Researchers at Graz University of Technology in Austria have discovered a new security vulnerability named “SnailLoad,” which allows attackers to spy on internet users by monitoring fluctuations in their internet connection speed. This loophole can bypass existing security measures such as firewalls, VPNs, and browser privacy modes. Attackers only need brief contact with a victim, often achieved by downloading a harmless file, to begin tracking their online activity through unique latency patterns.
The SnailLoad technique requires no malicious code, making it difficult for security software to detect. By analyzing the unique “fingerprints” of different online activities, such as video calls or website visits, attackers can accurately identify the content being accessed. Although current success rates vary, improvements in machine learning could make this attack more precise. Closing this security gap presents significant challenges, underscoring the need for ongoing innovation and vigilance in cybersecurity.