🧵 …hier noch ein Artikel auf Deutsch zum Thema oben:

«Webseiten können Nutzer mit neuem Trick ausspionieren:
Grazer Sicherheitsforscher haben eine neue Methode gefunden, mit der sich ein Computer unauffällig ausspionieren lässt.»

🤬 https://futurezone.at/science/webseiten-nutzer-ausspionieren-frost-ssd-graz-sicherheitsforscher/403164755

#ssd #web #spy #javascript #online #itsec #website #privatsphare #sicherheit #itsecurity #spionage #itsicherheit #itsicherheit #FROST #OPFS #wtf

Webseiten können Nutzer mit neuem Trick ausspionieren

Grazer Sicherheitsforscher haben eine neue Methode gefunden, mit der sich ein Computer unauffällig ausspionieren lässt.

futurezone.at

"Websites have a new way to spy on visitors: Analyzing their SSD activity"
https://arstechnica.com/security/2026/05/websites-have-a-new-way-to-spy-on-visitors-analyzing-their-ssd-activity/

Writing 1 gigabyte of data via browser"s javascript to a SSD to fingerprint users? Meh.

"Unlike previous contention side-channel attacks on SSDs, FROST runs exclusively in the browser. It uses JavaScript that interacts with the OPFS (origin private file system), an allocated storage space that’s reserved for a specific site to run code needed to complete a given task. Websites can create one with no interaction required by the visitor." #frost #websec #fingerprint #Security #opfs

Websites have a new way to spy on visitors: Analyzing their SSD activity

Telltale SSD activity can be measured in the browser using simple JavaScript.

Ars Technica

Studie: Wenn FROST die Privatsphäre beim Surfen gefährdet...

Mehr: https://maniabel.work/archiv/1692

#BrowserSicherheit #FROST #OPFS #SSD #JavaScript #infosec #up2date #BeDiS

«Websites have a new way to spy on visitors — analyzing their SSD activity:
Telltale SSD activity can be measured in the browser using simple JavaScript.»

WTF!?!! Why do the web providers always want to listen to their users instead of simply offering correct honest services?

🤬 https://arstechnica.com/security/2026/05/websites-have-a-new-way-to-spy-on-visitors-analyzing-their-ssd-activity/

#ssd #web #spy #javascript #online #itsec #website #privacy #securyti #itsecurity #spying #onlineprivacy #FROST #OPFS

Websites have a new way to spy on visitors: Analyzing their SSD activity

Telltale SSD activity can be measured in the browser using simple JavaScript.

Ars Technica
SQLite WASM with OPFS: Database in the Browser

Introduction

Medium

WebAssembly 기반의 Ruby on Rails: 브라우저 내 풀스택 아키텍처 구현 가이드

WebAssembly 기술을 활용하여 서버 없이 브라우저 탭 내에서 Ruby on Rails의 백엔드, 데이터베이스, 파일 스토리지를 완전히 구동할 수 있습니다.

🔗 원문 보기

WebAssembly 기반의 Ruby on Rails: 브라우저 내 풀스택 아키텍처 구현 가이드

WebAssembly 기술을 활용하여 서버 없이 브라우저 탭 내에서 Ruby on Rails의 백엔드, 데이터베이스, 파일 스토리지를 완전히 구동할 수 있습니다.

Ruby-News | 루비 AI 뉴스
Origin private file system - Web APIs | MDN

"The origin private file system (OPFS) is a storage endpoint provided as part of the File System API, which is private to the origin of the page and not visible to the user like the regular file system. It provides access to a special kind of file that is highly optimized for performance and offers in-place write access to its content."

https://developer.mozilla.org/en-US/docs/Web/API/File_System_API/Origin_private_file_system

#dev #files #opfs #web #webdev
Origin private file system - Web APIs | MDN

The origin private file system (OPFS) is a storage endpoint provided as part of the File System API, which is private to the origin of the page and not visible to the user like the regular file system. It provides access to a special kind of file that is highly optimized for performance and offers in-place write access to its content.

MDN Web Docs

ブラウザの「Origin Private File System(OPFS)」を使ってローカルでのデータ読み書き(ローカルにデータ保持)
https://qiita.com/youtoy/items/37a26c1ad0a2e16e5970?utm_campaign=popular_items&utm_medium=feed&utm_source=popular_items

#qiita #JavaScript #opfs #OriginPrivateFileSystem #オリジンプライベートファイルシステム

ブラウザの「Origin Private File System(OPFS)」を使ってローカルでのデータ読み書き(ローカルにデータ保持) - Qiita

はじめに この記事は、「OPFS(Origin Private File System/オリジンプライベートファイルシステム)という、ブラウザのローカルにデータを保存する仕組みに関する内容です。 以下に、MDN での OPFS に関するページや説明を少し掲載します。 ●オ...

Qiita

Nice trick to still run #sqlite #wasm in browser with #opfs enabled if you can't set #coep / #coop on server

https://toot.cafe/@tomayac/114128600602436482

#http #webserver #serviceworkers

Thomas Steiner :chrome: (@[email protected])

📢 New blog post! Setting the COOP and COEP headers on static hosting like GitHub Pages: https://blog.tomayac.com/2025/03/08/setting-coop-coep-headers-on-static-hosting-like-github-pages/. Make your site cross-origin isolated with this one weird trick 🃏!

Toot Café

Who here knows enough #webplatfrom and #webapi to know if relative links exists with the Origin Private File System (#OPFS)?

thanks much for RT and dig to find people knowing...