Sunday, May 31, 2026

Websites Can Now Peek at Your SSD to See What You're Up To

There's reportedly a new way for websites to spy on visitors: by monitoring how their computers' SSDs behave. The technique is called FROST, short for "fingerprinting remotely using OPFSbased SSD timing," and it runs through JavaScript on a web page. So far, this looks more practical in lab conditions than in the real world.

Posted by lamplighter at 12:08 AM | 2 COMMENTS | permalink

Comments

More from the article ...

... A malicious website can create a large file in the browser's private storage. It can then repeatedly read from this file to check for small changes in the time it takes to access it. These timing changes occur because other programs and browser tabs are also using the SSD, creating competition for drive access, per Ars Technica.

By tracking these timing patterns and feeding them into a trained convolutional neural network, the attacker can determine which other websites and apps are open on the device. This works in different web browsers and can recognize common applications based on their input and output patterns. FROST does not read actual files or decrypt HTTPS traffic, but it can reveal what services run in the background. ...


#1 | Posted by LampLighter at 2026-05-31 12:09 AM

imo, browser JavaScript is evil.

#2 | Posted by LampLighter at 2026-05-31 12:11 AM

Drudge Retort Headlines

Trump DOJ Launches Criminal Probe Into E. Jean Carroll: Sources (29 comments)

NYT Reports that Peter Thiel has Moved His Family to Argentina (24 comments)

Scott Bessent Wants to Put Trump on $250 Bill (19 comments)

The War Trump Can't End (17 comments)

Trump Threatens to Blow Up Oman (14 comments)

Why Trump isn't Bothering to Hide his Corruption (14 comments)

Markwayne Mullin Wants to Hire His Wife as SGE (12 comments)

Poll: Trump Supporters Reject His Anti-Weaponization Fund (11 comments)

Virginia Bus Crash Killis 5 and Injuries Dozens (10 comments)

Blue Origin, Blowed Up. (10 comments)