RATE Group | Intel SGX Vulnerability Discovered, Cryptocurrency Keys Threatened
82634
post-template-default,single,single-post,postid-82634,single-format-standard,ajax_fade,page_not_loaded,,qode_grid_1300,side_area_uncovered_from_content,footer_responsive_adv,qode-content-sidebar-responsive,qode-child-theme-ver-1.0.0,qode-theme-ver-13.3,qode-theme-bridge,wpb-js-composer js-comp-ver-7.9,vc_responsive
 

Intel SGX Vulnerability Discovered, Cryptocurrency Keys Threatened

12 Mar Intel SGX Vulnerability Discovered, Cryptocurrency Keys Threatened

Posted at 09:11h in Cryptocurrency News by

[ad_1]

A vulnerability has reportedly been discovered in Intel’s Software Guard eXtensions (SGX) allowing passwords, encrypted keys, and other sensitive data to be siphoned from a computer’s memory.

On March 10, computer researcher Daniel Gruss uploaded a video to YouTube describing how the proof-of-concept attack, dubbed a “Load Value Injection [LVI],” can be used to steal sensitive data from Intel SGXs — including encrypted keys for cryptocurrency exchanges and wallets. 

The attack is significant as SGX processors are designed to provide secure storage sensitive stored within a computer’s memory, even when in the presence of a malicious operating system.

LVI discloses cryptocurrency keys from Intel SGX

The LVI works by getting a vulnerable system to run a script that could be hosted on a malicious website or application to launch a side-channel attack targeting the SGX. Once compromised, the attacker can access encrypted keys stored within the SGX. Gruss states:

“In a…

[ad_2]

Source link

Tags:
, , , , , ,