A group of researchers from the Netherlands’ Vrije Universiteit Amsterdam has developed a new Spectre attack version that can bypass Intel and Arm’s recent hardware mitigations.
Researchers have continued to dig into the security of CPUs since the publication of the Spectre and Meltdown vulnerabilities and have discovered various new side-channel attack methods. Small pieces of potentially sensitive data can be obtained from memory using these methods by any attacker with local access to the targeted machine.
The most deadly variation of the Spectre vulnerability was dubbed Spectre v2 or Spectre BTI when it was discovered as Branch Target Injection. Affected CPU manufacturers, such as Intel and Arm, have been working on hardware mitigations to prevent such attacks.