Cyber security news for all

More

    Dangerous Platypus attacks on Intel processors

    A group of scientists from the Technical University of Graz, the University of Birmingham, have revealed details of the new Platypus attacks. Security researchers use the RAPL interface of current processors, which is intended for power measurement, to get hold of secret information.

    The RAPL interface is actually intended for monitoring processors, especially in cloud networks. Some servers provide a framework for this. For example, if part of the power supply fails, the consumption of servers can be reduced in order to avoid overheating or crashes. However, RAPL also reveals, how much performance the CPU is currently consuming.

    The performance consumption unit changes depending on the calculation it is currently performing. Side attacks that exploit this network to draw conclusions about the processed information have been known for decades. That is why security chips have strong abilities for key cards, that protect against such cyber attacks. Most cyber attacks require that the hackers have access to the target network in order to be able to connect a power processor for example.

    The Platypus Malware Also Works Remotely

    The RAPL interface can even be queried from the operating network without administration rights. To make malware more difficult, the kernel scrambles show that this is called like a kernel space layout. A Platypus malware should be able to distinguish between valid and invalid memory data within 20 seconds. This already suggests that Platypus will probably not be used for wide spread malware; it is particularly important for cloud servers and less for desktop PCs.

    An entry on the Intel security for November picks out some advisories on dangerous attack methods and particularly dangerous security vulnerabilities. According to the researchers, other processors are also hacked; they were also able to carry out close measurements on various Ryzen networks. But administration rights were required there for RAPL access.

    Recent Articles

    New malware called Egregor is on the rise

    New malware is on the rise. The Egregor malware has only been in active for 2 months, but it is already becoming apparent that...

    Anyone with a smartphone can become a victim of cyber-mobbing

    Cyber-mobbing is becoming a huge risk in the current COVID crisis. According to a study, almost 20 percent of students in Germany are exposed...

    macOS Trojans: Traces lead to Vietnam

    Security researchers have discovered a new macOS Trojans. Behind this could be a well known hacker group that has spied on Vietnamese dissidents in...

    Court forces Tutanota to perform a surveillance function

    Tutanota email only stores its user mails in encrypted form and cannot read them itself. Tutanota is one of the few email providers that...

    Manchester United have been blackmailed by cyber attackers

    The Premier League club Manchester UnitedĀ fell victim to a cyber attack according to the Daily Mail. The cyber criminals are apparently demanding ransom in...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox