Now NetSpectre Vulnerability!


#1

A network variant of the Spectre has been uncovered ( https://arstechnica.com/gadgets/2018/07/new-spectre-attack-enables-secrets-to-be-leaked-over-a-network/ ).

A sub-variant uses of the Advanced Vector Extensions 2 (AVX2) instructions which were introduced in the Intel 4th Generation processors (a.k.a. Haswell).

The interesting part is that the data extraction rate is fairly slow - one byte every eight minutes. While not fast enough to make it realistically feasible to access vast amounts of data directly, it is fast enough to rapidly gather cryptographic keys and user name-password combinations.

It seems that the smarter chip makers are trying to make their processors be, the more vulnerable they become.