Emanuele Vannacci

This strange tweet got >25k retweets. The author sounds confident, and he uses lots of hex and jargon. There are red flags though... like what's up with the DEI stuff, and who says "stack trace dump"? Let's take a closer look... 🧵1/n

My code doesn't work in one specific case. I find a bug. I fix the bug. Code does not work anymore. Why did my code work before? Another bug cancels the first bug in all but that one case. Hypothesis: My code works iff the number of bugs is even.

@jana_tweets_cs @oleksii_o @socialboris @vu5ec Paper: usenix.org/system/files/u…

Thanks to all my co-authors @jana_tweets_cs @oleksii_o Cédric Fournet and @socialboris for the amazin work. And thanks @vu5ec for supporting me in this project!

I'm thrilled to announce that our paper "Speculation@Fault" @USENIXSecurity is online! Read about how we automatically find information leakages arising from CPU exceptions by fuzzing against speculative contracts.

POV: @JakobKoschel and I (with @vu5ec) accidentally getting the Linux kernel to upgrade to modern C

Introducing #FPVI and #SCSB, two new transient execution vulnerabilities based on previously unexplored causes of Machine Clear. See vusec.net/projects/fpvi-…. We use FPVI to read arbitrary memory in Firefox via attacker-controlled and transiently-injected floating-point results:

While we showed earlier that DDR4 is vulnerable to Rowhammer, we could not launch attacks from JavaScript. Until now. By synchronizing memory requests with DRAM refresh commands, we show that web users are at risk also. Page: vusec.net/projects/smash/ Demo: youtube.com/watch?v=k2D4D-…

Our #PIBE paper @ASPLOSConf and code are now online. We show how to greatly reduce the overhead of mitigations such as LVI-CFI and retpoline on the kernel using PGO. Joint work by @victor_duta (who did all the hard work!) @c_giuffrida @herbertbos @EKouwe: download.vusec.net/papers/pibe_as…

Three pages of nominations and looks like #TRRespass is the lucky winner of this year's most innovative research pwnie! Congrats to all @pit_frg @vanema94 @ArthasSin @vvdveen @_onurmutlu_ @c_giuffrida @herbertbos

Most Innovative Research #pwnie goes to @vu5ec team for the TRRespass work (Rowhammer mitigations in RAM sticks aren't actually working)

#BlindSide’s source code is now online. We also released 2 new kernel exploit demo videos, e.g., Exploit 2: a single buffer overflow to speculatively break arbitrary randomization and mount an architectural data-only exploit to leak the root password hash: vusec.net/projects/blind…

@bz2 @VUamsterdam even without considering that surgical masks protect other people from you, so they work only if everyone wear them.

@VUamsterdam Dit is schandelijk. Als je het niet verplicht stelt (en dat zouden we moeten doen), waarom het niet adviseren? Het kost niks om zo'n advies uit te vaardigen. Waarom zou juist een universiteit de wetenschap op dit gebied negeren?

3/3 Femke Halsema gaf gister het advies om in publiek toegankelijke binnenruimten een mondkapje te dragen. Als universiteit vallen we hier niet onder. Op de VU geldt dat iedereen zelf een keuze mag maken wat betreft het dragen van een mondkapje. vu.nl/coronavirus

Best paper award @IEEEEUROSP! @rk_konoth didn't give up after the 1st, 2ed .. rejects. Kept improving the paper, formal verification, more features, integrations. Apparently there is sometimes a big light at the end of the tunnel! Talk on Thursday at 16:30 CEST

We tried something new! A virtual hardware Capture the Flag competition. Congratulations to @noopwafel, @hanyrax, @vanema94, and Koen Koning from @vu5ec, who took first place. #57thDac

Congrats to @noopwafel, @hanyrax, @vanema94, @nSinusR and Koen Koning for winning the Hack@DAC hardware CTF.

Next up on #HITBLockdown002 Track 1: "A Journey Into the Secret Flaws of In-DRAM RowHammer Mitigations" Presented by @vanema94 & @pit_frg Starts 15:00 SGT at youtu.be/siylg59I6FA Ask questions via our Slido channel #askinthebox

Our #TagBleed paper is now online. We show Tagged TLB's performance benefits come at a security cost. TL;DR Confused-deputy side-channel attacks based on Tagged TLBs can break #KASLR even in face of ideal #KPTI or state-of-the-art KASLR mitigations: download.vusec.net/papers/tagblee…

Looking forward for me and @pit_frg to present "A journey into the secret flaws of in-DRAM RowHammer mitigations" at @HITBSecConf2020 ! Don't miss it! #HITBLockdown002

Intel CPUs Vulnerable to New 'SGAxe' and 'CrossTalk' Side-Channel Attacks thehackernews.com/2020/06/intel-… via @TheHackersNews