M1RACLES is a covert channel vulnerability in the Apple Silicon “M1” chip. A flaw in the design of the Apple Silicon “M1” chip allows any two applications running under an OS to covertly exchange data between them, without using memory, sockets, files, or any other normal operating system features. This works between processes running as different users and under different privilege levels, creating a covert channel for surreptitious data exchange. The vulnerability is baked into Apple Silicon chips, and cannot be fixed without a new silicon revision.
M1RACLES flaw looks more embarrassing than dangerous
Apple's Arm-based M1 chip, much ballyhooed for its performance, contains a design flaw that can be exploited to allow different processes to quietly communicate with one another, in violation of operating system security principles. M1RACLES, as the bug has been called, doesn't pose a major security risk because information leakage is already possible through a variety of other side channels and inter-process communication. It does, however, add another way for malware already running on affecte...