Skip to main content

Digital Trends may earn a commission when you buy through links on our site. Why trust us?

Billions of Intel CPUs are leaking passwords and killing performance

An Intel processor over a dark blue background.
Intel

A scary vulnerability has recently been discovered in some Intel processors, and while the best CPUs are not affected, billions of chips could be. According to the researcher who first spotted the Downfall vulnerability, “everyone on the internet is affected.” This is made worse by the fact that a skilled hacker could steal some of the most sensitive data from affected computers, including passwords.

Downfall was discovered by a senior research scientist from Google, Daniel Moghimi, who created a page dedicated to it, detailing how it works and what it can possibly do. Downfall targets the Gather Instruction in Intel chips, which normally helps the CPU quickly access various data spread all over different parts of its memory. However, with the flaw, internal hardware registers can be exposed to software. If the software is compromised, it’s possible that hackers could seize sensitive data from the PC.

Recommended Videos

The affected CPUs all belong to Intel’s mainstream and server processor lineups, starting from Skylake all the way up to Rocket Lake. This means that, unless you’ve upgraded your CPU in the last few years, you’re definitely affected, but you can check out Intel’s full list of chips that are vulnerable.

As Moghimi notes,  you don’t even need to own an Intel processor to potentially be affected. As Intel dominates the server market, cloud computing environments might be hit by this as well, where “malicious customer could exploit the Downfall vulnerability to steal data and credentials from other customers who share the same cloud computer,” says Moghimi.

While pulling off an actual hack with Downfall seems tricky, there’s a lot at stake, which is why Intel has already released a fix — but the downside is a massive performance loss. Intel was quick to say it would be releasing new microcode for the chips that are affected, and it recommended that users update their firmware to prevent being affected by Downfall. It’s here now, but as noted by Phoronix, the price to pay for not having your password leaked is massive.

A person using a laptop with a set of code seen on the display.
Sora Shimazaki / Pexels

Intel itself estimated a performance loss of up to 50%, with AVX instructions most affected. The good news is that for most users, this won’t be an issue, but the bad news is that AI-related workloads and overall high-performance computing (HPC) tasks are hit pretty hard.

Phoronix tested the impact on Linux with four different CPUs, including a Xeon Platinum 8380, Xeon Gold 6226R, and an Intel Core i7-1165G7. Performance losses range from 6% up to 39%, which, while not as bad as Intel predicted, is still not great.

You don’t need to update your processor if you’re not worried about being affected by Downfall. While Moghimi recommends it, Intel itself allows users to opt out of the extra mitigation in order to restore the full performance of their CPU. If you’re not using your PC for HPC tasks, it sounds like you might as well keep the mitigation on, but Intel has detailed the process of turning it off if you’d rather get rid of it.

Monica J. White
Monica is a UK-based freelance writer and self-proclaimed geek. A firm believer in the "PC building is just like expensive…
Despite patches, Intel CPUs still struggle with Black Myth: Wukong
A stance in Black Myth: Wukong.

Intel's best processors have been the victim of a huge instability fiasco for a long time now. Still, the latest BIOS update was meant to resolve things for those who still have functional 13th- and 14th-gen CPUs.

Unfortunately, it appears that Intel is still yet to leave all the problems in the rearview mirror. According to the developers of the popular new title Black Myth: Wukong, gamers with Intel-based CPUs might struggle with crashes.

Read more
This new patch might finally fix the issues with Intel CPUs
Intel's 14900K CPU socketed in a motherboard.

The problems with Intel's best processors have been going on for months, and Intel's response has been measured. However, at long last, a fix might be imminent -- provided that this one actually helps. A couple of motherboard vendors have already announced BIOS updates that address issues within the microcode of Intel's 13th- and 14th-gen CPUs. With more to come, things might be looking up for the first time in a long time.

ASRock and MSI both announced BIOS updates, and those patches are already available for some motherboards. The following MSI boards are getting the update first:

Read more
Intel finally delivers some much-needed good news on its CPUs
Intel's CEO Pat Gelsinger announcing that Clearwater Forest CPUs have taped out.

After a challenging second-quarter earnings call and issues with its Raptor Lake CPUs, Intel has some positive news. The company’s first 18A chips have returned from the fab and successfully booted operating systems. This includes the Panther Lake for PCs and Clearwater Forest server CPUs.

Panther Lake will follow this year's Lunar Lake and Arrow Lake launches as Intel's new family of mobile processors, both likely for late 2025. On the other hand, Clearwater Forest will launch as a successor to Sierra Forest all-E-core Xeon parts that were launched back in June.

Read more