Some companies are just hopeless.

I can guarantee one of the companies I previously worked for still has the same passwords on everything with their generic shared admin accounts.

They provide Cyber Security services.

That’s not how this works.

The vulnerability is all on the CPU side. The GPU workloads being referenced are only vulnerable on the CPU instruction set used to pass workloads to the GPU.

Talking about CPU and GPU workloads as entirely separate in this context is misleading as the vulnerability is with CPU code execution that passes tasks to the GPU.

The GPU is not vulnerable to this particular attack, only the CPU is.

As you can see here impacted hardware is all CPU side, you can also read about how the proposed attacks work.

https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/spectre.html