s Beginnings
JANM, Heart Mountain Foundation to Host Film Screening, Panel Discussion
Качественный косплей на Muerta из Dota 2
Чемпионское интервью с GentlemaN — о развитии Standoff 2, победе на мейджоре и амбициях Virtus.pro
Language обыграла Rise в противостоянии второго дивизиона BetBoom Битва Чемпионов 2025
Screening of ‘Close
Happy выиграл Warcraft 3 All
Celebrate the Year of the Dog with JACA and AKIHO
RAM Matters: How Much Do You Need for Gaming? 4GB, 8GB, 16GB or 32GB
Riverside Art Museum Exhibit Delves into EO 9066
West Covina Cherry Blossom Festival This Saturday
Early Works of Seijun Suzuki at Egyptian Theatre
A NASA probe has just spilled secrets about Jupiter and a fiery moon
Local Temples to Commemorate Buddha’s Birth
Remembering some of John Dingell's greatest moments on TwitterA cat crashed a soccer game and refused to leaveWhich dating app is best? 12 people explain their allegiancesThis intense rivalry between a cat and a rabbit is one for the agesActivists use London Fashion Week to make a powerful statement about the Grenfell Tower tragedyToday's tea is this spicy call out memeWoman finally gets 'the smoking hot body' she's always wanted, in her obituaryKacey Musgraves asked the internet to meme her and it worked almost too wellDeadmau5 tries to defend using homophobic slur after Twitch banRanking the Fallout Games New period care brand coalition will reimburse you for taxes on period products 'The Fall of the House of Usher': Every sibling is named for a Poe character Best Prime Day Kindle deal: $50 off Kindle Paperwhite Signature Edition Duolingo has a new music course. Here's how to get an alert when it launches. Wordle today: The answer and hints for October 11 Best October Prime Day TV deals: Grab your cheap QLED now for the rest of football season The best Prime Day 2023 Lego deals: Star Wars, Marvel, and more NYT's The Mini crossword answers for October 11 Dyson Supersonic hair dryer on sale for $100 off 50+ Prime Day deals under $50
0.9291s , 8109.5703125 kb
Copyright © 2025 Powered by 【соня порнография】Enter to watch online.Vulnerability found in Apple's Silicon M,
