New Browser Exploits Uncover Hidden Hard Drive Surveillance

Researchers have uncovered a novel method to detect and exploit hard drive surveillance through websites, leveraging a previously unknown technique called FROST that enables measurement of telltale SSD activity in the browser using JavaScript. The discovery stems from a sophisticated attack vector known as “SSD fingerprinting,” which relies on distinguishing between unique hard drives by analyzing minute variations in sequential read operations. By utilizing this method, malicious actors can identify the user’s machine and gather sensitive data such as operating system type, hardware specifications, and even personal files stored locally. The FROST technique allows developers to bypass these security measures with relative ease, creating a vulnerable window for malicious scripts to track an individual’s device activity through seemingly innocuous browsing interactions. As a result, users are now more susceptible than ever to being tracked without their knowledge or consent. To combat this emerging threat, tech giants and cybersecurity experts alike are urging browser vendors to implement effective countermeasures against FROST-based attacks, such as enhanced data protection features and better awareness about the risks associated with SSD fingerprinting.