All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

New FROST Technique Enables Browser-Based SSD Tracking of Website Visitors

By

Dan Goodin, Ars Technica

1h ago· 4 min readenNews
Bagel score 85 of 100
85/100
Golden Brown
Bagelometer

Hot, fresh, and worth queueing round the block for.

Score85TypenewsSentimentnegative

Summary

A new browser-based tracking technique called FROST (Fingerprinting Remotely Using OPFS-based SSD Timing) allows websites to spy on visitors by measuring subtle interactions with their solid-state drives. Using simple JavaScript, sites can detect what other sites a visitor is viewing and what apps are open on their device by monitoring telltale SSD activity patterns. This adds to the long history of covert tracking methods used by websites, including browsing history monitoring, device fingerprinting, and real-time keystroke/mouse tracking.

Key quotes

· 3 pulled
The technique, named FROST (fingerprinting remotely using OPFS-based SSD timing), allows sites to monitor other sites a visitor is viewing and what apps are open on their devices.
Over the decades, there has been no shortage of sites using clever techniques to covertly track visitors' browsing histories, device fingerprints, and keystrokes and mouse movements in real time.
Even Meta and Yandex were recently caught joining in the privacy-invasive free-for-all.
Snippet from the RSS feed
Thanks to the newly detailed FROST technique, telltale SSD activity can be measured in the browser using simple JavaScript.

You might also wanna read

Phishing Campaign Targets Signal Users by Stealing Backup Recovery Keys

A new wave of phishing attacks is targeting Signal users by impersonating the app's support team. Hackers send messages inside Signal claimi

cybersecuritynews.com·5h ago

New phishing campaign targets Signal users to steal chat backup recovery keys

Hackers are targeting Signal users in a new phishing campaign that attempts to steal their chat backups. The attackers pose as Signal's supp

techcrunch.com·5h ago

Wi-Fi Router Beamforming Feature Can Be Exploited to Identify Individuals With 99.5% Accuracy, Study Finds

Researchers at Germany's Karlsruhe Institute of Technology discovered that standard Wi-Fi routers using beamforming feedback information (BF

futurism.com·19h ago

New browser-based side-channel attack uses SSD activity analysis to spy on users

Researchers have discovered a new browser-based side-channel attack that can spy on users by analyzing SSD (Solid State Drive) activity thro

arstechnica.com·2d ago

New FROST technique lets websites track visitors by analyzing SSD activity

A new tracking technique called FROST (fingerprinting remotely using OPFS-based SSD timing) allows websites to spy on visitors by analyzing

23.social·4d ago

Researchers Demonstrate How Inaudible Audio Commands in Podcasts and Videos Can Hijack AI Voice Assistants

Researchers have demonstrated a new cybersecurity threat where hackers can embed inaudible sounds into podcasts, YouTube videos, or other au

futurism.com·5d ago