![]() |
MS-DEFCON 4:
There are isolated problems with current patches, but they are well-known and documented on this site.
|
-
Hyper-Threading & ZombieLoad CPU exploit
Home › Forums › Code Red – Security/Privacy advisories › Hyper-Threading & ZombieLoad CPU exploit
- This topic has 1 reply, 4 voices, and was last updated 1 year, 9 months ago.
Viewing 2 reply threads-
AuthorPosts
-
-
May 15, 2019 at 5:57 pm #1629247
CADesertRat
AskWoody PlusEvidently the researchers that discovered the “Zombieland” side channel problem suggested turning off Hyper Threading in the affected Intel CPU’s but Intel isn’t pushing for it. Another reason I’m glad I went with AMD for my latest build, since it isn’t affected.
https://www.pcworld.com/article/3395439/intel-hyper-threading-zombieload-cpu-exploit.html
The easiest fix, the ZombieLoad discoverers said in a document detailing the exploit, is to turn off Hyper-Threading on Intel processors:
“As ZombieLoad leaks loaded values across logical cores, a straightforward mitigation is disabling the use of Hyper-Threading. Hyper-Threading improves performance for certain workloads by 30 percent to 40 percent.”
But Intel said that’s not necessarily the only answer for all PC users. In fact, Intel said that it’s really up to each customer to decide what to do. If software cannot be guaranteed to be trusted then yes, maybe you’ll want to disable Hyper-Threading. If your software only comes from the Microsoft Store or your IT department, you could probably leave Hyper-Threading on. For all others, it really depends on how squeamish you are.
“Because these factors will vary considerably by customer, Intel is not recommending that Intel HT be disabled, and it’s important to understand that doing so does not alone provide protection against MDS,” Intel said in a statement.
Don't take yourself so seriously, no one else does 🙂
4 Win 10 Pro at 1909 (3 Desktops, 1 Laptop).1 user thanked author for this post.
-
May 15, 2019 at 7:40 pm #1630225
Steve S.
AskWoody PlusI was reading about these issues today. Seems a lot of different research teams independently discovered and worked on these vulnerabilities in a non-disclosure environment for about a year. Graz University of Technology named them the “ZombieLoad” Attack. VUSec (Vrije University Amsterdam) called two variants “RIDL” and “Fallout”. Intel apparently decided to call them “MDS” attacks.
One thing of interest to me: Intel says the newer i8 and i9 processors are not vulnerable, while the VUSec team says the i9 is more vulnerable – at least to the Fallout attack.
And of course, there are now several different logos to go with the different names, lol!
https://zombieloadattack.com/#researcher — Graz team
https://mdsattacks.com/ — VUSec team
https://software.intel.com/security-software-guidance/insights/deep-dive-intel-analysis-microarchitectural-data-sampling — Intel’s take on it
The VUSec site above also has a downloadable program to test one’s system for vulnerabilities per ghacks:
Win7 Pro x64(Group B), Win10 Pro x64 1909, Win10 Home 1909, Linux Mint + a cat with 'tortitude'.
-
This reply was modified 1 year, 9 months ago by
CADesertRat.
1 user thanked author for this post.
-
May 16, 2019 at 9:56 am #1639349
b
AskWoody MVPhttps://software.intel.com/security-software-guidance/insights/deep-dive-intel-analysis-microarchitectural-data-sampling — Intel’s take on it
Looks like they broke their own systems too:
Attachments:
You must be logged in to access attached files.
-
This reply was modified 1 year, 9 months ago by
-
May 16, 2019 at 9:09 am #1639034
satrow
AskWoody MVPMoonchild’s summary is worth a read:
TL;DR: If you switch off HT for this on your desktop, you’re being dumb.
===
Honestly, it’s something you cannot really exploit in the wild for anything useful.Please read the entirety of the article which highlights some important points.
…
3 users thanked author for this post.
-
-
AuthorPosts
Viewing 2 reply threads -
Welcome to our unique respite from the madness.
It's easy to post questions about Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced. Questions? Contact Customer Support.

Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments. Click here for details and to sign up.
Search Newsletters
Search Forums
Recent Replies
CraigS26 on ESET NOD32 and Windows 7
43 minutes agodoriel on Office365 colors
51 minutes agoTJ on Office365 colors
1 hour, 4 minutes agodoriel on Office365 colors
1 hour, 6 minutes agoE Pericoloso Sporgersi on Tasks for the weekend – February 27, 2021 Check your DNS
1 hour, 11 minutes agoTJ on Office365 colors
1 hour, 19 minutes agoMoonshine on ESET NOD32 and Windows 7
1 hour, 27 minutes agoTJ on “Stuttering” glitch on a brand-new PC
1 hour, 51 minutes agodoriel on Office365 colors
2 hours, 3 minutes agodoriel on Office365 colors
2 hours, 8 minutes agoStargazer on “Stuttering” glitch on a brand-new PC
2 hours, 53 minutes agodoriel on Try to fix one thing, break another
3 hours, 1 minute agoAlex5723 on Looking for graphic equalizer for Windows 10
3 hours, 21 minutes agoPaul T on Temporarily putting the site in maintenance mode
4 hours, Just nowPaul T on Google Chrome
4 hours, 4 minutes agoPaul T on ESET NOD32 and Windows 7
4 hours, 19 minutes agoPaul T on Are Strong Passwords Necessary?
