all InfoSec news
More on iLeakage
Nov. 19, 2023, 4:01 a.m. | Victor Miller
The RISKS Digest catless.ncl.ac.uk
[...] We show how an attacker can induce Safari to render an arbitrary
webpage, subsequently recovering sensitive information present within it
using speculative execution. In particular, we demonstrate how Safari allows
a malicious webpage to recover secrets from popular high-value targets, such
as Gmail inbox content. Finally, we demonstrate the recovery of passwords,
in case these are autofilled by credential managers.
Virtually all modern CPUs use a performance optimization where they predict
if a branch instruction will be taken or …
attacker case gmail high ileakage information malicious passwords popular recover recovery safari secrets sensitive sensitive information speculative execution value
More from catless.ncl.ac.uk / The RISKS Digest
EFI IPv6/PXE Security Flaw
3 months, 1 week ago |
catless.ncl.ac.uk
Imaging privacy threats from an ambient light sensor
3 months, 1 week ago |
catless.ncl.ac.uk
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
DevSecOps Engineer
@ LinQuest | Beavercreek, Ohio, United States
Senior Developer, Vulnerability Collections (Contractor)
@ SecurityScorecard | Remote (Turkey or Latin America)
Cyber Security Intern 03416 NWSOL
@ North Wind Group | RICHLAND, WA
Senior Cybersecurity Process Engineer
@ Peraton | Fort Meade, MD, United States
Sr. Manager, Cybersecurity and Info Security
@ AESC | Smyrna, TN 37167, Smyrna, TN, US | Santa Clara, CA 95054, Santa Clara, CA, US | Florence, SC 29501, Florence, SC, US | Bowling Green, KY 42101, Bowling Green, KY, US