New NetSpectre Attack to be Discovered

NetSpectre method works due to network activity, not the executing the programs
30 July 2018   189

Security experts from Graz University of Technology have discovered a new way to read the memory of a remote Specter class computer without executing malicious code on it. Unlike previously described attacks of this class, the NetSpectre method works due to network activity, not the executing the programs.

The method is associated with the Specter v1 vulnerability and represents a threat to all affected processors, but has a low data extraction speed. The experiment showed that the extraction speed during the cache attacks on the third-party channels is only 15 bit / h. Using a new third-party channel associated with AVX instructions increases the speed to 60 bph. In Google Cloud, scientists were able to extract data from a virtual machine at a rate of 3 bits / hour.

According to experts, attackers can use NetSpectre also to bypass the technology of Address Space Layout Randomization, which allows you to randomly change the location of important data structures in the address space.

To protect against NetSpectre, it is sufficient to use existing measures against the Specter. Because NetSpectre is a network attack, it can be detected by means of protection from DDoS attacks.

Lite.IM Beta to be Released

Lite.IM will allow users to interact with Litecoin blockchain using text commands through a special API-system
09 August 2018   160

Developers of the Zulu Republic blockchain project presented Lite.IM software that allows users to make transactions in the Litecoin network using SMS messages and the Telegram messenger.

Zulu Republic is convinced that Telegram is the safest messenger and provides all the necessary opportunities for testing the concept before launching SMS payments.

Representatives of the project emphasize that a lot of people live in countries with limited access to the Internet, under conditions of strict censorship by political regimes, without access to financial services. In addition, 64% of the world's population owns mobile phones, but only 33% have smartphones. This is the reason why Zulu Republic is convinced of the need to link SMS messages and Litecoin blockchain, not relying on the availability of the Internet.

By opening the world of cryptocurrency to these underserved and vulnerable populations, we aim to provide a degree of financial agency, autonomy, and (perhaps most importantly) security that they’ve been denied up until now.
 

Zulu Republic

Lite.IM will allow users to interact with Litecoin blockchain using text commands through a special API-system. At the moment the community already has the opportunity to use Telegram-bot to check balances and send Litecoin to LTC-addresses or e-mail. The solution is written on JavaScript. More info is available at GitHub.

The creator of "digital silver" Charlie Lee is convinced that the bear market allows us to focus on developing solutions for mass adoption of technology.