[HackerNews] New Blacksmith Exploit Bypasses Current Rowhammer Attack Defenses

Cybersecurity researchers have demonstrated yet another variation of the Rowhammer attack affecting all DRAM (dynamic random-access memory) chips that bypasses currently deployed mitigations, thereby effectively compromising the security of the devices.
The new technique — dubbed “Blacksmith” (CVE-2021-42114, CVSS score: 9.0) — is designed to trigger bit flips on target refresh rate-enabled DRAM

Source: Read More (The Hacker News)

You might be interested in …

[HackerNews] Hackers Spotted Using Morse Code in Phishing Attacks to Evade Detection

All posts, HackerNews

Microsoft has disclosed details of an evasive year-long social engineering campaign wherein the operators kept changing their obfuscation and encryption mechanisms every 37 days on average, including relying on Morse code, in an attempt to cover their tracks and surreptitiously harvest user credentials. The phishing attacks take the form of invoice-themed lures mimicking financial-related Source: […]

Read More

[ThreatPost] High-Severity Intel Processor Bug Exposes Encryption Keys

All posts, ThreatPost

CVE-2021-0146, arising from a debugging functionality with excessive privileges, allows attackers to read encrypted files. Source: Read More (Threatpost)

Read More

[HackerNews] Update Your Windows Computers to Patch 6 New In-the-Wind Zero-Day Bugs

All posts, HackerNews

Microsoft on Tuesday released another round of security updates for Windows operating systems and other supported software, squashing 50 vulnerabilities, including 6 zero-days that are said to be under active attack. The flaws were identified and resolved in Microsoft Windows, .NET Core and Visual Studio, Microsoft Office, Microsoft Edge (Chromium-based and EdgeHTML), SharePoint Server, Hyper-V, Source: Read […]

Read More