GPU Side-Channel attack lets malicious websites steal data

Sep 28 2023

Gone Phishing Banner

Welcome to Gone Phishing, your daily cybersecurity newsletter that shows cybercriminals all the respect that Donald Trump shows the Republican debates ๐Ÿ‘€๐Ÿ˜‚ #missinginaction

Todayโ€™s hottest cybersecurity news stories:

  • ๐Ÿ“Ÿ GPU Side-Channel attack lets malicious websites steal data ๐Ÿ“Š

  • ๐ŸŒŽ โ€˜AtlasCrossโ€™ hackers are using American Red Cross as phishing lure ๐ŸŽฃ

  • ๐Ÿ‘จโ€๐Ÿ’ป Cyber-attacks on pension firms are up a whopping 4000% ๐Ÿง“

GPU get what you pay forโ€ฆ

๐Ÿšจ Breaking News: New Side-Channel Attack Threatens GPU Security! ๐Ÿšจ

Researchers from top US universities have unveiled a concerning discovery: almost all modern GPUs face a fresh threat, known as GPU.zip. This sneaky attack exploits a hardware-based graphical data compression feature found in GPUs, compromising user data and online privacy. ๐Ÿ˜ฑ

๐Ÿ” How does GPU.zip work?

Unlike typical side-channel attacks, it doesn't require direct device access. Instead, malicious websites trick users into revealing sensitive info while browsing. Attackers can steal data, like usernames, from other open websites simultaneously. ๐Ÿ˜จ

๐Ÿ’ป Popular sites are at risk!

The researchers demonstrated this attack on Wikipedia, showing how it can swipe your username. But don't panic โ€“ it takes some time for the malicious site to get your info, around 30-215 minutes in their experiments. โฑ๏ธ

๐Ÿ›ก๏ธ How to protect yourself?

Developers should secure their websites against GPU.zip by preventing embedding by cross-origin sites. While the research was shared with tech giants like AMD, Apple, and Nvidia, no patches have been released as of September 2023.

๐ŸŒ Browser note

GPU.zip affects Chrome, but Safari and Firefox are safe. Google is still deciding how to tackle the issue.

Stay safe online and keep an eye out for updates on this GPU.zip threat! ๐Ÿ›ก๏ธ๐Ÿ‘€

I came across ZZZ money club during the crypto market bull run when everyoneโ€™s a winner, even during the bear market this discord group has been amazing at giving information on projects and ways to make passive income in various ways.

The group is very active and everyone in this private discord group is very chatty and helpful.

Its run by Yourfriendandy and Decadeinvestor, you can find them here on YouTube, both top guys with great content.

If you are interested in joining the group you can through the link below.

AtlasCross your heart and hope to die ๐Ÿ’”

๐Ÿ”’ New Cyber Threat Alert: Meet 'AtlasCross' APT Group! ๐Ÿ”

In a recent discovery, cybersecurity experts at NSFocus have unveiled a mysterious hacking group known as 'AtlasCross.' ๐Ÿ•ต๏ธโ€โ™‚๏ธ This advanced persistent threat (APT) group is making waves by targeting organisations using sneaky phishing tactics impersonating the American Red Cross. ๐Ÿ˜ฑ

๐Ÿง What makes AtlasCross unique?

NSFocus highlights their sophistication and elusiveness, making it challenging to trace their origins. They've displayed a different modus operandi compared to known attackers, from their attack methods to their objectives. ๐Ÿคฏ

๐Ÿ“ง How do they strike?

AtlasCross initiates attacks with a clever ployโ€”a phishing email posing as an invite to the "September 2023 Blood Drive" by the American Red Cross. Attached is a macro-enabled Word document that, when enabled, releases the DangerAds and AtlasAgent malware onto Windows devices. ๐Ÿ˜จ

๐Ÿ” DangerAds acts as a loader, examining the host environment and executing specific code based on system details. Once in, it loads AtlasAgent, a custom C++ trojan with various functions, including data extraction, reverse shell access, and more. ๐Ÿฆ 

๐Ÿค” Their motives and targets remain shrouded in mystery, but AtlasCross has managed to evade detection for an undisclosed period thanks to their selective targeting and discreet infection techniques.

Stay vigilant against phishing attempts, and keep an eye out for updates on this enigmatic threat! ๐Ÿ‘€๐ŸŒ

๐Ÿ—ž๏ธ Extra, Extra! Read all about it!

Every few weeks, we carefully select three hot newsletters to show you. Reputation is everything, so any links we share come from personal recommendation or carefully researched businesses at the time of posting. Enjoy!

  • ๐Ÿ’Šย HealthHack:ย Tech is making it easier than ever to reach your fitness goals, from wearable devices to nutrition apps, this newsletter does the research for you, get all the latest health tech gadgets delivered to your inbox.ย 

  • โ‚ฟ Crypto Nutshell: A well written and beautifully designed newsletter giving you the lowdown on crypto and web3, highly recommend if interested to get up to date info on the crypto/web3 market.

  • ๐Ÿง ย Big Brain: Trending AI news, jobs and tools delivered in 3 minutes per day.

Let us know what you think!

Hackers retire too, you know? ๐Ÿ˜‘

๐Ÿ”๐Ÿ’ผ Financial Services Face Alarming Surge in Data Breaches! ๐Ÿ˜ฑ

Shocking stats reveal a whopping 4000% surge in data breaches reported by pension providers to the UK regulator in the past year, according to research by RPC, a professional services firm. ๐Ÿ’ฅ

In 2021/22, the pension sector experienced just six cyber-attacks leading to data breaches. Fast forward to the next year, and that number skyrocketed to a staggering 246 incidents! ๐Ÿ˜ฎ

Notably, pension funds became the hardest-hit within the financial services industry. Overall, financial institutions saw a 242% increase in cyber-attacks causing breaches during the same period. ๐Ÿ“ˆ

Why are pension funds targeted? ๐Ÿ’ฐ They're rich in valuable financial and personal information, making them prime targets for ransomware attacks. These attacks disrupt systems and threaten the timely payout of pensions. ๐Ÿ˜“

Richard Breavington, RPC partner and head of cyber and tech insurance, emphasised that trustees could be held liable if they don't manage cyber risks properly. ๐Ÿšซ

But there's a silver lining: more firms are reporting incidents to the regulator, a positive sign of increased vigilance. Cybersecurity is a must, with the stakes high not only financially but also for reputation. ๐Ÿ›ก๏ธ๐Ÿ’ช

So long and thanks for reading all the phish!

Recent articles