4 hours, 25 minutes agoPaul T on MS-DEFCON 4: Install the February updates, skip that Secure boot
4 hours, 44 minutes agoBerserker79 on MS-DEFCON 4: Install the February updates, skip that Secure boot
4 hours, 45 minutes agoTravasaurus on Frys electronics is closing
5 hours, 3 minutes agoAlex5723 on Backing up my computer
5 hours, 4 minutes agoTravasaurus on Frys electronics is closing
5 hours, 6 minutes agoAlex5723 on Tasks for the weekend – February 20, 2021 – it’s Squirrel away time
5 hours, 17 minutes agoOscarCP on The best things in life are copyrighted
5 hours, 26 minutes agoAlex5723 on Linux Mint developers call Users to update their systems
5 hours, 41 minutes agodoriel on Backing up my computer
5 hours, 42 minutes agoOscarCP on Amazon’s new ‘same-day nodes’ will displace postal deliveries
5 hours, 42 minutes agodoriel on Surface Driver won’t Download
5 hours, 53 minutes agoZig on Temporarily putting the site in maintenance mode
6 hours, 53 minutes agoZig on Temporarily putting the site in maintenance mode
6 hours, 54 minutes ago
Recent Topics
-
Veeam backups
7 minutes ago
-
Group B Feb 2021 update for Win 7 (i.e. KB4601363) fails – Error Code 80070661.
1 hour, 54 minutes ago
-
Group B Feb 2021 update for Win 7 (i.e. KB4601363) fails – Error Code 80070661.
1 hour, 54 minutes ago
-
“Stuttering” glitch on a brand-new PC
1 hour, 52 minutes ago
-
Here’s looking at you, kid: the child-cam scam
5 hours, 56 minutes ago
-
The best things in life are copyrighted
5 hours, 26 minutes ago
-
Using Microsoft OneDrive on your Android device
5 hours, 59 minutes ago
-
MS-DEFCON 4 – February updates trigger few issues
6 hours, 1 minute ago
-
ESET NOD32 and Windows 7
44 minutes ago
-
Google Chrome
4 hours, 4 minutes ago
-
misbehaving Edge and Chrome
19 hours, 2 minutes ago
-
Temporarily putting the site in maintenance mode
4 hours, 1 minute ago
-
KB4535680
20 hours, 5 minutes ago
-
Are Strong Passwords Necessary?
4 hours, 26 minutes ago
-
LastPass Android : 7 3rd party trackers
12 hours, 47 minutes ago
-
Firefox 86 brings “Total Cookie Protection”
20 hours, 25 minutes ago
-
Startup Impact Not Measured
20 hours, 41 minutes ago
-
Tasks for the weekend – February 27, 2021 Check your DNS
1 hour, 11 minutes ago
-
MS-DEFCON 4: Install the February updates, skip that Secure boot
4 hours, 45 minutes ago
-
How to make text darker
21 hours, 41 minutes ago
-
Turn off Bing in your start menu
1 day, 11 hours ago
-
“Recent Replies”
1 day, 20 hours ago
-
Framework DIY Laptop
2 days, 11 hours ago
-
HDD as SSD and SSD as HDD
3 days, 16 hours ago
-
Displaylink not working in Win 2004
2 days, 10 hours ago
-
Surface Driver won’t Download
5 hours, 54 minutes ago
-
Try to fix one thing, break another
3 hours, 1 minute ago
-
Outlook print format different for contact phonebook between Outlook 2013/2016
3 days, 19 hours ago
-
Styles.Visibility
4 days, 13 hours ago
-
Windows 10 Insider Preview build 21322 released to DEV Channel
3 days, 16 hours ago
Search for Topics
Recent blog posts
- “Stuttering” glitch on a brand-new PC
- Here’s looking at you, kid: the child-cam scam
- The best things in life are copyrighted
- Using Microsoft OneDrive on your Android device
- MS-DEFCON 4 – February updates trigger few issues
- Temporarily putting the site in maintenance mode
- Tasks for the weekend – February 27, 2021 Check your DNS
- MS-DEFCON 4: Install the February updates, skip that Secure boot
Key Links
M | T | W | T | F | S | S |
---|---|---|---|---|---|---|
1 | 2 | 3 | 4 | 5 | 6 | 7 |
8 | 9 | 10 | 11 | 12 | 13 | 14 |
15 | 16 | 17 | 18 | 19 | 20 | 21 |
22 | 23 | 24 | 25 | 26 | 27 | 28 |
29 | 30 | 31 |
Copyright © 2004 – 2021 AskWoody Tech LLC. All rights reserved.