A new side-channel attack impacting multiple generations of Intel CPUs has been discovered, allowing data to be leaked through the EFLAGS register. The attack works as a side channel to Meltdown, a critical security flaw discovered in 2018, impacting many x86-based microprocessors. The attack is carried out in two phases, the first being to trigger transient execution and encode secret data through the EFLAGS register, and the second is to measure the execution time of the KCC instruction to decode the data. The researchers note that this timing attack isn’t as reliable as cache-state side-channel methods, and to get better results in recent chips, the attack would have to be repeated thousands of times.
Android users have been warned of 36 dangerous apps which can steal important details like their location, Wi-Fi information and more. Google Play Store has launched a crackdown and banned 36 of these apps. McAfee has informed about the apps in a blog post saying that,"The infected applications come from various Android application stores. More than 100 million downloads have been tracked through Google Play." If you have downloaded these 36 apps, then delete them now.