A team of university researchers in the United States has discovered a significant security vulnerability within Apple’s M series chips that poses a potential threat to the encryption key safety of MacBook users. On March 21, the researchers released a report detailing how this flaw could be exploited through a side-channel attack, effectively enabling cyber attackers to capture critical end-to-end encryption keys while the chips execute common cryptographic protocols.
Unpatchable Chip Design Flaw Exposed
This vulnerability cannot be resolved through conventional software updates due to its inherent presence in the chip’s microarchitectural design. Mitigating the risk would necessitate the implementation of external cryptographic software, potentially impairing the chips’ performance. This concern is particularly acute for devices with M1 and M2 chips.
Community Reacts to Cryptographic Concerns
With the publication of these findings, Mac users have taken to online forums to discuss the potential implications for their device security, particularly with regards to password keychains. One user speculated that Apple might address the issue at the operating system level, which would alleviate their concerns.
Another forum participant noted that Apple had previous knowledge of this security gap and hinted that an added instruction in the upcoming M3 chip might be an attempt to counteract this vulnerability. They referenced prior research named “Prophecy,” which dates back to 2022.
This revelation comes at a critical time as Apple engages in a legal battle with the US Department of Justice over App Store practices and crypto wallet access restrictions that allegedly suppress competition and innovation in the tech industry.