www. O S N E W S .com
News Features Interviews
BlogContact Editorials

New Spectre attack enables secrets to be leaked over network
By Thom Holwerda on 2018-07-26 22:49:33

When the Spectre and Meltdown attacks were disclosed earlier this year, the initial exploits required an attacker to be able to run code of their choosing on a victim system. This made browsers vulnerable, as suitably crafted JavaScript could be used to perform Spectre attacks. Cloud hosts were susceptible, too. But outside these situations, the impact seemed relatively limited.

That impact is now a little larger. Researchers from Graz University of Technology including one of the original Meltdown discoverers, Daniel Gruss, have described NetSpectre: a fully remote attack based on Spectre. With NetSpectre, an attacker can remotely read the memory of a victim system without running any code on that system.

18  Comments - Printer friendly - Related stories
Recent related stories
- Impact assessment shows privacy risks of Microsoft Office - 2018-11-17
- New evidence of hacked Supermicro hardware at US carrier - 2018-10-09
- How China used a tiny chip to infiltrate US companies - 2018-10-04
- Lenovo: Companies working in China install local backdoors - 2018-09-19
- Dozens of iOS, Android apps secretly share location data - 2018-09-10
- More related articles
 

Tell a friend
Your full name:
Your email address:
Your friend's email:
Anti-spam measure:
5+2=

News Features Interviews
BlogContact Editorials


WAP site - RSS feed
© OSNews LLC 1997-2007. All Rights Reserved.
The readers' comments are owned and a responsibility of whoever posted them.
Prefer the desktop version of OSNews?