Skip to content
Finbold Logo

Apple M-series flaw leaves your Mac’s encryption keys exposed

Apple M-series flaw leaves your Mac's encryption keys exposed
Darija Gvozderac
Darija Gvozderac
Technology

A recent academic study has identified a significant security vulnerability within Apple’s M-series chips. 

This potentially unpatchable flaw could compromise encryption keys, raising concerns for user data security on M-powered Macs. 

We unpack the technical details and explore the consequences for Apple and its customers.

Picks for you

What’s going on with the Dollar vs. Japanese yen (USD/JPY)? 47 mins ago
Trudeau proposes 67% Capital Gains Tax for stocks and crypto 52 mins ago
Google Gemini predicts Silver price for the end of 2024 1 hour ago
Andrew Tate says Bitcoin is only choice as ‘dollar’s f**ked’ 3 hours ago

Major hardware flaw found in Apple M-Series chips

This hardware-based flaw, termed GoFetch, is particularly concerning because it cannot be easily fixed with a software patch.

The vulnerability lies in the M-series chips’ data memory-dependent prefetcher (DMP), a feature designed to speed up performance. 

However, attackers can exploit the DMP to leak sensitive information through memory access patterns, potentially compromising encryption keys used to protect your data. 

This vulnerability affects both traditional encryption algorithms and those designed to be resistant to future quantum computers.

The GoFetch attack is particularly worrisome because it can be executed by a regular user application, not requiring administrator privileges. 

Researchers were able to extract various cryptographic keys, including those used for secure communication and data storage.

So, what does this mean for you?

Apple has yet to comment on the GoFetch research. While the company may develop software mitigations in the future, some existing solutions could significantly impact performance. 

The latest M3 chip offers the option to disable the DMP, but the performance trade-off remains unclear.

In the meantime, users should be vigilant and keep an eye out for updates from Apple that address this vulnerability.  

The researchers also recommend consulting security professionals to determine if specific encryption protocols used on your Mac are at risk.

Protecting your data until a solution arrives

The big question remains: How will Apple address this hardware flaw and ensure the continued security of M-series Macs? 

With the industry grappling with the implications of GoFetch, users can expect ongoing developments in the coming months. 

As always, staying updated on security patches and best practices is crucial for protecting your data.

Best Crypto Exchange for Intermediate Traders and Investors

  • Invest in 70+ cryptocurrencies and 3,000+ other assets including stocks and precious metals.

  • 0% commission on stocks - buy in bulk or just a fraction from as little as $10. Other fees apply. For more information, visit etoro.com/trading/fees.

  • Copy top-performing traders in real time, automatically.

  • eToro USA is registered with FINRA for securities trading.

logo
30+ million Users
Get Started
eToro is a multi-asset investment platform. The value of your investments may go up or down. Your capital is at risk. eToro USA LLC does not offer CFDs, only real Crypto assets available. Don’t invest unless you’re prepared to lose all the money you invest.

Read Next:

Weekly Finance Digest

By subscribing you agree with Finbold T&C’s & Privacy Policy

Related posts

Darija Gvozderac
Darija Gvozderac
Technology