Experimental News Clipping Site

Tag: channel attacks

  • Slashdot: Chrome To Patch Decades-Old ‘Browser History Sniffing’ Flaw That Let Sites Peek At Your History

    by

    Kurt Seifried
    in

    Source URL: https://yro.slashdot.org/story/25/04/12/2054251/chrome-to-patch-decades-old-browser-history-sniffing-flaw-that-let-sites-peek-at-your-history?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Chrome To Patch Decades-Old ‘Browser History Sniffing’ Flaw That Let Sites Peek At Your History Feedly Summary: AI Summary and Description: Yes Summary: The article discusses a significant update in the Chrome browser that aims to mitigate a long-standing privacy attack known as “browser history sniffing.” This side-channel attack…

  • Hacker News: Constant-Time Code: The Pessimist Case [pdf]

    by

    Kurt Seifried
    in

    Source URL: https://eprint.iacr.org/2025/435.pdf Source: Hacker News Title: Constant-Time Code: The Pessimist Case [pdf] Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the challenges and pessimistic outlook surrounding the implementation of constant-time coding in cryptographic software, especially in the light of modern compiler optimization techniques and the increasing complexity of CPU architectures.…

  • Hacker News: Syd: An Introduction to Secure Application Sandboxing for Linux [video]

    by

    Kurt Seifried
    in

    Source URL: https://fosdem.org/2025/schedule/event/fosdem-2025-4176-syd-an-introduction-to-secure-application-sandboxing-for-linux/ Source: Hacker News Title: Syd: An Introduction to Secure Application Sandboxing for Linux Feedly Summary: Comments AI Summary and Description: Yes Summary: The text introduces Syd, a GPL-3 licensed application kernel for Linux, designed for securing applications through advanced sandboxing techniques. Its modern architecture and features address critical vulnerabilities and enhance security…

  • The Register: SLAP, Apple, and FLOP: Safari, Chrome at risk of data theft on iPhone, Mac Silicon

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/01/29/flop_and_slap_attacks_apple_silicon/ Source: The Register Title: SLAP, Apple, and FLOP: Safari, Chrome at risk of data theft on iPhone, Mac Silicon Feedly Summary: It’s another cousin of Spectre, here to read your email, browsing history, and more Many recent Apple laptops, desktops, tablets, and phones powered by Cupertino’s homegrown Silicon processors can be exploited…

  • Slashdot: Apple Chips Can Be Hacked To Leak Secrets From Gmail, ICloud, and More

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/01/28/2140207/apple-chips-can-be-hacked-to-leak-secrets-from-gmail-icloud-and-more?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Apple Chips Can Be Hacked To Leak Secrets From Gmail, ICloud, and More Feedly Summary: AI Summary and Description: Yes Summary: The text discusses newly discovered vulnerabilities in Apple-designed chips that potentially leak sensitive data through side-channel attacks leveraging speculative execution. It highlights significant security issues that pose risks…

  • Hacker News: New Speculative Attacks on Apple CPUs

    by

    Kurt Seifried
    in

    Source URL: https://predictors.fail/ Source: Hacker News Title: New Speculative Attacks on Apple CPUs Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses side-channel attacks, which exploit hardware-level vulnerabilities to extract sensitive information, highlighting the risks associated with shared CPU resources. This is particularly relevant for security professionals focused on hardware security and…

  • Hacker News: New Apple CPU side-channel attacks steals data from browsers

    by

    Kurt Seifried
    in

    Source URL: https://www.bleepingcomputer.com/news/security/new-apple-cpu-side-channel-attack-steals-data-from-browsers/ Source: Hacker News Title: New Apple CPU side-channel attacks steals data from browsers Feedly Summary: Comments AI Summary and Description: Yes Summary: A recent disclosure by security researchers reveals critical side-channel vulnerabilities in modern Apple processors, specifically regarding the FLOP and SLAP attacks. These flaws exploit speculative execution mechanisms to leak sensitive…

  • Hacker News: Fun with Timing Attacks

    by

    Kurt Seifried
    in

    Source URL: https://ostro.ws/post-timing-attacks Source: Hacker News Title: Fun with Timing Attacks Feedly Summary: Comments AI Summary and Description: Yes Summary: The text provides an in-depth examination of a potential vulnerability within a simple JavaScript function used to compare user input against a secret value. It emphasizes how timing attacks can exploit non-constant-time comparison functions like…

  • Hacker News: Uncovering Real GPU NoC Characteristics: Implications on Interconnect Arch.

    by

    Kurt Seifried
    in

    Source URL: https://people.ece.ubc.ca/aamodt/publications/papers/realgpu-noc.micro2024.pdf Source: Hacker News Title: Uncovering Real GPU NoC Characteristics: Implications on Interconnect Arch. Feedly Summary: Comments AI Summary and Description: Yes Summary: The text provides a detailed examination of the Network-on-Chip (NoC) architecture in modern GPUs, particularly analyzing interconnect latency and bandwidth across different generations of NVIDIA GPUs. It discusses the implications…

  • The Register: Boffins trick AI model into giving up its secrets

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/12/18/ai_model_reveal_itself/ Source: The Register Title: Boffins trick AI model into giving up its secrets Feedly Summary: All it took to make an Google Edge TPU give up model hyperparameters was specific hardware, a novel attack technique … and several days Computer scientists from North Carolina State University have devised a way to copy…