NetSpectre – WindowsTechs.com

Oracle, FireEye, & Mimecast – Enterprise Security Weekly #101

Posted on August 3, 2018 by Security Weekly Productions

This week, Endace and Ixia partner to secure and monitor networks, Oracle brings autonomous security to identity with Trust Fabric, NetSpectre attack could enable remote CPU exploitation, FireEye boosts endpoint security with MalwareGuard Machine Learn… Continue reading Oracle, FireEye, & Mimecast – Enterprise Security Weekly #101→

Mozilla still working on Firefox’s site isolation security revamp

Posted on August 1, 2018 by John E Dunn

Mozilla’s Firefox browser doesn’t have site isolation security yet, but plans to enable it are in the works. Continue reading Mozilla still working on Firefox’s site isolation security revamp→

Spectre chip weakness can be used to steal data remotely

Posted on July 31, 2018 by John E Dunn

Researchers have found a new variant of the Spectre CPU flaw that shows how attackers could steal data remotely without having to run malicious code on a local system. Continue reading Spectre chip weakness can be used to steal data remotely→

NetSpectre attack can exploit CPUs to leak information remotely, researchers say

Posted on July 27, 2018 by Zaid Shoorbajee

Researchers now say it’s possible to use the infamous Spectre vulnerability in a way that does not require direct access to a victim’s device. Researchers from the Graz University of Technology in Austria write in a paper published Thursday that they can exploit the Spectre flaw remotely without having to run code on the target machine. Such an attack, dubbed NetSpectre, would allow hackers to trick applications into leaking private information, albeit very slowly. “The attacker only sends a series of crafted requests to the victim and measures the response time to leak a secret value from the victim’s memory,” the researchers explain. Spectre is a CPU flaw affecting most modern computers that was revealed by researchers in January. It was originally thought that attackers trying to exploit it would need to somehow install malware on a victim’s device, either by tricking them into downloading malicious code or by running malicious JavaScript on a website the victim visited. […]

The post NetSpectre attack can exploit CPUs to leak information remotely, researchers say appeared first on Cyberscoop.

Continue reading NetSpectre attack can exploit CPUs to leak information remotely, researchers say→

Spectre attack variant can be remotely mounted to extract sensitive data

Posted on July 27, 2018 by ghostadmin

By ghostadmin
What we know so far about Spectre attacks is that it relies upon execution of malicious code. The code is executed on computers having speculative-execution design flaws in processor chip; once a device is compromised, it becomes possible… Continue reading Spectre attack variant can be remotely mounted to extract sensitive data→

NetSpectre Bug – New Spectre Method Attacks CPUs Via Network Connections

Posted on July 27, 2018 by Vencislav Krustev

New evolved Spectre Bug has been discovered by security researchers. The bug prays on the CPUs of victims and uses the processor in combination with Network Connections to obtain critical information. The new attack is going by the name NetSpectre…Re… Continue reading NetSpectre Bug – New Spectre Method Attacks CPUs Via Network Connections→

NetSpectre — New Remote Spectre Attack Steals Data Over the Network

Posted on July 27, 2018 by Mohit Kumar

A team of security researchers has discovered a new Spectre attack that can be launched over the network, unlike all other Spectre variants that require some form of local code execution on the target system.

Dubbed “NetSpectre,” the new remote side-c… Continue reading NetSpectre — New Remote Spectre Attack Steals Data Over the Network→