New FROST Attack Lets Websites Detect Your Open Tabs Through SSD Activity

Researchers have uncovered a new browser‑based attack called FROST that lets malicious websites identify which other tabs and apps a user has open by measuring SSD contention through JavaScript. The technique abuses the Origin Private File System to create a large local file and then monitors tiny I/O timing fluctuations, which a neural network can map to specific websites or applications. Tests showed high accuracy on an M2 Mac, and the attack works across browsers without user interaction. While not yet seen in the wild, the only reliable defense today is closing unnecessary tabs or monitoring unexpected OPFS file creation, as browser vendors have not committed to fixes.

Read the full story on Ars Technica →