Cisco has issued a warning about a zero-day exploit in its NX-OS software that is being actively exploited by a Chinese state-sponsored group known as Velvet Ant. The cybersecurity firm Sygnia first reported the issue to Cisco after detecting the exploit during an investigation into the activities of the Velvet Ant group. According to Sygnia’s … Read more
The Indirector high-precision branch target injection attacks, discovered by UCSD researchers, target the indirect branch predictor on the latest Intel Alder Lake and Raptor Lake processors. These attacks exploit the intricate structures of the indirect branch predictor (IBP) and branch target buffer (BTB) in high-end Intel CPUs, revealing new insights into their inner workings and … Read more
A new side-channel attack called “Indirector” has been discovered, putting unprotected Intel Raptor Lake and Alder Lake CPUs at risk of having sensitive data stolen. This vulnerability is related to the Spectre Vulnerabilities that emerged in 2018. Researchers from the University of California, San Diego uncovered this weakness, which targets the indirect branch predictor (IBP) … Read more
Security experts have discovered a new method of side-channel attacks on the latest processors, specifically targeting Intel’s Raptor Lake and Alder Lake. The attack, called Indirector, exploits vulnerabilities in the Indirect Branch Predictor (IBP) and Branch Target Buffer (BTB) to bypass chip defenses and access sensitive data. IBP predicts the target addresses of control flow … Read more
In a recent study conducted by security researchers, a new side-channel attack was discovered that can potentially compromise the security of modern Intel CPU variants, including Raptor Lake and Alder Lake. The attack, referred to as Indirector, takes advantage of vulnerabilities in the indirect branch predictor (IBP) and branch target buffer (BTB) to bypass existing … Read more
A suspected threat actor with ties to China, known as Velvet Ant, has been actively exploiting a zero-day vulnerability in Cisco NX-OS software, according to researchers at Sygnia. The vulnerability, identified as CVE-2024-20399, affects a wide range of Cisco Nexus devices and has a CVSS score of 6.0. The threat actor is highly sophisticated and … Read more
The China-Nexus Velvet Ant hackers exploited a bug in April that allowed them to execute arbitrary commands as root on Cisco devices. This zero-day vulnerability, tracked as CVE-2024-20399, was discovered by cybersecurity company Sygnia and patched by Cisco on Monday. The threat group remotely connected to Cisco’s NX-OS software used in switches and executed malicious … Read more
Cisco recently patched a zero-day vulnerability that was exploited by a nation-state threat group known as Velvet Ant, believed to be linked to China. The vulnerability, tracked as CVE-2024-20399, allows an authenticated, local attacker to execute arbitrary commands as root on affected devices running Cisco’s NX-OS software. This vulnerability, known as a command injection vulnerability, … Read more
A team of researchers at the University of California, San Diego have identified a new side-channel vulnerability in Intel processors which could potentially lead to the leakage of sensitive data. This vulnerability, present in the Indirect Branch Predictor (IPB) and Branch Target Buffer (BTB) components of certain high-end Intel CPUs, could be exploited by attackers … Read more
Darktrace investigated the exploitation of the Citrix Bleed vulnerability on a customer network in late 2023. Citrix Bleed, also known as CVE-2023-4966, is a critical vulnerability that allows threat actors to hijack user sessions, bypassing authentication requirements. Darktrace’s AI detected post-exploitation activity related to Citrix Bleed and alerted the customer’s security team. The vulnerability impacts … Read more