Tweets
- Tweets, current page.
- Tweets & replies
- Media
You blocked @vu5ec
Are you sure you want to view these Tweets? Viewing Tweets won't unblock @vu5ec
-
Another day, another
#RIDL embargo and addendum! “New” (not really!) variants of the day: L1D evictions (Fig 6, RIDL paper) or#L1DES and vector registers or#VRS. See http://mdsattacks.com . As a bonus: a faster RIDL exploit that leaks a root hash in 4s:https://www.youtube.com/watch?v=4DQAcCfg3b8 …Thanks. Twitter will use this to make your timeline better. UndoUndo -
Our NDSS paper, ABSynthe is now online: https://download.vusec.net/papers/absynthe_ndss20.pdf … ABSynthe takes a target program and a microarchitecture and automatically synthesizes new side channels. With cool leakage maps!
@bjg@c_giuffrida@kavehrazavi@mik__@herbertbosThanks. Twitter will use this to make your timeline better. UndoUndo -
We compiled a long list of Threats to Validity/Relevance in Security Research for our students, building on common sense & our papers on malware experiments and on benchmarking (and inspired by
@GernotHeiser's excellent blog). Perhaps useful for others?https://bit.ly/2XAUtmSThanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
Intel is still working to close a potentially damaging loophole in its chip architecture that could allow hackers to steal data, almost two years after the issue was disclosedhttps://on.ft.com/2qJLaVB
Thanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
Interesting article on RIDL and side-effects: https://www.nytimes.com/2019/11/12/technology/intel-chip-fix.html …https://twitter.com/vu5ec/status/1194357814300479491 …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
In other news
#RIDL Rogue In-Flight Data Load won the 2nd place for Applied Research at@CsawEurope 2019. I met many nice and interesting people at the poster presentation :).@noopwafel@sirmx@pit_frg@kavehrazavi@c_giuffrida@herbertbos@vu5ecpic.twitter.com/I5rEjkKqEU
Thanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
When Intel released patch for CPU vulns last May, it said the patch fixed all the vulns. But researchers at
@vu5ec say this isn't true and Intel knew it. Intel asked them not to disclose this and to alter conf. paper about the vulns. My story for@nytimeshttps://www.nytimes.com/2019/11/12/technology/intel-chip-fix.html …Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
Long embargos without transparency hurt endusers who remain unknowingly exposed to serious flaws.
@KimZetter covers our#RIDL saga with@Intel in her@NYTimes piece.#RIDL remains a problem after 1+ year, 2 flawed patches and 2 embargos (+1 still ongoing).https://www.nytimes.com/2019/11/12/technology/intel-chip-fix.html …Thanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
@TechCrunch@vu5ec@noopwafel@sirmc@pit_frg@kavehrazavi@c_giuffrida@herbertbos RIDL actually works on Cascade Lake and Whiskey Lake as our PoCs on https://github.com/vusec/ridl show and Intel’s acknowledgements on https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00270.html …. See http://mdsattacks.com for the story.Thanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
@noopwafel deserves a lot of credit for this. She is better at finding#RIDL variants than#Intel engineers. Also kudos to Jonas Theis, our master student who put together the fast /etc/shadow exploit as a term project!@vu5echttps://twitter.com/vu5ec/status/1194314339211190274 …Thanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
Microarchitectural processor vulnerabilities like Spectre and Meltdown were bad, but at least Intel fixed them promptly. Now it seems another deep-seated chip flaw lingered in Intel’s silicon for more than a year after the company was warned about it.https://www.wired.com/story/intel-mds-attack-taa/ …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
Intel are disclosing 77 vulns today (https://blogs.intel.com/technology/2019/11/ipas-november-2019-intel-platform-update-ipu/ …), some in their CPUs - HW bugs are always painful, but hardware is never perfect. Happy to see TAA disclosed after I found it >1y ago, but @dkg0414's page size issue looks a lot more painful. JCC icache errata too.
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Video shows
#RIDL leaking root password hash in default settings in 30s!@themadstephan@noopwafel@pit_frg@sirmc@kavehrazavi@herbertbos@c_giuffridaShow this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
Today, last-minute
#Intel embargo on parts of#RIDL ends. The "new"#TAA is just a#RIDL variant we reported in Sep 2018, and it leaks your root hashes fast! Latest Intel patches remain broken. See http://mdsattacks.com for#RIDL addendum and exploits.https://bit.ly/3711kdyShow this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
@vu5sec Great line-up for our VUSec/AMSec Workshop on System Security: https://www.amsec.org/news/ Michael Franz (UC Irvine) Mathias Payer (EPFL) Stijn Volckaert (KU Leuven) Lucas Davi (U. Duisburg) Stefan Brunthaler ( U. der Bundeswehr) Robert Buhren (TU Berlin) Free/open for all.
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
Great start to
@AppSecEU with@herbertbos keynotingpic.twitter.com/Cr775BjFbY
Thanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
Now at
@hardwear_io: RIDLed with CPU bugs by@noopwafel and@themadstephan cc@vu5ecpic.twitter.com/Emoc63k8pj
Thanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
NetCAT Attack
Cybersecurity researchers demonstrate a new side-channel vulnerability that could allow network-based hackers to remotely steal sensitive data from modern Intel CPUs solely sending specially crafted network packets
Details ➤ https://thehackernews.com/2019/09/netcat-intel-side-channel.html …
#infosecpic.twitter.com/O8DnA2eYb8
Thanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
If today's Apple launch isn't your cup of tea, check out this cunning over-the-network Intel side-channel leakhttp://reg.cx/2WmT
Thanks. Twitter will use this to make your timeline better. UndoUndo -
VUSec Retweeted
Weakness in Intel chips lets researchers steal encrypted SSH keystrokes http://arstechnica.com/information-technology/2019/09/weakness-in-intel-chips-lets-researchers-steal-encrypted-ssh-keystrokes/ … by
@dangoodin001Thanks. Twitter will use this to make your timeline better. UndoUndo
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.