- Researchers at Graz University of Technology unveiled FROST, a browser side‑channel attack
- The method can reveal visited websites and opened desktop apps, but requires large file creation
- Limitations exist, yet the study highlights how modern browser features expand the attack surface for surveillance
Security researchers have come up with a new way of spying on internet users, and they’re calling it FROST. Recently, more than half a dozen researchers from the Graz University of Technology (Austria) published a new report called “FROST: Fingerprinting Remotely using OPFS-based SSD Timing” in which they claim that there is a way to spy on user activities directly through the browser.
This is a remote side-channel technique that exploits a standard browser feature called the Origin Private File System (OPFS). Generally, a side-channel attack is a way of stealing secrets by measuring physical side effects, such as how long an action takes, how much power it uses. In this case, the researchers measured solid-state drive (SSD) access speeds, allowing them to track which websites a victim visited, and what desktop applications they opened.
“Web browsers have evolved from simple document viewers into complex platforms capable of running sophisticated applications,” the research paper says. “Companies like Google, Microsoft, and Adobe have developed full-fledged office suites, photo- and video editors, or even integrated development environments (IDEs) that run entirely within the browser.”
Limitations exist
“While these features enhance the capabilities of web applications and allow completely novel use cases, they also increase the browser’s attack surface, and some have already been shown to introduce new vulnerabilities.”
Unlike real-life exploits, those discovered in controlled environments have limitations, which make it somewhat harder to pull off in the wild. For example, the attack only works if the victim’s activity and the browser are running on the same SSD. The attack requires creating an exceptionally large file to bypass the computer’s memory cache, which can noticeably drain the victim’s free disk space and since Firefox limits storage space per website to 10GB, the attack is a little more difficult to pull off on that specific browser.
It was also said that the attacker cannot perform a quick, short measurement, because the large file must first be cleared out of the system’s memory cache. And finally, if a user runs software that completely moves their browser profile into RAM, the zero-interaction attack is successfully blocked.
Still, if you are worried about someone using FROST to snoop on you, just make sure you only keep one tab open at a time.
Via Ars Technica
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds.
