Sensitive

Intel CPU Vulnerability: Indirect Injection Attack Resulting in Exposed Sensitive Data

by
Intel CPU Vulnerability: Indirect Injection Attack Resulting in Exposed Sensitive Data

Security researchers at the University of California have discovered a new high-precision attack called “Indirector” that targets vulnerabilities in the Indirect Branch Predictor (IBP) and Branch Target Buffer (BTB) of high-end Intel CPUs like Raptor Lake and Alder Lake. This attack bypasses current defenses and compromises CPU security by exploiting weaknesses in these components. The … Read more

Vulnerability in Intel CPUs Allows for Indirector Injection Attack Resulting in Sensitive Data Breach

by
Intel CPU Vulnerability: Indirect Injection Attack Resulting in Exposed Sensitive Data

Researchers from the University of California have introduced a new high-precision Branch Target Injection (BTI) attack called “Indirector” that targets vulnerabilities in the Indirect Branch Predictor (IBP) and Branch Target Buffer (BTB) of Intel CPUs, specifically those from the Raptor Lake and Alder Lake generations. The attack, named Indirector, was developed by security researchers Luyi … Read more

New Intel CPU Vulnerability ‘Indirector’ Discloses Sensitive Information

by
New Intel CPU Vulnerability ‘Indirector’ Discloses Sensitive Information

In recent news, security researchers have discovered a new vulnerability in modern Intel CPUs, including Raptor Lake and Alder Lake, that could allow attackers to leak sensitive information from the processors. The attack, known as “Director” and identified by researchers Luyi Li, Hosein Yavarzadeh, and Dean Tullsen, exploits weaknesses in the Indirect Branch Predictor (IBP) … Read more

Easily Discovering Sensitive Metadata on Cisco Webex: An Exploration

by
Easily Discovering Sensitive Metadata on Cisco Webex: An Exploration

Cisco’s video conferencing service, Webex, has come under scrutiny following an investigation by Die Zeit. The study found that the metadata of numerous meetings, including those involving European governments and publicly traded companies, could be accessed by modifying the URL. This raised concerns about the security of Webex, especially for high-stakes meetings. The compromised metadata … Read more

Vulnerability in Citrix NetScaler ADC & Gateway Allows Attackers to Remotely Access Sensitive Data

by

A security vulnerability has been identified in Citrix NetScaler ADC and Gateway appliances, allowing remote attackers to access sensitive data without authentication. This flaw, known as an out-of-bounds memory read issue, affects software versions up to 13.1-50.23 and has been compared to the previously known CitrixBleed vulnerability, though it is considered less serious in terms … Read more