Insecurity experts have found that Intel chips are vulnerable to another side-channel attack similar to Meltdown and Spectre.
Researchers from the College of William and Mary, Carnegie Mellon, the University of California Riverside, and Binghamton University have
described a security attack that uses the speculative execution features of modern processors to leak sensitive information and undermine the security boundaries that operating systems and software erect to protect important data.
Dubbed "BranchScope" the attack is similar to Meltdown and Spectre, can be exploited by an attacker to obtain potentially sensitive information they normally would not be able to access directly.
The attacker needs to have access to the targeted system and they must be able to execute arbitrary code. But the researches think that the attack requirements are realistic.
The BranchScope attack has been demonstrated on devices with three types of Intel i5 and i7 CPUs based on Skylake, Haswell and Sandy Bridge microarchitectures.
[...]