side-channel attacks

Side-Channel Attacks Against LLMs

| | academic papers, LLM, side-channel attacks, Uncategorized
Here are three papers describing different side-channel attacks against LLMs. “Remote Timing Attacks on Efficient Language Model Inference“: Abstract: Scaling up language models has significantly increased their capabilities. But larger models are ...
Schneier on Security
An Android home screen

#Pixnapping: Android Timing Attack Sends Google Back to the Drawing Board

| | android, Android 16, Android Application Hacking, Android attack, CVE-2025-48561, google, Pixnapping, Rowhammer, SB Blogwatch, Side-Channel, side-channel attack, side-channel attacks, software supply chain, software supply chain attack, software supply chain attacks
If at first you don’t succeed: Researchers discover a new way to steal secrets from Android apps ...
Security Boulevard
Offer Shlomi a/k/a Vince Offer, the Slap Chop guy

SLAP/FLOP: Apple Silicon’s ‘Son of Spectre’ Critical Flaws

| | Apple, apple bug, Apple Data Security, Apple Silicon, ARM, Arm CPU Attack, arm64, Daniel Genkin, FLOP, iPad, iPhone, Jalen Chuang, Jason Kim, Mac, SB Blogwatch, Side-Channel, side-channel attack, side-channel attacks, SLAP, Spectre, Spectre attack, Spectre variant, speculative execution, Yuval Yarom
Watch this: Want more “speculative execution” bugs? You’re gonna be in a great mood all day ...
Security Boulevard

New Attack Against Self-Driving Car AI

| | academic papers, Artificial Intelligence, cars, cyberattack, side-channel attacks, Uncategorized
This is another attack that convinces the AI to ignore road signs: Due to the way CMOS cameras operate, rapidly changing light from fast flashing diodes can be used to vary the ...
Schneier on Security

Hardware Vulnerability in Apple’s M-Series Chips

| | Apple, encryption, hardware, side-channel attacks, Uncategorized
It’s yet another hardware side-channel attack: The threat resides in the chips’ data memory-dependent prefetcher, a hardware optimization that predicts the memory addresses of data that running code is likely to access ...
Schneier on Security

ChatGPT Plugin Security Vulnerabilities Exploited By Hackers

| | AI Assistants, ChatGPT, Cyber Threats, Cybersecurity, Cybersecurity News, Data breaches, digital security, Encryption Protocols, Hackers, OAuth Workflow, Penetration Testing, Plugin Security, security measures, side-channel attacks, Vulnerabilities, Zero-click Attacks
In the realm of cybersecurity, constant vigilance is paramount as threat actors perpetually seek novel ways to exploit vulnerabilities. Recent research has shed light on a concerning trend: the potential misuse of ...
TuxCare
A man stares at you while holding up his right index finger

‘PrintListener’ Attack on Fingerprint Readers — Can You Trust Biometrics?🤞

| | biometric, biometric authentication, biometric data, Biometric Data Abuse, biometric identification, biometric identity, biometric security, biometrics, biometrics authentication, Biometrics-Based Authentication, digital biometrics, digital fingerprint, Fingerprint Scanners, fingerprint scanning, Fingerprint Sensor Vulnerabilities, fingerprint sensors, fingerprints, PrintListener, SB Blogwatch, Side-Channel, side-channel attack, side-channel attacks, sidechannelattacks, touchless fingerprint
Mic Check: Researchers reconstruct your fingerprint by listening to you swipe ...
Security Boulevard

Side Channels Are Common

| | academic papers, sensors, side-channel attacks, Uncategorized
Really interesting research: “Lend Me Your Ear: Passive Remote Physical Side Channels on PCs.” Abstract: We show that built-in sensors in commodity PCs, such as microphones, inadvertently capture electromagnetic side-channel leakage from ...
Schneier on Security

Power LED Side-Channel Attack

| | cameras, cryptography, keys, side-channel attacks, Uncategorized
This is a clever new side-channel attack: The first attack uses an Internet-connected surveillance camera to take a high-speed video of the power LED on a smart card reader­—or of an attached ...
Schneier on Security

Security Analysis of Threema

| | academic papers, Authentication, cryptanalysis, encryption, side-channel attacks, threat models, Uncategorized, Vulnerabilities
A group of Swiss researchers have published an impressive security analysis of Threema. We provide an extensive cryptographic analysis of Threema, a Swiss-based encrypted messaging application with more than 10 million users ...
Schneier on Security
Load more