Skip to content
July 4, 2026
  • Linkedin
  • Twitter
  • Facebook
  • Youtube

Daily CyberSecurity

Zero-hour alerts. Unmatched analysis.

Primary Menu
  • Home
  • CVE Watchtower
  • Cyber Criminals
  • Data Leak
  • Linux
  • Malware
  • Vulnerability
  • Submit Press Release
  • Vulnerability Report
Light/Dark Button
  • Home
  • News
  • Technology
  • 22-year-old Google cybersecurity researcher tell how to find CPU bugs
  • Technology

22-year-old Google cybersecurity researcher tell how to find CPU bugs

Do Son January 18, 2018 5 minutes read
Jann Horn
Add as a preferred
source on Google

On January 17, Bloomberg published an article on Wednesday, introduced the first report of Intel’s major chip loopholes on Google genius researcher Jann Horn. Horn gifted, childhood good at mathematics and physics, in high school, found the school computer network security issues, which made his teacher dumbfounded.

 

Jann Horn, Source: Stiftung Jugend forscht e. V.

 The article said Horn accidentally discovered the largest chip loophole in the history of the Intel processor manual, which is inseparable from his firm will and extraordinary talent.

The following is a summary of the article:

In 2013, a teenager named Horn participated in a reception hosted by German Chancellor Angela Merkel in Berlin. At that time, he and another 64 German teenagers performed well in a government-run competition. The competition is designed to encourage students to engage in scientific research.

Horn really went on the path of scientific research. Last summer, as a 22-year-old cybersecurity researcher, he first reported the biggest chip loophole found in history. Now, the industry still did not get rid of the impact of his discovery. From now on, the processor will use a different design. The discovery made him a celebrity, even though he himself did not. This can be seen at a meeting held last week in Zurich: At the time, he was warmly received by the organizers of the conference and received many questions.

Interviews with Horn and those who know him show that firm will and extraordinary talent helped Horn find the loophole that has existed for more than a decade but has never been noticed. The vulnerability could result in the attack on most PCs, the Internet, and smartphones.

Several months after Horn unbelievably discovered the loophole, other researchers discovered. “We have a few teams and we have a clue as to where to start. He is a little startled from scratch,” says Daniel Gruss, a member of the Austrian Graz Technical University team, who later uncovered what he now knows Meltdown and Specter vulnerabilities.

When Horn began reading the thousands of pages of Intel processor manuals at the end of April last year, he did not try to find a major loophole in the world’s computer chips. He said he was just trying to make sure that the computer hardware was able to deal with a particularly large amount of digital arithmetic code that he had written.

However, Horn works on the Google Project Zero team. The elite department is made up of top talent looking for “zero-day” and unexpected design vulnerabilities that could invade computer systems by hackers.

So, he began to carefully study how the chip performs speculative execution. Speculative execution is a speed-boosting technique that allows the processor to guess a portion of the code to be executed in the next step, perform these steps in advance, and grab the data it needs. Horn said Intel’s manual states that if the processor guessed wrongly, then the data fetched by mistake was still stored in the chip cache.

Horn realizes that once this is done, the message may be used by savvy hackers. “At that time, I realized that we were using code patterns that could reveal confidential data,” Horn said in an email. “I was aware at the very least that in theory, it might not only affect what we were writing Code snippet. ”

So he started a further investigation what he called the “gradual process,” and eventually found the loopholes. Horn said he had known about other researchers at the time, including research from the team at the Graz Technical University. The theme of these studies is that a slight difference in the amount of time it takes for the processor to retrieve information may give hackers access to where the information is stored.

Horn discussed the issue with Felix Wilhelm, another young researcher at Google in Zurich. William provided Horn with a similar study he and other researchers had done, which led to Horn’s “debauchery.” The technology being tested by William and other researchers may be reverse-processed, forcing the processor to run new speculative execution routines that are not usually attempted. This fools the chip to retrieve specific data that may be available to hackers.

After accidentally discovering the chip attack, Horn said he consulted with Robert Swiecki, an old Google colleague. Horn had borrowed from Swiecki’s computer and tested some of his thoughts. Swiecki provided him with advice on how best to notify Intel, ARM, and AMD about the vulnerability.

On June 1 last year, Horn told Intel, ARM, AMD informed of this loophole.

Wolfgang Reinfeldt, a Horn computer science teacher at Caecilienschule High School in Oldenburg, Germany, was not surprised at Horn’s success. “In my mind, Horn is brilliant,” he said. Horn had discovered the security problems in the school’s computer network, making Rheinfelter have to admit that made him dumbfounded.

Horn is good in mathematics and physics in his youth. To attend Merkel’s reception in 2013, Horn and an alumnus conceived a way to control the movement of double pendulums. A double pendulum is a well-known math puzzle. The two wrote software that used sensors to predict the movement of double pendulums and used magnets to correct unintended movements. The key to solving this problem is to move the double pendulum regularly. The two eventually finished fifth in the competition and were invited to attend the Merkel reception in Berlin, which initially showed Horn’s personal abilities.

Now, Horn has become a star, at least in the cybersecurity circle like this. On January 11, just one week after the “meltdown” and “ghost” loopholes were announced, a conference on cybersecurity was held in Zurich. While Horn presented his discovery of “melted” and “ghostly” holes in the packed auditorium, his fellow undergraduate researcher gave him a thunderous applause.

