Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

Intel TDX Vulnerability Breaks Isolation

January 28, 2025
Reading Time: 2 mins read
in Alerts
Intel TDX Vulnerability Breaks Isolation

Researchers from IIT Kharagpur and Intel Corporation have discovered a critical security vulnerability in Intel Trust Domain Extensions (TDX), a technology designed to isolate virtual machines (VMs) within secure environments. TDX aims to provide robust security by ensuring full isolation between the memory, computation, and CPU state of a Trust Domain (TD) and the Virtual Machine Manager (VMM). However, the study reveals that the hardware performance counters (HPCs), used for performance monitoring, can be exploited to break this isolation. This allows attackers to gain insights into the operations of a TD, undermining the core promise of TDX to provide a secure execution environment.

The vulnerability arises when a TD and VMM share the same core, creating resource contention that reveals variations in HPC metrics like branch misses, CPU cycles, and cache load misses. These variations are accessible to the VMM, which can then exploit the data to distinguish between idle and active TDs. Researchers demonstrated that by analyzing HPC metrics, they could fingerprint running processes and extract sensitive details about machine learning inference tasks.

This breach shows that TDX’s current protections are inadequate, especially when the TD and VMM compete for the same hardware resources.

The researchers further revealed that this vulnerability could enable sophisticated attacks, including process fingerprinting and class leakage in machine learning models. By using HPC data, they were able to identify distinct patterns in UnixBench workload processes running within a TD with near-perfect classification accuracy. Additionally, the study showed that HPC monitoring during machine learning model inference on image datasets could lead to class leakage, where sensitive model outputs are exposed to malicious VMMs. This is particularly alarming as it compromises the confidentiality of machine learning models and sensitive data.

The findings highlight the urgent need for Intel to address these vulnerabilities within TDX’s architecture. Despite memory encryption and restricted access controls, the current design still allows critical internal TD information to leak through HPCs, making side-channel attacks feasible. While TDX offers enhanced security over previous technologies like Intel SGX, this vulnerability demonstrates the need for further architectural improvements to prevent covert channels and ensure the security of sensitive workloads in virtualized environments. Without these enhancements, TDX’s effectiveness as a trusted execution technology remains compromised.

Reference:
  • Intel Trust Domain Extensions Flaw Exposes Sensitive Data to Side Channel Attacks
Tags: Cyber AlertsCyber Alerts 2025CyberattackCybersecurityJanuary 2025
ADVERTISEMENT

Related Posts

Stealth Malware Targets Fortinet Firewalls

Spyware in App Stores Steals Your Photos

June 23, 2025
Stealth Malware Targets Fortinet Firewalls

Prometei Botnet Attacks Servers for Crypto

June 23, 2025
Stealth Malware Targets Fortinet Firewalls

Stealth Malware Targets Fortinet Firewalls

June 23, 2025
New Godfather Trojan Hijacks Banking Apps

Winos 4.0 Malware Hits Taiwan Via Tax Phish

June 20, 2025
New Godfather Trojan Hijacks Banking Apps

New Godfather Trojan Hijacks Banking Apps

June 20, 2025
New Godfather Trojan Hijacks Banking Apps

New Amatera Stealer Delivered By ClearFake

June 20, 2025

Latest Alerts

Spyware in App Stores Steals Your Photos

Stealth Malware Targets Fortinet Firewalls

Prometei Botnet Attacks Servers for Crypto

Winos 4.0 Malware Hits Taiwan Via Tax Phish

New Godfather Trojan Hijacks Banking Apps

New Amatera Stealer Delivered By ClearFake

Subscribe to our newsletter

    Latest Incidents

    Aflac Hacked in Spree on Insurance Firms

    CoinMarketCap Doodle Hack Steals Crypto

    UK’s Oxford Council Legacy Systems Breached

    Massive Leak Exposes 16 Billion Credentials

    Chinese Spies Target Satellite Giant Viasat

    German Dealer Leymann Hacked Closes Stores

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial