Now online Stephan van Schaik’s great talk at IEEE S&P about the #RIDL attack: Rogue In-Flight Data Load. Cc VUSec youtu.be/1Y0h4JyK3fs

I am looking for a PhD student working with me on systems security and privacy-related topics tuvienna starting this fall! Details: secpriv.tuwien.ac.at/thesis_and_job… Application deadline: August 29, 2019

Introducing #NetCAT: the first PRIME+PROBE cache attack over the network using #Intel #DDIO technology. Here is NetCAT leaking keystrokes from a victim SSH client in real-time: youtu.be/QXut1XBymAk Michael Ben Gras Dennis Cristiano Giuffrida Herbert Bos Kav

Remember #Rowhammer? Old variants won't work on recent DDR4 chips. Introducing #TRRespass, a Rowhammer fuzzer that finds new Many-Sided #Rowhammer patterns to bypass in-DRAM #TRR on "Rowhammer-free" DIMMs of all vendors. Coming soon: app to test your phone vusec.net/projects/trres…

This is how I and Emanuele Vannacci spent the better part of our last ~2 years! Check out our results! /cc VUSec SAFARI Research Group

In other news I am leaving VU and its great people to start a new group ETH Zurich focused primarily on hardware security. I am hiring motivated PhD students. DM me if you find hardware attacks like #TRRespass or #NetCAT cool and want to actually engineer secure computers! Please RT

Congrats on the #sp20 best paper award for TRRespass Emanuele Vannacci Pietro Frigo! VUSec

Looking forward for me and Pietro Frigo to present "A journey into the secret flaws of in-DRAM RowHammer mitigations" at @HITBSecConf2020 ! Don't miss it! #HITBLockdown002

Emulating Samsung's Baseband for Security Testing #MobileSecurity #AndroidSecurity #BlackHat2020 [SLIDES] i.blackhat.com/USA-20/Wednesd…

Qualcomm Product Security Initiative (QPSI) is one of the oldest and certain the best mobile security organisation [citation needed]. I'm told that we're not well known anymore, so let me talk about what we do, to encourage you to apply for an internship with us (DM for details).

You: in university studying computer security (software, hardware, or networking), loves to geek out on stuff like ROP chains and use-after-free exploits, looking for an opportunity that will change your life. Us:

These guys managed to steal some of our best from academia recently (Victor van der Veen Radhesh Krishnan). Their internship program must be good...

Wanna learn more about #Rowhammer? Wondering why we are still struggling with it after a decade? Have a new DRAM attack or defense? @ssaroiu and I are organizing the First Workshop on DRAM Security (#DRAMSec) co-located with ISCA. Spread the word! dramsec.ethz.ch

The deadline for the First Workshop on DRAM Security (DRAMSec) is a month away. We are looking for short papers (5 pages) on all aspects of attacks and defenses on current and future DRAM. Codeword: #Rowhammer. Together with Kav at ISCA dramsec.ethz.ch

Want some good expert feedback on your recent DRAM security work? Maybe you missed the S&P deadline? Work is not yet ready for CCS? #DRAMSec is the right answer for you! Deadline is next week. May the 4th be with all who will submit!

A prestigious PhD Thesis award for the remarkable Victor van der Veen, well deserved.

Happy to announce that our (Pietro Frigo nSinus-R (@[email protected]) VUSec) talk "A Dirty Little History" was accepted at #BHUSA ! We're going to show how "Branch History Injection" can bypass Spectre-v2 HW defenses deployed on the latest Intel and ARM CPUs. blackhat.com/us-22/briefing…

If you are at USENIX Security or Black Hat this week and interested in microarchitectural security, feel free to check out Pietro Frigo and Enrico Barberis talks on Spectre-BHI and get more insights on our work! Talks will be Wed (Usenix) and Thu (BlackHat) afternoon.

Today we disclose ÆPIC Leak: Architecturally Leaking Uninitialized Data from the Microarchitecture 🔥 It is the *first* architectural CPU bug able to leak sensitive data from the cache hierarchy: like an uninitialized read but in the CPU itself. aepicleak.com

Ping me if you’re around! I’ll be at USENIX Security today and tomorrow and in Vegas from Thursday