Stefan Gast
Stefan Gast

@notbobbytables@infosec.exchange

PhD Candidate in the CoreSec group at

, focusing on side-channel security. Apart from that, I also post and related stuff.

Opinions posted here are my own and do not necessarily reflect those of my employer.

December 17, 2022
Pinned post

In our new paper (accepted at ESORICS 2025), we explore how attackers can mount automated SnailLoad attacks without requiring the user to explicitly click a link to the attacker's server.
For this, we exploit the automatic handling of external references in messenger and email applications, as well as responses from home routers to TCP SYNs targeting closed ports.
The full paper is available here: stefangast.eu/papers/zeroclick

Thank you to Nora Puntigam, @silent_bits, @vmcall, @lavados and Johanna Ullrich for the fantastic collaboration!

This is quite annoying: I recently bought a 100W USB PD charger to use with both my private and my office notebook when traveling. The original chargers for the office and private notebook are rated 65W and 100W, respectively, so I was expecting the travel charger to work with both devices.

However, it turns out that the travel charger only works reliably with my office notebook, whereas on my private device I get random disconnects when the device is under load, with the kernel complaining that it cannot read the AC adapter state due to an AML loop timeout. Even worse, just a few minutes ago the GPU of the notebook locked up completely and the notebook required a hard reset.

Similarly, my office notebook does not like the stronger original charger of my private notebook, printing a warning that it is too weak when booting.

I was expecting that these things work flawlessly with USB PD, but apparently I was too optimistic.

Elk Logo

Welcome to Elk!

Elk is a nimble Mastodon web client. You can login to your Mastodon account and use it to interact with the fediverse.

Expect some bugs and missing features here and there. Elk is Open Source and we're actively improving it as a community project. Join us and let's build it together!

If you'd like to report a bug, help us testing, give feedback, or contribute, reach out to us on GitHub and get involved.

To boost development, you can sponsor the Team through GitHub Sponsors. We hope you enjoy Elk!

Anthony FuPatakDaniel Roe三咲智子 Kevin DengJoaquín SánchezTAKAHASHI Shuuji

The Elk Team