It's over. We are totally fucked

It's over. We are totally fucked.

Other urls found in this thread:

mobile.twitter.com/misc0110/status/948706387491786752
misc0110.net/web/files/keystroke_js.pdf
github.com/IAIK/interruptjs
marc.info/?l=openbsd-misc&m=119318909016582
meltdownattack.com/meltdown.pdf
spectreattack.com/spectre.pdf
twitter.com/NSFWRedditGif

2018 year of the RISC V desktop!

Is this how NSA/FBI caught the Silk Road guy?

[source needed]

mobile.twitter.com/misc0110/status/948706387491786752

electronic devices have never been and never will be secure

>mobile.twitter.com/misc0110/status/948706387491786752
Of course, it is entirely possible that the application was made to write this is a secret password in response to input detected, seeing we can't actually see what is being input into the text entry.

I meant the source of the programs used.

...

Could also just be the programs are connected and he's not using the exploit at all

Nah far as I'm aware him and the Alpha Bay dude were caught with old fashioned investigation, they both got sloppy with OPSec and got themselves personally tied to the operations.

Or he could be using any number of other keylogging methods.

I think the most telling thing is that he isn't going to post the source until patches are out, even though PoC code is available.

He's just hoping for people to forget about the code but remember this "example".

Yes. But considering that this is the co author of the whitepaper on this shit I'm inclined to believe him

thanks for the protip deepthroat

non-Sup Forums refugee here trying to figure out if my computer is going to explode because it has a few intel parts, someone explain whats going on in the webm?

The webm is some shitty keylogger. If you use intel parts your computer will be slower after a security update

I honestly pray for this, please, we NEED RISC-V.

oooooh its a keylogger. i understand now.

INTEL is fucked. not we. only you fag

>Keyloggers that take your input straight from the memory
Now i'm scared

Fake and gay. Without example code this is a meaningless larp.

Yeah, this shit is legit

misc0110.net/web/files/keystroke_js.pdf

github.com/IAIK/interruptjs

Just a tiny bit of work turns this into a browser based meltdown exploit

Wow, this is really fucking bad

they caught the silk road guy through some posts he made on stackoverflow and other sites

that's called parallel construction user

they used this NSA hardware level backdoor most likely.

>next gen Intel CPUs will offer up to 31% improved performance over Coffee Lake!

>bug hidden for literal decades
>it's discovered and random pajeets writing javascript can effortlessly and perfectly exploit it
How didn't anyone notice it before?

Holy fuck.

>when your CPU is so slow that the results aren't clear

disable javascript

Bug can also be exploited through CSS

there's a good reason they've been expelled from some 120 nations

It's what we get for our hubris.
This is reality from now on, more and more "security exploits" that slowly nerf our PCs back to the 70s.

>javascript
>CSS
two of the worst things to happen to the internet

bullshit

Underrated

That and giving women handheld computers with cameras.

its not a keylogger. he's using an exploit with an intel cpu. Time to buy AMD

i don't trust that to be true. yes he probably was sloppy however they likely caught him via other means which they don't want to disclose. you show your hand way too early if you just reveal all your power in court when you've got the ability to parallel construct a different story ezpz

PoC or I wouldn't believe

wow
just fucking wow
i rarely throw around "X is finished" but if there ever was a time to, it's now

>

OpenBSD leader Theo de Raadt called the Intel meltdown bug in 2007

marc.info/?l=openbsd-misc&m=119318909016582

WHY are you not using the best Operating System, Sup Forums?

Plan9?
Because it ain't got no drivers.

I believe they are in the examples in the google report, i believe it's up on github as well but someone else will have to give you that link
meltdownattack.com/meltdown.pdf
spectreattack.com/spectre.pdf

Well, fuck

First mention of Silk Road was in a letter sent through GMAIL

>speculate some software will have security holes
>it does
good job i guess? this is also true of openbsd though.