GoFetch: The new threat Hunting Apple’s Silicon – A Quick Scoop.


GoFetch: The new threat Hunting Apple’s Silicon – A Quick Scoop.

A new side-channel attack, dubbed “GoFetch,” has surfaced. Specifically, it targets Apple’s M1, M2, and M3 processors. Alarmingly, it can snatch encrypted cryptographic keys from the CPU’s cache. Consequently, this revelation has sparked worry in the tech community.

The GoFetch Attack

The GoFetch attack exploits a flaw in Apple Silicon chips, allowing attackers to steal cryptographic keys and access user data. This unpatchable vulnerability could significantly impact encryption performance.

In simpler terms, the GoFetch attack uses a flaw in Apple Silicon chips. This flaw lets attackers steal keys that encrypt data. Regrettably, there’s no known fix for this flaw yet. As observers of the tech industry, it’s crucial to stay informed about such threats to better understand their potential impact on data security. This awareness equips us with the knowledge to navigate and report on these security challenges effectively.

Impact on Apple Silicon

Apple Silicon chips, including the M1, M2, and M3, are affected. The flaw could let hackers bypass the computer’s encryption and access its security keys. It’s a serious issue we need to tackle.

Threat to Cryptographic Keys

Cryptographic keys, essential for data security, are at risk. The GoFetch attack can seize these keys from the CPU’s cache, potentially leading to unauthorized access to sensitive, encrypted data.

The Challenge of Patching

The vulnerability is unpatchable due to its origin in the silicon’s microarchitectural design. Mitigation can only be achieved by building defenses into third-party cryptographic software, which could degrade M-series performance.


The GoFetch attack is a serious threat to Apple Silicon CPUs. It can steal cryptographic keys, potentially leading to data breaches. Mitigation strategies exist but could affect the performance of M-series chips. The tech community must stay alert and proactive in addressing this issue.

Therefore, it’s crucial for the tech community to stay alert and proactive in tackling this issue.

You think you have a story worth everyone’s time? SUBMIT A STORY and we will publish it.

Share this content:

Post Comment