-
Also dropped today from TU Graz was
#ZombieLoad. ZombieLoad uncovers a novel Meltdown-type effect in previously unexplored fill-buffer logic. https://zombieload.com is dedicated to this vuln, w/ FAQ. Paper here: https://zombieloadattack.com/zombieload.pdf Exploit POC here: https://github.com/IAIK/ZombieLoadPrikaži ovu nit -
Blog post from Red Hat with technical detail on MDS vulns (with long deep-dive video): https://www.redhat.com/en/blog/understanding-mds-vulnerability-what-it-why-it-works-and-how-mitigate-it … Blog post with technical detail on
#ZombieLoad: https://www.cyberus-technology.de/posts/2019-05-14-zombieload.html … Intel advisory:https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html …Prikaži ovu nit -
It's true beer enhance skills, this is what my current fork of
#ZombieLoad is able to do
- 64 bytes leaked from /etc/shadow in ~3 minutes
- leak url visited on a browser in the MacOS Host from Guest VM
Should be clear how important is, to update
cc @vu5ec@tugrazpic.twitter.com/IU78JJVA5s
-
#ZombieLoad is no joke. It has multiple practical attack scenarios across CPU privilege rings, OS processes, VMs, and SGX enclaves. Disabling hyperthreading is the only possible workaround to prevent this extremely powerful attack on current processors.Prikaži ovu nit -
The Transactional Asynchronous Abort (TAA) variant of
#ZombieLoad has just been published. Read the full report in our Blog: https://cyberus-technology.de/posts/2019-11-12-taa.html … -
Read about how my team updated our side channel vulnerability mitigation architecture, HyperClear. https://techcommunity.microsoft.com/t5/Virtualization/5-14-Hyper-V-HyperClear-Update/ba-p/566499 …
#ZombieLoad#HyperV#Intel#Azure -
From the director of the award-winning "Meltdown & Spectre" and "Foreshadow" comes the new thriller "ZombieLoad", now in your nearest Intel CPU.
#Zombieload https://zombieloadattack.com/ https://youtu.be/Oeb-O4yKK2c -
#ZombieLoad vulnerabilities impacting Intel Hardware
https://cards.twitter.com/cards/18ce53ypr6l/7d3fx … -
Using
#ZombieLoad to leak the root password hash from /etc/shadow within a few minutes (https://youtu.be/rKncAFAShkQ for high-resolution version in original speed)pic.twitter.com/oHPXY4sLDdPrikaži ovu nit -
#ZombieLoad: a new#Meltdown attack on#Intel CPUs leaking data which is currently loaded from memory - across programs, hyperthreads, SGX, and VMs.#MDS#cpufail#intelbug https://zombieloadattack.com /cc@mlqxyz@danielmgmi@jovanbulck@blitzclone@gonzodaruler@lavadospic.twitter.com/hpHlTh0ey8
-
After
#Meltdown and#Spectre: TU Graz researchers discover new security flaws.#ZombieLoad impacts on the security of#Intel processors. Patches developed last year are ineffective, new updates will be necessary. https://www.tugraz.at/en/tu-graz/services/news-stories/tu-graz-news/singleview/article/nach-meltdown-und-spectre-tu-graz-forscher-entdecken-neue-sicherheitsluecken0/ …@misc0110@mlqxyz@lavados@tugraz_csbmepic.twitter.com/IDIYMbtPWc
-
Very nice interactive diagram at https://mdsattacks.com/ Perhaps most telling is how many uncolored parts remain to be explored..
#ZombieLoad#Fallout#RIDL#MDShttps://twitter.com/r00tkillah/status/1128503526613635073 …
-
Microsoft released
#Intel microcode updates to patch four recently disclosed vulnerabilities, including#Zombieload. https://www.zdnet.com/article/windows-10-pcs-get-these-new-intel-chip-security-updates-for-zombieload-attacks/ … -
Michael Schwarz (
@misc0110) is a security specialist at Graz University of Technology and, together with colleagues, generated a completely new field of research a few years ago. An interview with the researcher: https://www.tugraz.at/en/tu-graz/services/news-stories/planet-research/singleview/article/michael-schwarz-kreative-ideen-halten-sich-nicht-an-arbeitszeiten0/ …#meltdown#spectre#zombieload ©Lunghammer pic.twitter.com/SzzQEWg1ji
-
#Windows10 PCs get these new Intel chip security updates for#Zombieload attacks https://hubs.ly/H0mSzLp0 by@ZDNet -
Microsoft helps
@Intel deliver its latest microcode security updates to mitigate the#Zombieload threat. https://www.zdnet.com/article/windows-10-pcs-get-these-new-intel-chip-security-updates-for-zombieload-attacks/ … -
#Microsoft has released#Intel microcode#updates for#Windows10 versions 1909 and 1903 to address four recently disclosed#security threats, including#Zombieload. https://buff.ly/37Vbxs6 -
#Microsoft has released Intel microcode updates for Windows 10 to address recently disclosed security threats, including the#Zombieload attack. Users need to install the updates from the Microsoft Update Catalog as they won't be automatically installed. https://www.zdnet.com/article/windows-10-pcs-get-these-new-intel-chip-security-updates-for-zombieload-attacks/ … -
Windows 10: Neue Updates schützen weitere Intel-CPUs vor ZombieLoad v1 und Co. https://www.heise.de/security/meldung/Windows-10-Neue-Updates-schuetzen-weitere-Intel-CPUs-vor-ZombieLoad-v1-und-Co-4651900.html …
#ZombieLoad#Windows10 -
#PorSiTeLoPeridste ¿Saben que es#Zombieload? Acá les decimos que es y como protegerse: https://buff.ly/36NVwmB pic.twitter.com/pKnYiRBwnw
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.