A team of academics from the US, Austria, and Australia, has published new research today detailing yet another variation of the Rowhammer attack. From a report: The novelty in this new Rowhammer variety — which the research team has named RAMBleed — is that it can be used to steal information from a targeted device, as opposed to altering existing data or to elevate an attacker’s privileges, like all previous Rowhammer attacks, have done in the past. […] In a research paper [PDF] published today, academics unveiled RAMBleed, the first Rowhammer attack that can actively deduce and steal data from a RAM card. To do this, researchers had to come up and combine different techniques, which, when assembled, would permit a RAMBleed attack to take place.
Read more of this story at Slashdot.
Source:
https://tech.slashdot.org/story/19/06/11/1931214/rambleed-rowhammer-attack-can-now-steal-data-not-just-alter-it?utm_source=rss1.0mainlinkanon&utm_medium=feed