[p1necone]

> The attacker will need to cause dozens of machine halts in order to achieve even a single exploitable bitflip. Dozens of machine halts is not something that goes undetected.

If you're targeting a specific machine, if you're throwing the exploit at a few thousand machines shotgun style then you're still going to get your botnet - it'll just be smaller.

[crotchfire]

Can you point to any botnets which were built using rowhammer attacks?

Rowhammer and speculative execution attacks are incredibly labor-intensive and target-specific. They are targeted attacks for high-value targets.

[vlovich123]

I think the point is that people with thousands of machines are probably going to notice if a meaningful chunk of them start halting.

[SAI_Peregrinus]

Yep, and desktop users will certainly notice. Only AMD has desktop (not workstation) ECC support.

[riedel]

If you are running windows 10 random halts and the CPU getting hot won't seem suspicious.

[p1necone]

Why do you need to target one person who has thousands of machines? What if I just want to pwn whatever random machines visit my dodgy website? Dismissing an exploit just because it only works some fraction of the time seems overly optimistic to me.