Apple CPU Vulnerabilities SLAP and FLOP Enable Browser Data Theft

Researchers from the Georgia Institute of Technology have uncovered two critical security vulnerabilities in Apple's recent processors that could potentially expose users to significant data breaches. The vulnerabilities, named SLAP (Speculative Load Address Prediction) and FLOP (False Load Output Prediction), affect modern Apple Silicon chips and could allow attackers to steal sensitive data without requiring physical access to a device.

The SLAP vulnerability specifically impacts Apple's M2 and A15 processors, enabling threat actors to manipulate the processor's memory address prediction mechanism. By strategically "training" the CPU's predictive algorithm, malicious actors can trick the system into accessing unauthorized memory locations, potentially revealing confidential information from web browsers.

Overview of the SLAP attack- Source: slap.fail 

FLOP, which affects Apple's M3, M4, and A17 processors, represents an even more sophisticated attack vector. This vulnerability exploits the processor's Load Value Prediction (LVP) feature, which attempts to guess memory values before they are actually loaded. When these predictions are incorrect, attackers can potentially access and extract sensitive data through carefully crafted computational techniques.

Overview of the attack- Source: flop.fail 

The real-world implications of these vulnerabilities are particularly concerning for users. Researchers demonstrated that these attacks could potentially retrieve sensitive information such as email contents, location data, browsing history, and even personal calendar events. Unlike traditional malware approaches, these attacks can be executed remotely through a malicious webpage, bypassing typical browser security mechanisms.

Apple devices vulnerable to these attacks include a wide range of products released since September 2021, encompassing:

Apple CPUs vulnerable to FLOP attacks- Source: flop.fail

Apple CPUs vulnerable to SLAP attacks- Source: slap.fail

The researchers responsibly disclosed these vulnerabilities to Apple, with SLAP being reported on March 24, 2024, and FLOP on September 3, 2024. Apple has acknowledged the findings and stated that they are analyzing the potential risks. However, as of the latest reports, comprehensive patches have not yet been released.

While the research suggests these vulnerabilities could be exploited, there is currently no evidence of active attacks in the wild. Apple maintains that the issue does not pose an immediate risk to users. Nonetheless, cybersecurity experts recommend staying vigilant and keeping devices updated with the latest security patches.

For users concerned about potential exposure, temporary mitigation strategies include disabling JavaScript in web browsers or being cautious about visiting unfamiliar websites. The full technical details of these vulnerabilities can be found on the dedicated research website established by the Georgia Institute of Technology researchers.

Found this article interesting? Keep visit thesecmaster.com, and our social media page on Facebook, LinkedIn, Twitter, Telegram, Tumblr, Medium, and Instagram and subscribe to receive tips like this. 

You may also like these articles: Here are the 5 most contextually relevant blog posts: