Cookie Consent by Free Privacy Policy Generator "GoFetch": A Critical Security Vulnerability in Apple's M-Series Silicon | Review Space



Cover Image

"GoFetch": A Critical Security Vulnerability in Apple's M-Series Silicon

Understanding the Implications and Remedial Actions for the Exploited Side-Channel Flaw

NEWS  Security  March 22, 2024  Reading time: 2 Minute(s)

mdo Max (RS editor)

A team of researchers has unearthed a significant security loophole in Apple's highly praised M-series silicon, ominously named "GoFetch". This vulnerability poses a serious threat to the security landscape, particularly concerning the M1 and M2-based chips, by exploiting a crucial side-channel in the chips' execution of end-to-end key extraction processes.

 

The researchers have ingeniously crafted an application, also christened GoFetch, capable of extracting keys for various cryptography methods, including 2048-bit RSA keys, DH-2048, Kyber-512, and Dilithium-2. Astonishingly, this extraction can be accomplished within timeframes ranging from under an hour to approximately 10 hours, raising alarms about the integrity of sensitive data protected by these cryptographic keys.

Despite Apple's proactive measures with tools like CryptoKit to facilitate developers in implementing robust security controls, the crux of the issue lies within the microarchitecture of the chips themselves. Consequently, malevolent actors can exploit this vulnerability to clandestinely retrieve secret keys, thereby compromising data encryption and authentication mechanisms.

Addressing this pervasive flaw mandates a strategic software patch from Apple, given its inherent nature at the chip level. However, such a solution comes with its own set of challenges, notably a substantial performance degradation. As observed in past instances like Meltdown and Spectre, patching silicon-level vulnerabilities often leads to notable performance setbacks. For instance, following the mitigation of Spectre-V2, Intel's Core i9-12900K chip witnessed performance declines ranging from 14.5% to 26.7%.

 

The resemblance of this chip-level vulnerability to notorious security breaches such as Meltdown and Spectre, which plagued various chip architectures including Intel, AMD, IBM, and Arm-based designs, underscores the gravity of the situation. While Apple is yet to officially respond to these revelations, the researchers have dutifully notified the company, anticipating a swift remedial action in the form of a software patch.

 IMAGES CREDITS: FREEPIK 

Apple M Series Silicon Security Vulnerability GoFetch Cryptography Technology News RSMax


SHARE THIS ARTICLE

RELATED ARTICLES

  1. Breaking Barriers: Apple Unveils Revolutionary Accessibility Features
  2. Apple Introduces Anti-Stalking Features and Reaffirms LGBTQ+ Support in Latest OS Updates
  3. Apple Unveils New iPad Pro 2024 Lineup with M4 Processor and Tandem OLED
  4. Microsoft Expands Support for Apple Vision Pro Mixed Reality Headset with OneNote App
  5. LEAK - Revealing the Battery Capacities of Apple's Next-Generation iPhones
  6. Apple's Global Alert Signals Rising Threat of State-Sponsored Hacking


 COMMENTS


Currently there are no comments, so be the first!

*Our pages may contain affiliate links. If you buy something via one of our affiliate links, Review Space may earn a commission. Thanks for your support!
spacer
THE LATEST
mdo
Breaking Barriers: Apple Unveils Revolutionary Accessibility Features
mdo
Microsoft's Xbox Division Advances Accessibility for Gamers with Disabilities
mdo
TCL's 115-inch QM89 4K QD-Mini LED Smart TV Set to Redefine Home Entertainment in the US
mdo
PPSSPP Emulator Launches on iOS: Expanding Gaming Possibilities on Apple Devices
mdo
Thunderbolt Share: Revolutionizing Data Transfer and Connectivity
mdo
LEAK - Unveiling the Anticipated Samsung Galaxy S24 FE: Insights from One UI Test Build
mdo
Windows 11: A Guide to Microsoft's Latest Virtual Machines
mdo
May's PC-Centric Xbox Software Update Introduces Keyboard and Mouse Support for Some Titles
Latest news on the world of gaming
GAMING

SPONSORED


featured sidebar
23Apr
GAMING: AYANEO'S AM01 MINI PC - RETRO CHARM WITH VERSATILE CONFIGURATION
Latest news Apple, iMac, iPad, iPhone
LATEST APPLE NEWS

SPONSORED


CATEGORIES
(223) Smartphones (177) Games (124) Apple (108) AI (96) Security (66) Computer (66) News (60) Musical Instruments (55) Smartwatch (44) Apps (34) Music Production (34) Google (33) Windows (29) Photography (26) Electric Vehicles (25) Plugins VST


Latest news on online security, data breaches, malware, virus
SECURITY NEWS

banner

Buy Me a Coffee at ko-fi.com
mdo
Microsoft Closes Three Bethesda Studios, Merges Another with ZeniMax Online Studios

Fallout from Redfall: A Shift in Microsoft’s Game Development Strategy

mdo
Apple Unveils New iPad Pro 2024 Lineup with M4 Processor and Tandem OLED

Thinner Design, Improved Display Technology, but No Always-On-Display Yet
mdo
Samsung Galaxy Z Fold 6 Leak: A Wider Outer Display and Sharper Corners Reveal New Design Direction

Leaked screen protectors for the Galaxy Z Fold 6 suggest a wider outer display and a more angular design
mdo
Blackview's BL9000 Pro: A Rugged Smartphone with 5G, Thermal Imaging, and Optical Image Stabilization

A New Era in Rugged Smartphones with High-Resolution Thermal Imaging and High-Performance Hardware
LEAK - Lenovo ThinkPad T14 Gen 5: First Look at AMD's New Strix Point APUs

Leaked Brochure Reveals Ryzen 8050 Naming, Enhanced AI Performance, and Zen 5 Architecture
mdo
Beelink Launches SEi14 Mini PC with Intel Meteor Lake Processor

New Mini PC Offers USB4, Expandable RAM, and a Unique Dustproof Design
mdo
GForce Software Releases the Legendary Oberheim DMX as a Plugin

Classic 80s Drum Machine Brought to Life for the Modern Producer
mdo
Exploring the Cyma Forma ALT: An Innovative Synthesizer with a Pin Matrix-Based Modulation Engine

A New Analog Synth for Rich Soundscapes
mdo