Black Hat USA 2025 | Conjuring Hardware Failures to Breach CPU Privilege Boundaries

Catastrophic hardware failures. From an aging I/O device to cosmic ray bit flips, memory degradation to CPU fires. When an unrecoverable hardware error is detected, the common platform response is to generate a Machine Check Exception, and shut down before the problem gets worse. In this talk, we'll see what happens when we circumvent all the traditional fail safes. What happens when, instead of exceptionally rare failures from natural causes, we deliberately create these fatal events from software. When instead of a platform shutdown, we force the system to limp along, damaged but alive. We'll show how carefully injecting these signals during privileged CPU operations can disrupt secure transitions, how those disruptions progress to cascading system failures, and how to ride the chaos to gain hardware privilege escalation. Finally, we'll see how to undo the damage, recover from the unrecoverable, and let the system continue as if nothing happened - now with a foothold in privileged space, all through hardware failure events synthesized through software-only attacks. We'll conclude by showing how to use this previously unknown vector against [redacted], to reveal another [redacted] hardware vulnerability, and walk through a brave new world of machine check research opportunities - for both attackers and defenders - across technologies and architectures. By: Christopher Domas | Independent Security Researcher, Dazzle Cat Duo Presentation Materials Available at: https://ift.tt/4C2KB1D

source https://www.youtube.com/watch?v=MMaRq6ac41c