Items tagged with rowhammer

Remember the RowHammer memory attack from many moons ago?? Well, it's back in a new form despite numerous mitigations that memory manufacturers have put in place to prevent this style of attack.  A group of researchers from ETH Zurich and Vrije University in Amsterdam indicate that the series of Target Row Refresh (TRR) mitigations that were put in place after Rowhammer was first discovered have been bypassed. With RowHammer, an attack is perpetrated by "hammering" away at a single "row" of memory cells in a module until a bit-flip occurs in an adjacent row. This can cause the value of the data in the bits to change from 1 to 0 (or 0 to 1), leading to memory corruption or even... Read more...
Sometimes it feels as though nary a day goes by without someone sounding the alarm on a new security vulnerability. More recently, there has been a lot of hoopla over side-channel exploits, such as Spectre and Meltdown, and various other variants. Here is another one to add to your mental catalog of exploits—RAMBleed. A team of researchers has given the name RAMBleed to yet another new side-channel attack based on Rowhammer, which itself is a set of vulnerabilities that allows unprivileged attackers to exploit design flaws in DRAM and memory cards. Around this same time last year, a Rowhammer-style exploit called RAMpage reared its ugly head on Android phones. Now security researchers from... Read more...