All of AMD’s (opens in new tab) Zen CPUs are vulnerable to a medium-severity flaw which can allow threat actors to run side-channel attacks and reveal 4096-bit RSA keys with relative ease, experts have warned. The flaw, discovered by multiple cybersecurity researchers from technology universities in Graz, and Georgia, was described in a paper titled “SQUIP: Exploiting the Scheduler Queue Contention Side Channel,” and later confirmed by AMD itself. “An attacker running on the same host and CPU core as you, could spy on which types of instructions you are executing due to the split-scheduler design on AMD CPUs,” one of the authors explained.
…
Read more