Websites have a new way to spy on visitors: analyzing their SSD activity
kurthr
15 points
2 comments
May 27, 2026
Related Discussions
Found 5 related stories in 110.9ms across 8,637 title embeddings via pgvector HNSW
- Data Has Weight but Only on SSDs LorenDB · 77 pts · March 04, 2026 · 52% similar
- I audited the privacy of popular free dev tools, the results are terrifying WaitWaitWha · 52 pts · March 03, 2026 · 50% similar
- Microsoft is employing dark patterns to goad users into paying for storage? jpmitchell · 295 pts · April 09, 2026 · 50% similar
- ICE acknowledges it is using powerful spyware helterskelter · 21 pts · April 08, 2026 · 50% similar
- LinkedIn is scanning browser extensions un-nf · 417 pts · April 30, 2026 · 49% similar
Discussion Highlights (1 comments)
bastawhiz
The research paper: https://hannesweissteiner.com/pdfs/frost.pdf Not too exciting of an issue, unfortunately. It only really works if you have one application or website open in addition to the malicious page. They don't mention it explicitly (though maybe I missed it), but it seems like you'd have a very hard time fingerprinting individual pages, only websites. It also seems like you have to open the application or webpage while the malicious page is measuring—it can't get a meaningful trace from a page that's idling. The other thing that stands out to me is that I would expect the browser to throttle the malicious page when it's inactive. Background tabs don't stay fully active, so you'd be hard pressed to abuse this in realistic circumstances, I think.