Tag: side-channel attack
-
The Stealth Oracle: How “Safe” Chrome Extensions Can Reconstruct Your Private URLs Character by Character
A sophisticated technique has been unearthed within Chrome that permits the exfiltration of the complete URL from any active tab, even by an extension explicitly denied access to tabs or website content. This vulnerability leverages the declarativeNetRequest permission—a mandate traditionally viewed as benign due to its focus on request filtering rather than direct DOM manipulation.…
-
Eviction Notice: New Cache Attacks Break Linux and Docker Isolation
Researchers from the Austrian Institute of Technology presented a rigorous analysis and refinement of operating system page cache attacks at the NDSS 2026 conference. Their treatise, entitled “Eviction Notice,” elucidates how vulnerabilities within cache management mechanisms facilitate side-channel attacks executed with minimal system privileges and no administrative oversight. The page cache is a segment of…
-
Heracles: New Attack Exploits AMD SEV-SNP to Steal Data from Protected VMs
Researchers at ETH Zurich have unveiled a novel attack against AMD’s SEV-SNP hardware isolation mechanism, enabling a hypervisor-level adversary to extract sensitive data from protected virtual machines. Dubbed Heracles, the attack demonstrates how to construct a chosen-plaintext oracle capable of decrypting memory contents with single-byte precision. AMD SEV-SNP (Secure Encrypted Virtualization – Secure Nested Paging)…
-
AMD Discloses Vulnerabilities: New Processor Flaws Leak Sensitive Data via Speculative Side Channels
AMD has disclosed the discovery of a new class of processor vulnerabilities, dubbed Transient Scheduler Attacks (TSA). These attacks exploit speculative side channels arising from specific microarchitectural conditions, potentially leading to the leakage of sensitive information. The vulnerabilities affect a broad range of chipsets, including server-grade, desktop, and mobile processors. The flaws were identified as…