A new side-channel attack named 'TeeFail' has been discovered, targeting Intel's Software Guard Extensions (SGX) to leak sensitive data from secure enclaves. This attack exploits vulnerabilities in the SGX architecture, allowing attackers to bypass security measures and extract confidential information. Researchers demonstrated that TeeFail can compromise the integrity and confidentiality of SGX-protected applications, posing significant risks to users relying on this technology for secure computing. The attack leverages subtle timing and cache-based side channels to infer data processed within the enclave, highlighting the need for enhanced security mechanisms and patches from Intel. This discovery underscores the ongoing challenges in securing hardware-based trusted execution environments against sophisticated side-channel exploits. Organizations using Intel SGX should stay informed about updates and apply recommended mitigations promptly to protect sensitive workloads.
This Cyber News was published on thehackernews.com. Publication date: Tue, 28 Oct 2025 22:14:03 +0000