Daniel Weber's Avatar

Daniel Weber

@d-we

Microarchitectural Security | PhD Student @ #CISPA https://d-we.me

30
Followers 56
Following 3
Posts 20.02.2025
Joined
Posts Following

Latest posts by Daniel Weber @d-we

StackWarp

For more details on the discovery process and our findings, we refer to our research paper, which is published at USENIX Security 2026.

paper: stackwarpattack.com
github: github.com/cispa/StackW...

\cc Tristan Hornetz, @d-we.bsky.social, Fabian Thomas, @misc0110.bsky.social

15.01.2026 18:29 ๐Ÿ‘ 2 ๐Ÿ” 1 ๐Ÿ’ฌ 1 ๐Ÿ“Œ 0
Video thumbnail

Today we reveal StackWarp: a new CPU vulnerability exploiting a synchronization bug in AMDโ€™s stack engine across Zen 1โ€“5 CPUs. It enables deterministic manipulation of Confidential VM's stack pointer, allowing RCE and privilege escalation via both control- and data-flow hijacking.

15.01.2026 18:27 ๐Ÿ‘ 31 ๐Ÿ” 13 ๐Ÿ’ฌ 1 ๐Ÿ“Œ 0
Cascading Spy Sheets: Exploiting the Complexity of Modern CSS for Email and Browser Fingerprinting Cascading Spy Sheets: Exploiting the Complexity of Modern CSS for Email and Browser Fingerprinting

for more info: s.roots.ec/spy-sheets

03.04.2025 14:58 ๐Ÿ‘ 1 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Post image

@ltrampert.bsky.social and I just gave a talk at Black Hat Asia showing how CSS can be abused to deanonymize you when opening an email!
cc: @blackhatevents.bsky.social #BHASIA25

03.04.2025 14:50 ๐Ÿ‘ 4 ๐Ÿ” 0 ๐Ÿ’ฌ 1 ๐Ÿ“Œ 0

Heading to Black Hat Asia now! @ltrampert.bsky.social and I will give a briefing about deanonymizing users not only on the web but also in their email clients! #bhasia

30.03.2025 18:33 ๐Ÿ‘ 4 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Post image

Just gave a keynote at #Ruhrsec about threat models, Side channels, fault attacks, how the evolve and how we should approach them...

21.02.2025 12:37 ๐Ÿ‘ 15 ๐Ÿ” 4 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0