skip to Main Content

Hacking: here it comes SMASH, a new Rowhammer attack variation

Here it comes SMASH, a new Rowhammer attack variation. The technique to hack modern DDR4 RAM cards has been discovered by the Vrije University and ETH Zurich cybersecurity researchers

SMASH (Synchronized MAny-Sided Hammering) is a new Rowhammer attack variation. It has been discovered by the Vrije University and ETH Zurich cybersecurity researchers, who published a paper describing it. The technique can be used to trigger the attack from JavaScript on modern DDR4 RAM cards, notwithstanding extensive mitigations that have been put in place by manufacturers over the last seven years, according The Hacker News. Despite their in-DRAM Target Row Refresh (TRR) mitigations, some of the most recent DDR4 modules are still vulnerable to many-sided Rowhammer bit flips,” the researchers said. “SMASH exploits high-level knowledge of cache replacement policies to generate optimal access patterns for eviction-based many-sided Rowhammer. To bypass the in-DRAM TRR mitigations, SMASH carefully schedules cache hits and misses to successfully trigger synchronized many-sided Rowhammer bit flips.”

Back To Top