What type of attacks can be carried against an OS with FDE, if we assume OS and FDE are implemented correctly?

The question is mainly stated in the title. I was wondering what kind of attacks can be launched on such a setup, where someone has access to a running OS with locked screen (needs password for the user to enter). One possibility I can thi… Continue reading What type of attacks can be carried against an OS with FDE, if we assume OS and FDE are implemented correctly?

Is a cold-boot-attack on a bitlocker key in TPM still possible, if I use the TPM with a different drive in the meantime?

I have a laptop with the system disk encrypted by Bitlocker. Bitlocker is configured to require a pre-boot pin, and unlocks by TPM. The recovery key is required to unlock and is not available atm. The recovery key should be stored in the T… Continue reading Is a cold-boot-attack on a bitlocker key in TPM still possible, if I use the TPM with a different drive in the meantime?

How to prevent a hosting company from accessing a VM’s encryption keys?

I want to prevent potential theft of my web application (source code + database) by my local hosting company, that I don’t fully trust for some reason (but have no other choice but to use as they give, by far, the best latency over here).
Continue reading How to prevent a hosting company from accessing a VM’s encryption keys?

Bug in NVIDIA’s Tegra Chipset Opens Door to Malicious Code Execution

Researcher creates ‘Selfblow’ proof-of-concept attack for exploiting a vulnerability that exists in “every single Tegra device released so far”. Continue reading Bug in NVIDIA’s Tegra Chipset Opens Door to Malicious Code Execution

Non-obvious Mitigations for This DMA-Attack Demonstrated by F-Secure

Are there any non-obvious mitigations for the big DMA-attack revealed last year and demonstrated in this video by F-Secure?

We know that Microsoft has published some material pertaining to DMA-attacks, but, from my reading o… Continue reading Non-obvious Mitigations for This DMA-Attack Demonstrated by F-Secure