I wonder if you could setup a virtual drive that gets picked up as an SSD and then automate and randomize everything that happens within it so it’s just noise. The problem is that this hack probably gives insight into every drive on the system, so the exploit would still grab that data; it would just run alongside the bullshit stream of data.
Comment on Websites have a new way to spy on visitors: Analyzing their SSD activity
Marshezezz@lemmy.blahaj.zone 2 days ago
Is there any way to exploit what they are doing to feed them a bunch of shit data to waste their time and effort? Would it even be worth any effort? I’m asking sincerely cos I have a lot of time on my hands wink wink nudge nudge
orca@orcas.enjoying.yachts 2 days ago
qprimed@lemmy.ml 2 days ago
the attack should only have insight into the abstracted storage provided by the browser, so your idea of a virtual device that spits out random timing results is probably reasonable.
the issue is that timing being random, in and of itself, is a potential fingerprint when combined with other data from your browser - unless everyone is doing it as well.
all I can say is I give thanks for noscript every single day.
randy@lemmy.ca 2 days ago
Nobody that we know of is doing this to any computers but their own. This is researchers demonstrating a possible side-channel attack, but there’s no sign anyone is doing this in the wild. What the researchers demonstrated also has some pretty significant shortcomings, so I don’t see this being viable for real tracking, at least without changes.