TEE.Fail Attack Extracts Secrets from Trusted Execution Environments

Researchers developed TEE.Fail, a side-channel attack targeting trusted execution environments (TEEs) in CPUs like Intel SGX and AMD SEV-SNP. The attack exploits DDR5 memory bus interposition to extract cryptographic keys and compromise confidential virtual machines. This method, costing under $1,000, showcases vulnerabilities in modern TEE implementations, emphasizing the need for enhanced security measures.

Latest mentioned: 10-28

Earliest mentioned: 10-28

Sources

bleepingcomputer.com thehackernews.com cybersum.net

Also Read

BRONZE BUTLER Exploits LANSCOPE Zero-Day for Data Theft

In mid-2025, Secureworks CTU researchers uncovered a sophisticated cyber campaign by the BRONZE BUTLER group, exploiting a zero-day vulnerability in Motex LANSCOPE Endpoint Manager. This group, active since 2010, has a history of targeting specific organizations and government entities. The vulnerability, CVE-2025-61932, allows remote attackers to execute arbitrary commands with SYSTEM privileges. The campaign involved deploying Gokcpdoor and Havoc C2 frameworks, using legitimate tools like goddi and 7-Zip for data exfiltration. International cybersecurity authorities quickly responded, highlighting the severity of the threat.

10-31Read more →