Intel chipsets hit by another major security flaw

News
By published

SGAxe attack steals protected data from what is meant to be the safest part of an Intel processor

(Image credit: Shutterstock / La1n)

Intel processors are facing another major security threat after researchers uncovered a new attack on the company's hardware.

Known as SGAxe, the attack targets a supposedly super-secure function within Intel processors in the latest attempt to steal protected user data in a long line of attacks since 2018's Meltdown and Spectre threats.

Intel says it has already released fixes and patches to cover some of the damage, but some issues still remain a threat, with machines using the company's 9th generation Coffee Lake Refresh processors particularly at risk.

SGAxe attack

SGAxe breaches the security guarantees of Intel Software Guard eXtensions (SGX) services, which look to protect the inner workings of a system alongside vital data such as passwords and encryption keys.

Developed by the company, SGX is a security feature built into Intel processors that allows apps to operate and run within blocks of secure memory known as "enclaves" - protected software containers that offer hardware-based memory encryption for high-end protection.

Using SGAxe, an attacker could steal legitmate SGX attestation keys from Intel’s quoting enclave in existing SGX machines, meaning they could then impersonate such systems and gain access to target devices.

The researchers note that there is no evidence the flaw was exploited in the wild, but alerted Intel as soon as it was discovered. However SGAxe does appear to be an evolution of the CacheOut attack revealed in January, with the two exploits able to work in tandem to break into systems.

Intel says it is working on a fix to cover both attacks, with a microcode update coming soon.

"The CacheOut researchers recently informed us of a new paper referred to as SGAxe," Intel Director of Communications Jerry Bryant said in a statement.

"It is important to note that SGAxe relies on CVE-2020-0549 which has been mitigated in microcode (confirmed by the researchers in their updated CacheOut paper) and distributed out to the ecosystem."

The company has also published a list of affected processors for users looking to see if their systems are at risk.

Via Ars Technica

TOPICS
Mike Moore
Mike Moore
Deputy Editor, TechRadar Pro

Mike Moore is Deputy Editor at TechRadar Pro. He has worked as a B2B and B2C tech journalist for nearly a decade, including at one of the UK's leading national newspapers and fellow Future title ITProPortal, and when he's not keeping track of all the latest enterprise and workplace trends, can most likely be found watching, following or taking part in some kind of sport.

Latest in Security
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
Lock on Laptop Screen
Medusa ransomware is able to disable anti-malware tools, so be on your guard
An abstract image of digital security.
Fake file converters are stealing info, pushing ransomware, FBI warns
Insecure network with several red platforms connected through glowing data lines and a black hat hacker symbol
Coinbase targeted after recent Github attacks
hacker.jpeg
Key trusted Microsoft platform exploited to enable malware, experts warn
IBM office logo
IBM to provide platform for flagship cyber skills programme for girls
Latest in News
Disney Plus logo with popcorn
You can finally tell Disney+ to stop bugging you about that terrible Marvel show you regret starting
Girl wearing Meta Quest 3 headset interacting with a jungle playset
Latest Meta Quest 3 software beta teases a major design overhaul and VR screen sharing – and I need these updates now
Philips Hue
Philips Hue might be working on a video doorbell, and according to a new report, we just got our first look at it
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
The Samsung Galaxy S25 Edge on display the January 22, 2025 Galaxy Unpacked event.
A fresh Samsung Galaxy S25 Edge leak hints at a 2K display and a titanium frame
Hatch Restore 3 in Putty
You can finally start your day with The Office theme song, and I couldn't be more excited
More about security
An abstract image of digital security.

Fake file converters are stealing info, pushing ransomware, FBI warns
Microsoft

"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
The Samsung Galaxy S25 Edge on display the January 22, 2025 Galaxy Unpacked event.

A fresh Samsung Galaxy S25 Edge leak hints at a 2K display and a titanium frame
See more latest
Most Popular
The Samsung Galaxy S25 Edge on display the January 22, 2025 Galaxy Unpacked event.
A fresh Samsung Galaxy S25 Edge leak hints at a 2K display and a titanium frame
Philips Hue
Philips Hue might be working on a video doorbell, and according to a new report, we just got our first look at it
SDUNITED AX835-025FF mini PC
This mini PC with the incredible Strix Halo APU is yet another sign AMD may have given up on big brands for bleeding edge tech
Disney Plus logo with popcorn
You can finally tell Disney+ to stop bugging you about that terrible Marvel show you regret starting
Girl wearing Meta Quest 3 headset interacting with a jungle playset
Latest Meta Quest 3 software beta teases a major design overhaul and VR screen sharing – and I need these updates now
Hatch Restore 3 in Putty
You can finally start your day with The Office theme song, and I couldn't be more excited
Dell Pro Max with GB300
HP and Dell's latest Nvidia powered PCs are likely to be some of the most expensive workstations ever launched
Shape of Russia filled with Russian flag-colored internet codes on a black hacking background
A new wave of blocks in Russia targets VPN apps and Cloudflare subnets
An abstract image of digital security.
Fake file converters are stealing info, pushing ransomware, FBI warns
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand