#zenbleed: uncovering the data leakage bug lurking in amd’s zen 2 processors

Source: https://nakedsecurity.sophos.com/2023/07/26/zenbleed-how-the-quest-for-cpu-performance-could-put-your-passwords-at-risk/

I’ve summarised this article for you:

Summary: A new bug has been discovered called Zenbleed which affects the latest AMD Zen 2 range of high performance processors. It allows attackers to trigger it over and over again and collect data from memory while it is in use, potentially exposing passwords, authentication tokens and other data that is supposed to be kept secret. The bug is a side-effect of “speculative execution” which is a processor-level hack to speed up performance. AMD has produced a microcode patch and a configuration setting to mitigate the bug. Intel processors are not affected.