![weber_daniel's tweet photo. We're [1] disclosing StackWarp, a CPU vulnerability allowing complete AMD SEV VM takeovers!
The project was lead by @Rayiizzz, who is also on the academic job market, so hit him up if u want research like this on your campus!
[1] @Rayiizzz, T. Hornetz, me, @fth0mas, @misc0110 https://t.co/d4YjswcdOi](https://pbs.twimg.com/media/G-ui-U8aQAAMWeL.jpg)
Olivia
Online
Michael Schwarz
@misc0110
InfoSec Faculty @ #CISPA. Side-channel attacks. Exploiting microarchitectures. #Meltdown #Spectre #ZombieLoad #SGX #JavaScript #Rowhammer
Joined March 2014
457 Following
7.2K Followers
690 Posts
Pinned Tweet
Getting tenure was a great journey. I want to thank my students, collaborators, and colleagues for their help! This wouldn't have been possible without them.
After an embargo of 256 days, I'm happy to reveal our newest work: we present TREVEX, a black-box CPU fuzzer that detects transient execution vulnerabilities in an automated manner. Running TREVEX on AMD, Intel, and Zhaoxin CPUs discovered multiple new CPU vulnerabilities!
New StackWarp Attack Threatens Confidential VMs on AMD Processors https://t.co/xGxCpeVcN5
Who to follow
Daniel Gruss
@lavados
#InfoSec University Professor @ #TUGraz. #meltdown, #spectre, #rowhammer, cache attacks, sustainable security. Produced a side channel security sitcom.
Markus Vervier 
@marver
Security Vulnerability Coach, responsible for @x41sec and @persistent_psi
Tweets here are my own.
Jann Horn - [email protected]
@tehjh
occasional human borrow checker; works at Google Project Zero; personal account;
mastodon: [email protected]
StackWarp: A new CPU vulnerability affecting AMD SEV-SNP (Zen 1-5). A malicious host can manipulate the stack pointer inside the confidential virtual machine, breaking integrity and confidentiality guarantees.
/cc @Rayiizzz
https://t.co/xUcG0ZQDok
Today we reveal StackWarp: a new CPU vulnerability exploiting a synchronization bug in AMD’s stack engine across Zen 1–5 CPUs. It enables deterministic manipulation of Confidential VM's stack pointer, allowing RCE and privilege escalation via both control- and data-flow hijacking
New StackWarp Attack Threatens Confidential VMs on AMD Processors: Researchers have disclosed technical details on a new AMD processor attack that allows remote code execution inside confidential VMs.
The post New StackWarp Attack Threatens… https://t.co/iF479fU4qr
I‘ll be joining the Microarchitecture Security Conference (uasc) in Leuven this February - come by and say hello. 👋
Registration is open for MICSEC Winter School 2025 (Dec 1–5)!
An incredible week in side-channel and microarchitectural security with talks and hands-on sessions from world-class experts.
Register now: https://t.co/dZ0PTqTJjU
Thrilled to present our (Lukas G., @LTrampert ,Youheng L, @jovanbulck ,@misc0110) newest paper ("SCASE: Automated Secret Recovery via Side-Channel-Assisted Symbolic Execution") at #USENIX Security this week!
1/n
I am chairing the second edition of the microarchitecture security conference (uASC'26). Paper deadline for the first cycle is July 15. Please spread the word, submit, and/or join us in charming Leuven in February 2026! More info: https://t.co/nAIs7HZ1SS
✅ Write constant-time crypto code
☠️ Compiler introduces timing side-channels
Do Compilers Break Constant-time Guarantees?
https://t.co/x0f0GCmcjC
TL;DR: Yes!🥲
👏👏👏Great work @misc0110 & team!
@LTrampert and I just gave a talk at Black Hat Asia showing how CSS can be abused to deanonymize you when opening an email!
cc: @BlackHatEvents #BHASIA25
Heading to Black Hat Asia now! @LTrampert and I will give a briefing about deanonymizing users not only on the web but also in their email clients! #BHASIA
The second #DIMVA25 deadline is upcoming: February 12 AoE. If you're planning to submit a paper, register it already: https://t.co/qRWVSTvn7x
DIMVA has a great community and is quite visible: 3 out of my 10 top cited papers are DIMVA papers!
Hope to see many of you in Austria!
@_MatteoRizzo Wow, great work! The PoC also works like a charm on the Ryzen 9 7940HS I tested. Looking forward to reading more details about that.
https://t.co/JE68XbHamM
Our newest research project is finally public! We can load malicious microcode on Zen1-Zen4 CPUs!
The uASC registration is open now:
https://t.co/Ph8eLfqbQT
Also the uASC deadline is approaching: January 27 AoE.
We accept papers, posters, and talks. We have conference proceedings. We're interested in any insights broadly around microarchitecture security.
CFP for uASC 25 is still open. We have rolling reviews, and 1 submission is already accepted. If you have interesting results on microarchitecture security (incl. weak threat models or reproducing prior work), check out the CFP at https://t.co/CbTMndIkzz
The CFP closes **Jan 28**
Super excited to present our (L. Niemann, @____salmon____, @jan__reineke, @misc0110) newest paper at #ACSAC2024! We show how modern CPU hardware can be leveraged to stop side-channel attacks almost instantly (~200 CPU cycles)!
Code/Paper: https://t.co/EEBfQ3uFTC
Got some negative or unrealistic threat model results that still bring interesting insights? A side channel that requires root to leak something from the kernel? Reproducing prior work? Somewhat related to microarchitecture? Here's your venue: https://t.co/Ph8eLfpE1l
Last Seen Users on Sotwe
chó cái thèm tinh
Seen from Vietnam
Crypto Knight 🇬🇧
Seen from United Kingdom
i.aiestaran
Seen from Spain
Anh Tú
Seen from Singapore
dafakar
Seen from Japan
الملكة إيما/Queen Emma
Seen from Belgium
3. Dünya Savaşı
Seen from Turkey
重口资源库🔞每天更新!
Seen from Germany
kooper COMM OPEN
Seen from Japan
PEMUJA JANDA
Seen from Singapore
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers