Researchers attack AMD's Infinity Fabric to bypass hardware security protections with 'Fabricked' — flaw lets malicious cloud hosts silently read confidential VM memory and forge attestation reports
Researchers have discovered a software-only vulnerability named "Fabricked" that bypasses AMD's SEV-SNP confidential computing protections on EPYC processors. The exploit targets the Infinity Fabric interconnect during the boot process, allowing malicious cloud hosts to gain unauthorized read and write access to virtual machine memory. This flaw also enables the forging of attestation reports, undermining the trust tenants place in their cloud environments. AI
IMPACT Undermines trust in cloud environments that rely on hardware-level security for confidential computing.