Intel processors have been exposed to a new Foreshadow vulnerability that allows hackers to steal sensitive information inside personal computers or cloud storage.
How does Foreshadow affect computers?
Foreshadow can penetrate the computer processing unit in three different ways. It first affects the SGX extension designed to allow applications running on a computer to place sensitive user data within a virtual fortress.
These data are supposed to be inside the virtual fortress protected from modification and are not accessible by malicious applications, but this fortress can be hacked by a process called "virtualization", and Foreshadow can also attack SMM memory and VMs virtual machines.
Although Intel considers this problem to be serious, it has not recorded any case in the world that uses this vulnerability, but on the other hand has acknowledged that it can be used to restore data in the operating system's memory.
The researchers advise users to update their systems to avoid these attacks and that they must follow Intel's advice. The latter works collaboratively with companies designed for operating systems and smart device companies to develop software and updates that help protect systems.