Intel’s CPU security-flaw nightmare doesn’t end with Meltdown, Spectre, and Foreshadow. Researchers with the Graz University of Technology and imec-DistriNet have found yet another vulnerability that puts sensitive data at risk: ZombieLoad.
ZombieLoad reportedly affects all Intel processor generations released since 2011. Similar to previous vulnerabilities, the side-channel attack exploits weaknesses in speculative execution. It comprises four bugs that allow attackers to steal private browsing history and other sensitive data.
AMD/ARM chips aren’t affected, but patches are already rolling out for Intel users.
Researchers have also warned of two additional exploits, “RIDL” and “Fallout.” The former attack allows for the leaking of information across various security domains, while the latter allows for reading data an OS recently wrote.