Security News New cold boot attack affects "nearly all modern computers"

[silversurfer]

Content source

https://www.zdnet.com/article/new-cold-boot-attack-affects-nearly-all-modern-computers/

Security researchers find a new way to disable current cold boot attack firmware security measures to steal sensitive data from high-value computers.

Security researchers will detail today a new variation of a cold boot attack that can meddle with a computer's firmware to disable security measures and allow an attacker to recover sensitive data stored on that computer, such as passwords, corporate files, and more.

The attack, which is presented today at a security conference, is a variation of old cold boot attacks, known for nearly a decade.

Cold boot attacks are when an attacker forces a computer reset/reboot and then steals any data left over in the RAM.

All cold boot attacks require physical access and special hardware tooling to perform, and are generally not considered a threat vector for normal users, but only for computers storing highly-sensitive information, or for high-value individuals such as government officials or businessmen.

 

[FrFc1908]

now this is some seriously scaring kaka....thanks for the share!

 

[In2an3_PpG]

now this is some seriously scaring kaka....thanks for the share!

Lucky for us its no reason to fear.

 

[fl00dz]

Definitely interesting. Chances of seeing that in the wild though are extremely slim. As the article mentions, "All cold boot attacks require physical access and special hardware tooling to perform, and are generally not considered a threat vector for normal users". Attacks like this never cease to amaze me on the creativity of threat actors.

 

[509322]

Cold boot attacks require actual physical possession\access and are generally made against stolen devices.

At least the article explains that fact.