Javascript exploit + Inclusive cache architecture = boom?

[DrMrLordX]

Forbes article

Original article (abstract is linked, .pdf is freely available)

Hmm! Interesting. I don't know of any circumstances where this precise attack vector is in use "in the wild", but similar side-channel h4x0ring has been done in the past to steal Bitcoins and do other fun things.

 

[greatnoob]

I don't see anything to be worried about here...

 

[jhu]

Why you have to disclose my Bitcoin stealing exploit?

 

[ShintaiDK]

I don't see anything to be worried about here...

Neither do I.

Hmm! Interesting. I don't know of any circumstances where this precise attack vector is in use "in the wild", but similar side-channel h4x0ring has been done in the past to steal Bitcoins and do other fun things.

If it wasnt because OpenSSL had holes like swiss cheese....

 

[Idontcare]

The exploit then records the time it takes for the victim’s PC to run various operations in the cache memory, using the browser’s own high-resolution timers (we’re talking nanoseconds here). By studying the time it takes for memory access to take place, the hacker can get an accurate picture about a user’s browser history, keystrokes and mouse movements. The attack is more for spying than theft: it doesn’t steal any data or passwords or corrupt the victim’s machine.

Oh my, they will know when I move my mouse or if my browser's cache is full 😱 Better unplug right now!

 

[DrMrLordX]

Well, according to the bit you quoted, it can lift browser history and keystrokes which is potentially pretty bad.

The part that was interesting to me is that without inclusive cache hierarchy, it doesn't work.

 

[Madpacket]

...and this is why I bought a Trezor to manage my Bitcoins.

 

[lamedude]

Finally some good news for AMD.

 

[DrMrLordX]

Exclusive cache hierarchy ftw!!!