Experimental News Clipping Site

Tag: side-channel attack

  • Hacker News: New Speculative Attacks on Apple CPUs

    by

    Kurt Seifried
    in

    Source URL: https://predictors.fail/ Source: Hacker News Title: New Speculative Attacks on Apple CPUs Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses side-channel attacks, which exploit hardware-level vulnerabilities to extract sensitive information, highlighting the risks associated with shared CPU resources. This is particularly relevant for security professionals focused on hardware security and…

  • Hacker News: New Apple CPU side-channel attacks steals data from browsers

    by

    Kurt Seifried
    in

    Source URL: https://www.bleepingcomputer.com/news/security/new-apple-cpu-side-channel-attack-steals-data-from-browsers/ Source: Hacker News Title: New Apple CPU side-channel attacks steals data from browsers Feedly Summary: Comments AI Summary and Description: Yes Summary: A recent disclosure by security researchers reveals critical side-channel vulnerabilities in modern Apple processors, specifically regarding the FLOP and SLAP attacks. These flaws exploit speculative execution mechanisms to leak sensitive…

  • Hacker News: Fun with Timing Attacks

    by

    Kurt Seifried
    in

    Source URL: https://ostro.ws/post-timing-attacks Source: Hacker News Title: Fun with Timing Attacks Feedly Summary: Comments AI Summary and Description: Yes Summary: The text provides an in-depth examination of a potential vulnerability within a simple JavaScript function used to compare user input against a secret value. It emphasizes how timing attacks can exploit non-constant-time comparison functions like…

  • Hacker News: Uncovering Real GPU NoC Characteristics: Implications on Interconnect Arch.

    by

    Kurt Seifried
    in

    Source URL: https://people.ece.ubc.ca/aamodt/publications/papers/realgpu-noc.micro2024.pdf Source: Hacker News Title: Uncovering Real GPU NoC Characteristics: Implications on Interconnect Arch. Feedly Summary: Comments AI Summary and Description: Yes Summary: The text provides a detailed examination of the Network-on-Chip (NoC) architecture in modern GPUs, particularly analyzing interconnect latency and bandwidth across different generations of NVIDIA GPUs. It discusses the implications…

  • The Register: Boffins trick AI model into giving up its secrets

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/12/18/ai_model_reveal_itself/ Source: The Register Title: Boffins trick AI model into giving up its secrets Feedly Summary: All it took to make an Google Edge TPU give up model hyperparameters was specific hardware, a novel attack technique … and several days Computer scientists from North Carolina State University have devised a way to copy…

  • Hacker News: Implementing network time security (NTP NTS) at the hardware level (2022)

    by

    system automation
    in

    Source URL: https://labs.ripe.net/author/christer-weinigel/implementing-network-time-security-at-the-hardware-level/ Source: Hacker News Title: Implementing network time security (NTP NTS) at the hardware level (2022) Feedly Summary: Comments AI Summary and Description: Yes Summary: The implementation of Network Time Security (NTS) at a hardware level offers significant advancements in securing Network Time Protocol (NTP) services. By addressing vulnerabilities inherent in the legacy…

  • Hacker News: Computing with Time: Microarchitectural Weird Machines

    by

    system automation
    in

    Source URL: https://cacm.acm.org/research-highlights/computing-with-time-microarchitectural-weird-machines/ Source: Hacker News Title: Computing with Time: Microarchitectural Weird Machines Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the development and implications of microarchitectural weird machines (µWMs), which exploit CPU microarchitectural features to create powerful obfuscation techniques for malware. This research provides insights into how these µWMs can…

  • Hacker News: When machine learning tells the wrong story

    by

    system automation
    in

    Source URL: https://jackcook.com/2024/11/09/bigger-fish.html Source: Hacker News Title: When machine learning tells the wrong story Feedly Summary: Comments AI Summary and Description: Yes Summary: The text presents a comprehensive account of a research project that explores the vulnerabilities of machine learning-assisted side-channel attacks, particularly in web browsers. It emphasizes the implications of using machine learning for…

  • Bulletins: Vulnerability Summary for the Week of October 28, 2024

    by

    system automation
    in

    Source URL: https://www.cisa.gov/news-events/bulletins/sb24-309 Source: Bulletins Title: Vulnerability Summary for the Week of October 28, 2024 Feedly Summary: High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info Patch Info acnoo — flutter_api  Authentication Bypass Using an Alternate Path or Channel vulnerability in Acnoo Acnoo Flutter API allows Authentication Bypass.This issue affects Acnoo Flutter API:…

  • Hacker News: Cross-Process Spectre Exploitation

    by

    system automation
    in

    Source URL: https://grsecurity.net/cross_process_spectre_exploitation Source: Hacker News Title: Cross-Process Spectre Exploitation Feedly Summary: Comments AI Summary and Description: Yes **Summary**: This detailed text discusses a newly developed cross-process Spectre attack exploiting vulnerabilities in Intel processors, specifically involving the Indirect Branch Prediction Barrier (IBPB). The attack showcases how certain exploit methodologies can retain unauthorized data through microcode…