Rowhammer-based RAMBleed exploit lets hackers steal data from memory

Security researchers have revealed an exploit that can be used by hackers to steal data from DRAM, even if ECC protection is in place. RAMBleed is a Rowhammer-based attack that can also be used to alter data and increase privilege levels. Taking advantage of the design of modern memory chips, a Rowhamer attack works by 'hammering' the physical rows of data in quick succession causing bit-flipping in neighboring rows. RAMBleed takes this in a different direction, using a similar technique to access data stored in physical memory. See also: VLC 3.0.7 includes more security fixes than ever thanks to the… [Continue Reading]