Chips Powering AI Could Expose Data

Chips Powering AI Could Expose Data

Just as the world was getting used to having AI everywhere, we learn the bad boys are still up to their dirty tricks.

The friendly hackers at Trail of Bits have discovered an exploit in GPUs, graphics processing units, that are used to power most of the world’s AI systems.

What Are GPUs?

GPUs are microprocessors; microchips, specifically designed for manipulating computer graphics. Powerful GPUs make your gameplay in League of Legends and FortNite buttery smooth and bright.

GPUs are increasingly the go-to microprocessor for AI computing. GPUs are well suited for AI because GPUs execute math functions powering AI a lot faster than traditional CPUs like your Intel or AMD processor running your computer.

LeftOverLocals: The AI Exploit

LeftOverLocals is an exploit causing programs using AI functionality to leak their data because how data is processed in GPUs. LeftOverLocals works by exploiting computers’ ability to run multiple applications and even operating systems simultaneously.

Modern CPUs and operating systems have built-in safeguards preventing one application from reading memory owned and modified by another application.

Many GPUs don’t have protections safeguarding application data from each other. LeftOverLocals can read the data stored in the GPU for multiple applications using the chip. This is how they can sniff out data when applications are using GPU to perform AI operations.

Don’t Panic, Unless You Should

LeftOverLocals can’t exploit your computer remotely. An attacker would need to have access to your computer and install LeftOverLocals. If your machine is properly patched, and you’re not giving hackers access to computer, you should be okay.

So don’t panic.

But…

Since LeftOverLocals exploits actual hardware, millions of Apple devices and computers using Qualcomm and AMD chips, potentially billions of computing devices are susceptible to the exploit. This is an exploit that can’t be patched directly on the chip.

For its part, Apple has said its new M3 processor fixes the issue LeftOverLocals exploits.

Ha, another forced upgrade.

To protect yourself, keep your phones updated and your computers patched.