Intel warns of data center slow down following ZombieLoad fix
Intel has warned that data centers using certain processor chips could face a performance slow down following a patch to a security flaw dubbed ZombieLoad.
The vulnerability is the most notable of 79 fixed during Microsoft’s Patch Tuesday. The processor logic flaw affects operating systems running x86 chips and allows computer programs to ‘steal’ data from one another.
ZombieLoad shares similarities with last year’s Spectre, Meltdown and Foreshadow bugs. If the vulnerability were exploited, it could allow attackers to spy on any Intel Core or Xeon-branded central processing unit (CPU) released since 2011.
Vulnerabilities also extend to the cloud; supposedly isolated virtual machines (VMs) could read data from another— posing significant rusk to environments where multiple customers’ VMs are on the same server. AWS, Azure and Google Cloud are some of the major cloud computing platforms that use the technology in question.
YOU MIGHT LIKE
Intel & Facebook team up on pre-trained AI chip
As explained by TechCrunch’s Zack Whittaker, ZombieLoad allows hackers to “exploit design flaws, rather than inject malicious code”.
Reporting the bugs to Intel a month ago, researchers found that flaws could be exploited to view which websites a person is browsing, but had the capability to grab passwords and access tokens.
While attacks of this kind are “a very complex undertaking” says Intel, the computing firm has issued microcode patches for vulnerable processors and the flaw will be mitigated in future chip production.
However, it has cautioned that the patch— as with those previously— could have a varying impact on processor performance.
Before Spectre and Meltdown fixes, I was able to record in 1080p 60fps (but didn’t often record at that frame rate anyway). After the fixes, I could not record anything similar without lag in 1080p 60fps.
— Sonicrush007 🌐 (@Sonicrush007) May 14, 2019
Intel expects that consumer devices could see a 3 percent performance decline, while data centers could see as much as a 9 percent impact.
Intel stated that the impact of the patch would largely be unnoticeable, but said the biggest performance hit could be felt by data centers handling tasks that use Java.