Fixing newly discovered side channel will likely take a major toll on performance.

  • SapphironZA@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    1
    ·
    8 months ago

    It can run with user level permissions, so any software or script can be used to extract keys. It does not need to be dedicated malware.

    It’s probably something that can be done via browser extentions or possibly even Javascript, if they leverage a browser vulnerability to gain system user level access.