Basically researchers were told to hold off on disclosing vulnerabilities found within the newer “secured” Intel chips in fears of losing funding from Intel themselves. I found it over at LET.
Good thing my desktop is on an APU, finding actual business-grade managed hosting on EPYC AMD processors is a whole another can of worms though…
You thought, you are secure at least with the new Cascade Lake processors from intel and, if installing intels patches, on older intel processors too? You are wrong.
(Meanwhile quite well known) researchers at the university of Graz (Austria) discovered a new attack, “Zombieland” some time before intel launched their new “secure” processor generation and also before intel made a public announcement about their processors being secure thanks to their patches.
As soon as intel learned about the danger they put an embargo on the scientist and later prolonged it to Nov. 12. Now, such an embargo is not uncommon or unreasonable per se; after all everyone wants that a manufacturer, in this case intel, gets some time to fix the problem. But intel instead made announcements about their processors to be secure and prolonged the embargo so that nobody would learn the truth. In other words: intel lied and betrayed everyone, their large customers as well as us the small end customers.
“But those researchers are not bound by intels diktat!” you say? Well, theoretically they are not, they are employees of a “free” university. Factually however they are because intel sponsors the university of Graz (just like some other universities), so the university administration is in a place between a rock and hard place. The end result was anyway that the researchers stayed mum till Nov. 12.
Here’s the link -> https://zombieloadattack.com/
Important: Note that even “MDS resistant” CPUs from intel do not protect against Zombieland. The only protection working so far seems to be to disable both TSX and Hyperthreading - which cuts deeply into providers income.
Or simply BUY AMD!