Researchers have discovered a new attack, GPU.zip, that allows malicious websites to bypass internet security measures and steal sensitive visual data from other sites. The attack exploits data compression used by GPUs to improve performance, creating a side channel to steal pixels one by one. The attack works on GPUs provided by Apple, Intel, AMD, Qualcomm, Arm, and Nvidia, and is effective on both Chrome and Edge browsers.
Read more at Ars Technica…
