🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Phantom just won a best paper award at MICRO 2024! Phantom shows the security implications of pre-decode speculation that is fundamental in achieving high performance. We are happy and deeply honored! (with johannes Daniël Trujillo)

Our latest work, #ZenHammer 🔨, shows that #AMD Zen 2/3/4 systems are equally vulnerable to frequency-based #Rowhammer as #Intel systems. We also present the first #Rowhammer bit flips on #DDR5 DRAM. (1/2)

For the first time, we imaged and reverse engineered 6 modern DDR4/5 DRAM chips (comsec.ethz.ch/hifi-dram) Due to the incredibly small feature size of modern ICs, we use SEM combined with FIB reaching pixel resolutions as low as 3.4nm. Then we evaluate 10 years of DRAM research.

With RISC-H, we demonstrate the first Rowhammer bit flips on a high-end RISC-V CPU! We had to devise a novel method to order memory requests and carefully characterize the system to avoid bottlenecks comsec.ethz.ch/wp-content/fil… presented @ DRAMSec (ISCA) with Kav :)

Call for Papers officially open! 21 years of H2HC #H2HC2024

Curious about this...

The first ever end-to-end cross-process Spectre exploit? I worked on this during an internship with grsecurity! An in-depth write-up here: grsecurity.net/cross_process_…

meta github.com/google/securit…

Thanks for the 21st H2HC! Always a joy to meet the mix of researchers, enthusiasts, academics, hackers. Special thanks to the organizers and yes the 🚌 trip to Rio went smoothly Rodrigo Branco Gabriel Negreira Barbosa 😄 has a moment to enjoy this very special zine on the journey..

The Phrack Zine 72 CFP horny emojipasta has hit the chats

🔨 Posthammer (USENIX Sec '25) brings Rowhammer back in the browser! What if visiting a website was enough to trigger a Rowhammer attack? Posthammer shows how to bring non-uniform Rowhammer patterns into the browser. More information: 📄comsec.ethz.ch/posthammer

Spectre v2 is back again! Disclosing "Training Solo": 3 new self-training attack classes, 2 end-to-end exploits, and 2 new hardware issues that break domain isolation even when implemented perfectly. Joint work by Sander Wiebing Cristiano Giuffrida: vusec.net/projects/train…

Branch Race Conditions Predictor causes recent predictions to be added after more recent privilege switches (→ wrong privilege, eIBRS💥) prediction flushes (→ retained valid, IBPB💥) finish. Sandro eventually figured it out 🙌

Happy to announce that the paper about IBPB problems that included the first real cross-process Spectre exploit just got a distinguished paper award at IEEE S&P! Dr. johannes now has two of these awards in his thesis. What will he do next?!

Huh, I didn't realize that the vibe-coded vulns inserted into 5 LTS kernels that still aren't fixed 22 days later haven't been fixed because the person who inserted them is busy telling everyone at a conference how great the AI he used to insert the vulns (that he didn't find) is