🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Dreams don't affect reality, but they may influence your actions. Turns out this applies to AMD CPUs too! After a long embargo, we can now present Inception, a new transient exec. attack that leaks data on all AMD Zen CPUs. With johannes and Kav. youtu.be/2wCjU8iJ9G4

Thanks so much for this opportunity!!

Received my first iOS + macOS kernel CVE! Fixed in XNU for iOS 17 and macOS Sonoma; a full writeup will be posted here soon.

This one's a fun one... f7160a6ad7d52f32d64b86cf3006c98a217954d80c3fc71a8f27595e227d0fa0

Using Vision Pro in the classroom to show students how to set up fault injection and power analysis attacks in MIT Secure HW Design

Uninitialized Data Access (UDA) CVE-2022-29968🤴💍 ("Lord Of The io_urings") Linux io_uring system call interface Joseph Ravichandran Joseph Ravichandran Michael Wang Michael Wang

What if I’m not like the others? A broken mbuf, an overwrite— What if my Mac won’t recover? I’ll clean my code with TURPENTINE!

Happy to announce my SM thesis “Discovering Novel Microarchitectural Security Vulnerabilities in Modern Processors” was awarded the 2024 William A Martin Computer Science thesis award MIT EECS Check it out here: dspace.mit.edu/handle/1721.1/…

Writeup for CVE-2024-27815, a buffer overflow I reported in the XNU kernel is out! jprx.io/cve-2024-27815/

When the kernel is sus. CVE-2024-54507 is an XNU bug fixed in macOS 15.2 / iOS 18.2. Enjoy! jprx.io/cve-2024-54507

CVE-2025-24118 is an absolutely crazy race condition I found in the macOS / XNU kernel. Safe memory reclamation, read-only objects, memcpy implementation details, and a race condition- oh my! jprx.io/cve-2025-24118

Hack the Planet! I taught students fault injection, power analysis, and JTAG/ SWD in today's Secure Hardware Design lecture

When your computer goes to sleep, what does it dream about?

2 new kernel CVEs, one remotely reachable! (look mom, no local code exec)

Remote kernel UaF is not dead