Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/dangoodin/statuses/111309007610312951">Dan Goodin (dangoodin@infosec.exchange)'s status on Saturday, 04-Nov-2023 19:04:26 JST</a><a href="https://infosec.exchange/@dangoodin" title="dangoodin@infosec.exchange"><img src="https://gnusocial.jp/avatar/92418-48-20240105201020.webp" width="48" height="48" alt="Dan Goodin" style="position: absolute; left: 0; top: 0;">Dan Goodin</a><div><ul><li><li><a href="https://gnusocial.jp/user/208204" title="yuvalyarom@infosec.exchange">Yuval Yarom</a></li></ul></div></section><article><p>Google has removed a video posted by academic researchers demonstrating how a newly discovered side channel in Apple's A- and M-series CPUs can be used to steal a password.</p><p>I thought for sure the removal was a mistake, but a Google representative told me the video was removed for violating a term of service barring  "demonstrating how to use computers or information technology to steal credentials, compromise personal data, or cause serious harm to others."</p><p>The video, demonstrating important research by <a href="https://infosec.exchange/@genkin">@genkin</a>, <a href="https://infosec.exchange/@YuvalYarom">@YuvalYarom</a> , <a href="https://birdsite.wilde.cloud/users/themadstephan">@themadstephan</a> and jason kim, is here:</p><p><a href="https://onedrive.live.com/?authkey=%21AMTjzIS6XfV1jzg&amp;id=8208800C17D803E6%211176&amp;cid=8208800C17D803E6&amp;parId=root&amp;parQt=sharedby&amp;o=OneUp" rel="nofollow noreferrer">https://onedrive.live.com/?authkey=%21AMTjzIS6XfV1jzg&amp;id=8208800C17D803E6%211176&amp;cid=8208800C17D803E6&amp;parId=root&amp;parQt=sharedby&amp;o=OneUp</a></p><p>Just to underscore how arbitrary and patently asinine Google's ToS enforcement is here, two additional videos the researchers posted demonstrating the same side channel remain available.</p><p>I wonder how researchers from <a href="https://infosec.exchange/tags/projectzero" rel="tag">#projectzero</a> feel about this. Is there any chance any of them can intervene?</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2278416#notice-4492668">In conversation</a><time datetime="2023-11-04T19:04:26+09:00" title="Saturday, 04-Nov-2023 19:04:26 JST">about a year ago</time> <span>from <span><a href="https://infosec.exchange/@dangoodin/111309007610312951" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@dangoodin/111309007610312951">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Dan Goodin (dangoodin@infosec.exchange)'s status on Saturday, 04-Nov-2023 19:04:26 JSTDan Goodin
- Daniel Genkin
- Yuval Yarom
Google has removed a video posted by academic researchers demonstrating how a newly discovered side channel in Apple's A- and M-series CPUs can be used to steal a password.
I thought for sure the removal was a mistake, but a Google representative told me the video was removed for violating a term of service barring "demonstrating how to use computers or information technology to steal credentials, compromise personal data, or cause serious harm to others."
The video, demonstrating important research by @genkin, @YuvalYarom , @themadstephan and jason kim, is here:
https://onedrive.live.com/?authkey=%21AMTjzIS6XfV1jzg&id=8208800C17D803E6%211176&cid=8208800C17D803E6&parId=root&parQt=sharedby&o=OneUp
Just to underscore how arbitrary and patently asinine Google's ToS enforcement is here, two additional videos the researchers posted demonstrating the same side channel remain available.
I wonder how researchers from #projectzero feel about this. Is there any chance any of them can intervene?
In conversationabout a year ago from infosec.exchangepermalink

Public

Embed Notice

HTML Code

Corresponding Notice