Kryptografický útok menu

Kryptografické útoky

23.04.2025	XRP supply chain attack	XRP supply chain attack: Official NPM package infected with crypto stealing backdoor	ATTACK	Crypto
28.11.2023	Marvin Attack	The Marvin Attack is a return of a 25 year old vulnerability that allows performing RSA decryption and signing operations as an attacker with the ability to observe only the time of the decryption operation performed with the private key.	ATTACK	Crypto
31.07.2020	Remote Timing Attacks	Timing attacks are usually used to attack weak computing devices such as smartcards. We show that timing attacks apply to general software systems. Specifically, we devise a timing attack against OpenSSL.	ATTACK	Crypto
09.01.2020	Shambles Attack	We have computed the very first chosen-prefix collision for SHA-1. In a nutshell, this means a complete and practical break of the SHA-1 hash function, with dangerous practical implications if you are still using this hash function. To put it in another way: all attacks that are practical on MD5 are now also practical on SHA-1. Check our paper here for more details.	ATTACK	Crypto
30.03.2018	Cold boot attack	In cryptography, a cold boot attack (or to a lesser extent, a platform reset attack) is a type of side channel attack in which an attacker with physical access to a computer is able to retrieve encryption keys from a running operating system after using a cold reboot to restart the machine.	ATTACK	Crypto
30.03.2018	Lucky Thirteen attack	The Lucky Thirteen attack is a cryptographic timing attack against implementations of the Transport Layer Security (TLS) protocol that use the CBC mode of operation, first reported in February 2013 by its developers Nadhem J. AlFardan and Kenny Paterson of the Information Security Group at Royal Holloway, University of London.	ATTACK	Crypto
30.03.2018	Electromagnetic attack	In cryptography, electromagnetic attacks are side-channel attacks performed by measuring the electromagnetic radiation emitted from a device and performing signal analysis on it.	ATTACK	Crypto
30.03.2018	Pin Configuration Attack	A PLC can receive and transmit various types of electrical and electronic signals.	ATTACK	Crypto
30.03.2018	Pin Multiplexing Attack	Embedded SoCs usually employ hundreds of pins connected to the electrical circuit. Some of these pins have a single defined purpose.	ATTACK	Crypto
30.03.2018	Pin Control Attack	Pin Control Attack is a class of attack against embedded SoC's where attacker targets I/O configuration of the embedded systems and physically terminate its connection with the software or Operating System (OS) without software/OS notices about it or receive any failure regarding I/O failures.	ATTACK	Crypto
30.03.2018	Timing attack	In cryptography, a timing attack is a side channel attack in which the attacker attempts to compromise a cryptosystem by analyzing the time taken to execute cryptographic algorithms.	ATTACK	Crypto
13.09.2020	Bitcoin Inventory Out-of-Memory Denial-of-Service Attack	There was an easily exploitable uncontrolled memory resource consumption denial-of-service vulnerability that existed in the peer-to-peer network code of three implementations of Bitcoin and several alternative chains.	ATTACK	CryptoCurrency
27.06.2018	TLBleed	TLBleed is a cryptographic side-channel attack that uses machine learning to exploit a timing side-channel via the translation look-aside buffer (TLB) on modern microprocessors that use simultaneous multithreading.	ATTACK	Cryptographic
				cryptographic

Shambles Attack

We have computed the very first chosen-prefix collision for SHA-1. In a nutshell, this means a complete and practical break of the SHA-1 hash function, with dangerous practical implications if you are still using this hash function. To put it in another way: all attacks that are practical on MD5 are now also practical on SHA-1. Check our paper here for more details.