Updated:04:42 PM EDT Sep 23


this is ggmania.com subsite NetCAT Vulnerability Exploits DDIO on Intel Xeon Processors to Steal D - TechAmok

TOP STORIES

HEADLINES

Naruto Running in Area 51
Experiment: Coca Cola and Mentos Under Water
Wi-Fi 6 Launches Today As 802.11ax
How Close Are We to Immortality?
20 MOST EMBARRASSING MOMENTS IN SPORTS
7 Best Xbox Emulators For Your PC
Kodi 18.4 released
The Rise And Fall Of The Headphone Jack
Windows 10 20H1 major improvements revealed
Slipknot - Gun Cover!
10-Second Video Of A Mom Embarrassing Her Daughter
Lock Picker Bypasses Popular Security System With $2 Device
NVIDIA Issues Warning to Upgrade Drivers Due to Security Patches
20 Awesome Tricks with WD-40
Slipknot - Solway Firth [OFFICIAL VIDEO]
Japan-Korea Trade Spat and Toshiba Blackout Hike DRAM Prices by 20%
3 FROM HELL Official Trailer (2019) Rob Zombies, Horror Movie
25 million Android devices get infected

Samsung Galaxy Fold Durability Test! - Is it STILL fragile?!
Samsung Releasing Galaxy Fold on Friday
Google Play Pass announced 350+ games for $4.99/month
Wild Motorcycle Police Chase Through Sao Paulo!
Naruto Running in Area 51
App vs website
Intel i9-9900KS CPU details
AMD Ryzen 5 3500X Gaming Benchmarks
iPhone 11 Pro unboxing and first impressions
Six Batman games are now free
US Navy confirms UFO videos are the real deal
Experiment: Coca Cola and Mentos Under Water
Because you want to see a baby otter drinking milk.
Intel Adds More L3 Cache to Its Tiger Lake CPUs
Call of Duty: Modern Warfare Bundles
Self Solving Rubik's Cube
Amazon launches premium streaming service with lossless audio
There's another Battlestar Galactica reboot coming

NetCAT Vulnerability Exploits DDIO on Intel Xeon Processors to Steal D - [security]
09:33 AM EDT - Sep,11 2019 - post a comment

DDIO, or Direct Data I/O, is an Intel-exclusive performance enhancement that allows NICs to directly access a processor's L3 cache, completely bypassing the a server's RAM, to increase NIC performance and lower latencies. Cybersecurity researchers from the Vrije Universiteit Amsterdam and ETH Zurich, in a research paper published on Tuesday, have discovered a critical vulnerability with DDIO that allows compromised servers in a network to steal data from every other machine on its local network. This include the ability to obtain keystrokes and other sensitive data flowing through the memory of vulnerable servers. This effect is compounded in data centers that have not just DDIO, but also RDMA (remote direct memory access) enabled, in which a single server can compromise an entire network. RDMA is a key ingredient in shoring up performance in HPCs and supercomputing environments. Intel in its initial response asked customers to disable DDIO and RDMA on machines with access to untrusted networks, while it works on patches.

The NetCAT vulnerability spells big trouble for web hosting providers. If a hacker leases a server in a data-center with RDMA and DDIO enabled, they can compromise other customers' servers and steal their data. "While NetCAT is powerful even with only minimal assumptions, we believe that we have merely scratched the surface of possibilities for network-based cache attacks, and we expect similar attacks based on NetCAT in the future," the paper reads. We hope that our efforts caution processor vendors against exposing microarchitectural elements to peripherals without a thorough security design to prevent abuse." The team also published a video briefing the nature of NetCAT. AMD EPYC processors don't support DDIO.


Short overview of recent news articles

Sep,16 2019 Wi-Fi 6 Launches Today As 802.11ax
Sep,16 2019 HP Printers Try to Send Data Back to HP
Sep,13 2019 AMD Releases Radeon Software Adrenalin 19.9.2 Drivers
Sep,13 2019 Western Digital Unveils WD_BLACK Gaming Storage Lineup
Sep,13 2019 How Close Are We to Immortality?
Sep,13 2019 Leak of Microsoft Salaries Shows Fight for Higher Compensation
Sep,13 2019 Sprint Matches Verizon's Free iPhone 11 Deal
Sep,12 2019 RAMBO 5 LAST BLOOD Trailer #3
Sep,12 2019 Windows 10 KB4515384 is now causing audio issues
Sep,12 2019 Google Chrome Now Supports "Send to Your Devices"
Sep,12 2019 New iPhones Include Ultra-Wideband Chip for Directional AirDrop
Sep,12 2019 Walmart, Verizon Offering Deals on iPhone 11 Series
Sep,12 2019 Conarium is now available for free
Sep,12 2019 Call of Duty: Modern Warfare - RTX ON - Gunfight 2v2 MP Gameplay
Sep,11 2019 NetCAT Vulnerability Exploits DDIO on Intel Xeon Processors to Steal
Sep,10 2019 iPhone 11 Pro: Three Cameras, Two Sizes
Sep,10 2019 Apple iPhone 11 Sports Wide-Angle Camera
Sep,10 2019 Apple Watch Series 5 Has Always-On Display
Sep,10 2019 Apple's Game Subscription Service Will Cost $5/Month
Sep,10 2019 SEE - Official Trailer
Sep,10 2019 Valerie Plame Is Running For Congress
Sep,10 2019 Baes and Bikinis - Resort 2020
Sep,10 2019 NVIDIA Releases GeForce 436.30 WHQL Drivers
Sep,09 2019 Oxy-Acetylene Explosions at 330 000 fps
Sep,09 2019 How to Solve a Rubik's Cube
>> News Archive <<

TechAmok - Privacy Policy        loading time:0.01secs