Intel chipset can be exploited to sniff SSH passwords as they’re typed over the network. In 2011, Intel introduced a feature called Data-Direct I/O (DDIO) its server processors that allowed network cards and other peripherals to connect directly to a CPU’s last-level cache, increasing input/output bandwidth and reducing latency and power consumption. Data-Direct I/O (DDIO) […]
Article Link: https://www.andreafortuna.org/2019/09/11/netcat-attack-cve-2019-11184-steal-encrypted-ssh-keystrokes-exploiting-ddio/