Source: Bloomberg

Get Zero-Hour Vulnerability Alerts

Critical CVEs, CVSS scores, and PoC updates — straight to your inbox every week.


We respect your inbox. Unsubscribe anytime.

Related coverage

  • Meta Opens Smart Glasses Platform to Developers and AI
  • Apple vs. EU: AirDrop, AirPlay & Seamless Pairing at Risk in Europe!
  • Beyond OpenAI: Apple Tests Google’s Gemini in Latest iOS Beta
  • NVIDIA Refuses to Pay 15% China Revenue Share Without a Law
  • Firefox Begins Testing In-Browser VPN Feature to Enhance IP Protection for Paid Users

Support Our Threat Intelligence

If you find our CVE report and cybersecurity news helpful, consider supporting our work.

Buy Me a Coffee Logo Buy Me a Coffee PayPal
Crypto QR Code
USDT (TRC20):
TN8BdV8cp4T1Cd28gK9qTAnZknzzuwyUtm
USDT (ERC20):
0x3725e1a7d3bc5765499fa6aaafe307fabcd75bce

Share this article:

Facebook Post LinkedIn Telegram
Written by
@DdoS · Security Researcher

Do Son

Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.

Tags: Jann Horn

Search

Translation

CVE WATCHTOWER
🚨

Receive alerts for vulnerabilities being exploited in the wild.

⚡

Get notified instantly when a Proof of Concept (PoC) exploit is published.

🔍

Access critical info on vulnerabilities even when marked as "RESERVED".

🧠

Insights powered by decades of expertise and global intelligence sources.

🎯

Customize alerts with up to 10 keywords for your specific tech stack.

📊

Export the raw CVE database for SIEM integration and reporting.

Upgrade Package

🚨 Active Exploits in the Wild

  • CVE-2026-48282CVSS 10.0
    ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Restricted...
    Admin intel📅 Updated: Jul 3, 2026
  • CVE-2024-14037CVSS 9.8
    Redsea Cloud eHR contains an arbitrary file upload vulnerability that allows unauthenticated attackers to achieve remote code execution...
    Admin intel📅 Updated: Jul 3, 2026
  • CVE-2026-8451CVSS 8.8
    Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler ADC or NetScaler Gateway is configured...
    Admin intel📅 Updated: Jul 2, 2026
  • CVE-2026-8037CVSS 9.6
    OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to...
    Admin intel📅 Updated: Jul 1, 2026
  • CVE-2026-45659CVSS 8.8
    Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
    CISA KEV📅 Added to KEV: Jul 1, 2026
  • CVE-2026-48558CVSS 10.0
    SimpleHelp versions 5.5.15 and prior and 6.0 pre-release versions contain an authentication bypass vulnerability in the OIDC authentication...
    Admin intelCISA KEV📅 Added to KEV: Jun 29, 2026📅 Updated: Jun 29, 2026
  • CVE-2026-46817CVSS 9.8
    Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File Transmission). Supported versions that are affected...
    Admin intel📅 Updated: Jun 29, 2026
  • CVE-2026-28496CVSS 9.4
    FOSSBilling is a free, open-source billing and client management system. Versions prior to 0.8.0 have a Server-Side Template...
    Admin intel📅 Updated: Jun 25, 2026
Powered by CVE Watchtower

🔴 Live Critical Threats

  • CVE-2026-58426CVSS 9.6
    Gitea Actions Artifacts V4 signed URL HMAC ambiguity allows cross-repository artifact read...
  • CVE-2026-58289CVSS 9.0
    Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based)...
  • CVE-2026-22874CVSS 9.6
    Gitea versions up to and including 1.26.2 have incomplete SSRF protection in...
  • CVE-2026-20896CVSS 9.8
    Gitea Docker image versions up to and including 1.26.2 use REVERSE_PROXY_TRUSTED_PROXIES=* by...
  • CVE-2026-4321CVSS 9.8
    Improper neutralization of special elements used in an SQL command ('SQL injection')...
  • CVE-2026-14544CVSS 9.8
    A flaw was found in HPLIP (HP Linux Imaging and Printing Software)....
  • CVE-2026-9725CVSS 9.1
    The Printcart Web to Print Product Designer for WooCommerce plugin for WordPress...
  • CVE-2026-13768CVSS 10.0
    Gardyn devices expose a privileged iothubowner key. Access to this key will...
  • CVE-2026-57100CVSS 9.9
    Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an...
  • CVE-2026-45499CVSS 9.9
    Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to...
Powered by CVE WATCHTOWER

Get Zero-Hour Vulnerability Alerts

Critical CVEs, CVSS scores, and PoC updates — straight to your inbox every week.

    We respect your inbox. Unsubscribe anytime.

    Our Websites
  • Penetration Testing Tools
  • The Daily Information Technology
  • Daily CyberSecurity

    • About SecurityOnline.info
    • Advertise with us
    • Announcement
    • Contact
    • Contributor Register
    • Login
    • About SecurityOnline.info
    • Advertise on SecurityOnline.info
    • Contact Us

    When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works

    • Disclaimer
    • Privacy Policy
    • DMCA NOTICE
    • Linkedin
    • Twitter
    • Facebook
    • Youtube
    © 2017 - 2026 Daily CyberSecurity. All Rights Reserved.