Skip to main content

Zombieload V2 Is Back To Wreak Havoc On Intel Chips

By December 2, 2019May 9th, 2022Technology News

Zombieload is back.  First discovered in May of this year, it was described as a successor to the infamous Meltdown attack. That was a data-leaking side-channel vulnerability that impacted all Intel processor generations from 2011 and beyond.

Intel hasn’t had a good run of late, being beset almost constantly by these kinds of issues, and Zombieload was one of three new MDS variants discovered.

The company struggled to deal with the issue and finally resolved it, much to the relief of a beleaguered user base. Now, a new threat has emerged in the form of Zombieload 2.0. It was discovered by the same group of security researchers who discovered the initial Zombieload flaw, and the issue is being tracked as CVE-2019-11135.

The following chipsets are vulnerable to this type of attack:

  • Ivy Bridge
  • Skylake-S
  • Kaby Lake
  • Kaby Lake-R
  • Coffee Lake-S
  • Coffee Lake-R
  • Broadwell-EP
  • Sandy Bridge-EP
  • Skylake-SP
  • And Cascade Lake

Intel has dubbed this issue as a “Transactional Synchronization Extensions Asynchronous Abort” vulnerability, or TSX TAA, for short. In order to exploit the flaw, the hacker has to be onsite with the machine and have the ability to monitor the execution time of TSX regions. That is, in order to infer memory state by comparing abort execution times.

The flaw impacts desktops, laptops and cloud computers running the affected chipsets. The limitations surrounding the issue make it relatively difficult (but certainly not impossible) to pull off, which is perhaps the only silver lining in the discovery.

The other bit of good news is this:  Intel has already released microcode patches to address the issue. So if you have a machine that’s running one of the at-risk chipsets, you can get the fix right now. Although it’s unlikely it could be used against you, patching the vulnerability is highly recommended.

Jason Manteiga

Jason J. Manteiga, Vice President of Olmec Systems, has been part of the company for over the past 20 years. He believes that having a great work environment and supportive team, is the ultimate key to success. Since being in the IT realm for over 25 years, Jason, along with Olmec Systems, has been on the Inc. 5000 “List of America’s Fastest Growing Private Companies” and Channel Futures MSP 501 “Top Managed Service Providers in North America,” along with other awards and nominations. Jason earned his Bachelor Degree in Information Systems from the New Jersey Institute of Technology. He also holds certifications in Microsoft MCSE, VMWare VCP, and Cisco CCNA. In his spare time, Jason is a contributor for The Center for Social & Legal Research (Privacy Exchange) and a member of the Morris County Chamber of Commerce. His hobbies include cycling and kayaking. He currently lives in New Jersey with his wife, two daughters and son.