Network World

Cold-boot attacks: The ‘frozen cache’ approach

Part one of this pair of columns described “cold boot attacks” and their security implications, in particular for software-implemented full-disk encryption. Security expert Jurgen Pabel continues with ...
Network World

Cold-boot attacks change the data leakage landscape

Until 2008, the consensus had been that there would be no practical way to remove a RAM chip from a computer system without losing all contained data. However, last July, researchers published a paper ...
Government Technology

Report: Successful Cold Boot Attacks on Encryption Keys

A recent study -- conducted by Princeton University and the Electronic Frontier Foundation -- revealed how successful cold boot attacks can be launched on disk encryption. According to the study, most ...
Ars Technica

Cold boot attacks given new life with firmware attack | Ars OpenForum

Whenever I'm having a bad day with the operating system and think software is terrible I can always remember that firmware is usually worse and blindly trusted by what runs on top of it. OSes have ...
eWeek

MacBook Air Resistant to Cold-Boot Encryption Attack

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. One of the most hated things on Apple’s new MacBook Air ...
CSOonline

Threat Watch | Cold Boot: Should New Attack on Encrypted Disks Change the Way Lawmakers Approach Disclosure Legislation ‘Safe Harbors’?

Recent research from Princeton, McGraw Security Services illustrates how the lack of encryption specifications in legislation could put consumer data at risk. Last winter, researchers at Princeton ...
ExtremeTech

F-Secure Says Almost All Computers Are Vulnerable to New Cold Boot Attack

F-Secure's Olle Segerdahl and Pasi Saarinen found a way to rewrite the non-volatile memory chip that contains the security settings, thus disabling memory overwriting. Share on Facebook (opens in a ...
ZDNet

New cold boot attack affects seven years of LG Android smartphones

South Korean phone manufacturer LG has released a security update last month to fix a vulnerability that impacts its Android smartphones sold over the past seven years. The vulnerability, tracked ...
ExtremeTech

How to bypass an Android smartphone's encryption and security: Put it in the freezer

Security researchers at the University of Erlangen-Nuremberg in Germany have shown that they can extract photos, surfing history, and contact lists from Android smartphones, even if the phone is ...
Threat Post

Bug in NVIDIA’s Tegra Chipset Opens Door to Malicious Code Execution

Researcher creates ‘Selfblow’ proof-of-concept attack for exploiting a vulnerability that exists in “every single Tegra device released so far”. A flaw impacting millions of mobile and internet of ...
Ars Technica

Cold boot attacks given new life with firmware attack

It's funny how the demands of FOSS lovers are labelled unreasonable, yet every time they are proven to be right, with every product they criticize. Open firmware would make changing this a trivial (or ...