A new ‘Zombieload’ flaw hits Intel’s newest Cascade Lake chips

Discussion in 'Frontpage news' started by anticupidon, Nov 12, 2019.

  1. DeskStar

    DeskStar Maha Guru

    Messages:
    1,047
    Likes Received:
    148
    GPU:
    EVGA 2080Ti FTW3 HC
    AHAHAHAHAHAHAHHAHAHAHAHAHHAHAHAHAHAHAHAHHAHAHAHA
     
  2. DeskStar

    DeskStar Maha Guru

    Messages:
    1,047
    Likes Received:
    148
    GPU:
    EVGA 2080Ti FTW3 HC
    Oh my goodness I'm happier each day with going AMD!!!

    WTF Intel!?!? Man........!
     
    angelgraves13 likes this.
  3. D3M1G0D

    D3M1G0D Ancient Guru

    Messages:
    2,125
    Likes Received:
    1,367
    GPU:
    2 x GeForce 1080 Ti
    There's a reason why we try to make our systems foolproof - to protect it from fools ;)
     
  4. It's been documented that many of the exploits were likely known for some time by the department of defense and Intel coordinated with the NSA and further on specifics towards closing loopholes in them far back as 2007 if memory serves (Still trying to find the old source I'd read on that part - will post if changes). A close similarity - example - some offerings Dell now provides to consumers in "Dell Intel Vpro" are what Intel had been doing for years prior to now and more in the government and military sector.

    The thing is not so much a conspiracy but a byproduct and re-active measure instead of proactive practices. The real irony in my opinion is that if someone were to buy a Vpro solution at this point - Intel does not "officially support" it since it's not to-spec from the OEM. Or so they have stated in press-release. Politics aside; Intel has poorly handled the exploits in their technology over the past decade and half.
    Update:
    Proof of discovery (irregardless of circumstance)

    It's not hard to surmise from the above the national intelligence apparatus were aware. Still looking for that other article I wanted.

    What I don't understand is the present news of congress/senate going after Intel for releasing supposed recent information to China before the DOD. Nothing out there is really that recent in circumspect. If the government is running sensitive platforms on at-risk(high) hardware year after year; it's on them. Further discussion delves into claims of national security and public safety interest; I think it's a can of worms, i.e. business licenses' etc ...
    Yes - this is very true - there is only so much that can be automated and programmed/"engineered" around sheer stupidity
     
    Last edited by a moderator: Nov 15, 2019
    toyo likes this.

  5. user1

    user1 Ancient Guru

    Messages:
    1,609
    Likes Received:
    546
    GPU:
    hd 6870
  6. Crazy Serb

    Crazy Serb Member Guru

    Messages:
    178
    Likes Received:
    25
    GPU:
    270X Hawk 1200-1302
    Sounds like there is logo "Intel Inside" on building...
     
  7. It's better to disable TSX because the mitigation is just as detrimental to performance as TSX disabled?
     
  8. user1

    user1 Ancient Guru

    Messages:
    1,609
    Likes Received:
    546
    GPU:
    hd 6870
    Yes it actually appears to be worse to keep tsx enabled with the mitigations, than just disabling tsx altogether.
    Atleast so far, with the current patches on linux.
     
    Deleted member 213629 likes this.
  9. Damn that isn't good.

    EDIT: sigh eh no sense of getting upset I'm glad people are pen-testing I just wish they'd pen-test competition as aggressively. Far as ASF goes - looks like AMD never released it on any SKUs. Perhaps they saw something. All we'll ever do at this point is speculate.
     
    Last edited by a moderator: Nov 15, 2019
  10. angelgraves13

    angelgraves13 Ancient Guru

    Messages:
    2,138
    Likes Received:
    591
    GPU:
    RTX 2080 Ti FE
    While this doesn’t really affect us too much, I’d imagine companies with thousands of servers won’t be happy. It’ll be a huge performance drop for them. Rumor has it that companies are ditching Intel and either going full AMD Epyc or some other custom solution. But Intel is losing tons of contracts.
     

  11. alanm

    alanm Ancient Guru

    Messages:
    9,778
    Likes Received:
    1,962
    GPU:
    Asus 2080 Dual OC
    fantaskarsef likes this.
  12. Cyberdyne

    Cyberdyne Ancient Guru

    Messages:
    3,570
    Likes Received:
    291
    GPU:
    2080 Ti FTW3 Ultra
    I agree with this, i need someone to explain to me why we are freaking out over this when these vulnerabilities require physical access. I feel like if a bad actor has physical access to a machine you've already lost the battle.
     

Share This Page