Intel SGX is vulnerable to an unfixable flaw that can steal crypto keys and more Just when you thought it was secure again, Intel's digital vault falls to a new attack.
By Dan Goodin
For the past 26 months, Intel and other CPU makers have been assailed by Spectre, Meltdown, and a steady flow of follow-on vulnerabilities that make it possible for attackers to pluck passwords, encryption keys, and other sensitive data out of computer memory. On Tuesday, researchers disclosed a new flaw that steals information from Intel's SGX, short for Software Guard eXtensions, which acts as a digital vault for securing users' most sensitive secrets.