SoylentNews is people
SoylentNews
Submitted via IRC for SoyCow3941
Five academics from the Vrije University in Amsterdam and one from the University of Cyprus have discovered a way for launching Rowhammer attacks via network packets and network cards.
Their discovery makes Rowhammer attacks easier and much more convenient to launch, as an attacker only needs to bombard a victim's network card with specially-crafted packets.
This is much simpler than previous Rowhammer attacks that required that the attacker infected the victim with malware or tricked victims into accessing malicious websites, where they'd load the Rowhammer attack code hidden inside the site's JavaScript.
Researchers named their new Rowhammer attack method Throwhammer, which they've detailed today in a research paper entitled "Throwhammer: Rowhammer Attacks over the Network and Defenses."
[...] Researchers say that only RDMA-enabled network cards are vulnerable.
RDMA stands for Remote Direct Memory Access, a technology that exposes a computer's memory directly over a network without involving the CPU and the machine's OS, hence being able to process more packets than older network cards.
[...] "Modern NICs are able to transfer large amounts of network traffic to remote memory. In our experimental setup, we observed bit flips when accessing memory 560,000 times in 64 ms, which translates to 9 million accesses per second," researchers wrote in the Throwhammer paper.
"Even regular 10 Gbps Ethernet cards can easily send 9 million packets per second to a remote host that end up being stored on the host’s memory," researchers said, pointing out that an attacker doesn't necessarily need a fast network connection to carry out the attack, but only the presence of an RDMA-enabled network card.
For the experimental part of their paper, researchers say they were able to cause bit flips in a remote Memcached server just by using network packets (the Throwhammer attack) and without needing any user actions (as was required with the classical Rowhammer).
(Score: -1, Spam) by Anonymous Coward on Friday May 18 2018, @01:52PM (5 children)
I have had a long history of dental issues - I can blame so many things for how they got to this state; severe substance abuse two decades ago, homelessness, teeth grinding, GERD. The reality of it though, is that I let my teeth get really bad, and ultimately they were too sensitive to properly take care of - which caused so many more issues. I have spent so much money to attempt to save them over the years, and finally came to the conclusion that they were not worth saving due to the amount of neglect that I had caused them. For years I have mumbled when I spoke to not cause attention to them, and I rarely smiled for the same reasons.
(Score: 0) by Anonymous Coward on Friday May 18 2018, @02:18PM (4 children)
lolwut
(lolwut approximately translated into English: If you were attempting an analogy, I can't seem to figure it out. Can you explain?)
(Score: 2) by fritsd on Friday May 18 2018, @03:36PM
I think pp means: "just buy a fucking normal network card without special RDMA Goatse properties that only make sense for HPC clusters that are airgapped from the Internet"
But, I could be wrong interpreting the teeth analogy. Who is Gerd, by the way??
(Score: 2, Informative) by Anonymous Coward on Friday May 18 2018, @06:05PM (2 children)
You / we all, were just trolled by a spam bot. There's math in that post.
The bot is raising the profile of certain search terms by visiting websites and leaving spam about tooth decay and it's causes, with certain words grouped together within n std deviations of each other. They don't use the exact same phrasing or the exact same words / word ordering and that's in order to defeat spam filters programmed to recognize particular phrases.
The next phase will be to start seeing replies talking about the wonders of modern dental implants, how cheap and effective they are and how painless the procedures are. Then mentions of the manufacturers and even glowing reviews about the dentists who helped them. All from an army of chatterbots trained to have these kinds of conversations.
This will allow them to gain in search rankings when they start producing sites containing similar but different strings of blabber text.
It's all about how google is prioritizing search and trying to distinguish fake news and ads from legit news and content.
The owners of these bots are priming the pumps to jokey for a better position when they launch, if they haven't launched already.
Try to vote down offtopic commentary wherever you see it, especially when there is literally no connection to the subject matter being discussed. It would be helpful if the mods of sites like this could censor those out of the HTML completely when they detect a crawler or when a certain percentage of mods have down voted a comment as spam.
(Score: 1, Spam) by MichaelDavidCrawford on Friday May 18 2018, @09:37PM (1 child)
Two gold crowns came off the rearmost molars on the bottom left of my mouth. By the time I came up with the cost of having them recemented the teeth had shifted so the original crowns didn't fit.
Eventually I was given no choice but to have them pulled. While painful really it is bearable. What disturbed me the most was the sound my roots made as my dentist tore them free.
While not a cosmetic problem I am dismayed that I cannot chew on the left side of my mouth. So once I earn my first billion as a result of - overnight - turning soggy jobs into a bestiality pr0n site, I will get implants.
Yes I Have No Bananas. [gofundme.com]
(Score: 1, Touché) by Anonymous Coward on Saturday May 19 2018, @10:08AM
MDC, always thinking ahead.