Lucene search
K

8 matches found

The Hacker News
The Hacker News
added 2023/02/08 5:18 p.m.32 views

NIST Standardizes Ascon Cryptographic Algorithm for IoT and Other Lightweight Devices

The U.S. National Institute of Standards and Technology NIST has announced that a family of authenticated encryption and hashing algorithms known as Ascon will be standardized for lightweight cryptography applications. "The chosen algorithms are designed to protect information created and...

Exploits0
Intel
Intel
added 2021/05/11 12:0 a.m.100 views

Speculative Execution and Indirect Branch Prediction Side Channel Analysis Method

Summary: Updated Recommendations Section 04/04/2018 Today a team of security researchers disclosed several software analysis methods that, when used for malicious purposes, have the potential to improperly gather sensitive data from many types of computing devices with many different vendors’...

5.6CVSS5.8AI score0.84172EPSS
Exploits3
ThreatPost
ThreatPost
added 2019/06/12 3:51 p.m.238 views

RAMBleed Side-Channel Attack Exposes Privileged Memory

A team of academic researchers has discovered a follow-on to the Rowhammer class of attacks that allows attackers to read memory data on a target Windows computer, without actually accessing the memory itself. The method is dubbed RAMBleed. Andrew Kwong and Daniel Genkin at the University of...

2.1CVSS1.5AI score0.00386EPSS
Exploits0References6
ThreatPost
ThreatPost
added 2019/05/20 1:42 p.m.150 views

ZombieLoad Pioneer: The Story Behind Intel’s Latest Side Channel Flaw

The release of a new speculative execution vulnerability called ZombieLoad last week follows a similar disclosure path as Meltdown and Spectre. Threatpost caught up with one of the researchers behind the discovery of ZombieLoad to find out how. ZombieLoad was discovered and reported by Michael...

6.8AI score
Exploits0References6
ThreatPost
ThreatPost
added 2019/05/15 4:48 p.m.209 views

Intel ZombieLoad Side-Channel Attack: 10 Takeaways

Intel on Tuesday revealed a new class of speculative execution vulnerabilities, dubbed Microarchitectural Data Sampling MDS, which impact all its modern CPUs. The flaws all ultimately depend on different ways of executing side channel attacks to siphon data from impacted systems – and result in...

4.7CVSS0.1AI score0.01553EPSS
Exploits0References25
ThreatPost
ThreatPost
added 2018/01/23 11:22 a.m.13 views

Intel Halts Spectre/Meltdown Patching for Broadwell and Haswell Systems

Intel is advising OEMs and partners to halt patching for the Spectre and Meltdown vulnerabilities amid numerous reports the updates are causing reboot issues on systems running the Broadwell and Haswell microprocessors. “We recommend that OEMs, cloud service providers, system manufacturers,...

0.4AI score
Exploits0References4
Apple
Apple
added 2018/01/08 10:28 a.m.76 views

About the security content of macOS High Sierra 10.13.2 Supplemental Update - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...

5.6CVSS0.8AI score0.93838EPSS
Exploits12Affected Software1
CERT
CERT
added 2018/01/04 12:0 a.m.1197 views

CPU hardware vulnerable to side-channel attacks

Overview CPU hardware implementations are vulnerable to cache side-channel attacks. These vulnerabilities are referred to as Meltdown and Spectre. Description CPU hardware implementations are vulnerable to side-channel attacks referred to as Meltdown and Spectre. Both Spectre and Meltdown take...

5.6CVSS6.6AI score0.93838EPSS
Exploits13References26
Rows per page
Query Builder