Hardware vulnerability bypasses Spectre and Meltdown patches
A new hardware vulnerability bypassing previous Spectre and Meltdown protections has been found by Bitdefender researchers, CNET sister site ZDNet reported Tuesday. It affects all Windows systems with Intel processors since 2012 and can access protected memory.
Spectre and Meltdown are vulnerabilities uncovered in the chips that handle sensitive data like passwords and encryption keys. Chips originally affected when the vulnerability was revealed back in January 2018 included Intel and AMD or those designed by Arm.
The latest bug, called SWAPGSAttack, could be used to secretly monitor and take information off a computer. While it works around previous patches, you can protect yourself by using a security update released in July after Bitdefender worked with Intel and Microsoft on the issue for a year.
"Customers who have Windows Update enabled and applied the security updates are protected automatically," a Microsoft spokesperson told ZDNet.
"Intel, along with industry partners, determined the issue was better addressed at the software level and connected the researchers to Microsoft," an Intel spokesperson added to ZDNet.
SWAPGSAttack was revealed during the Black Hat hacker conference Tuesday.