Search This Blog
Powered by Blogger.

Blog Archive

Labels

Load More
Trendy Right Now

Popular Posts

Showing posts with label Cortex-M. Show all posts
Financial Security
Ai Data AI technology Cortex-M Cyber Security Cyberattack data security Financial Security

Snowflake Faces Declining Growth Amid Cybersecurity Concerns and AI Expansion

 

Snowflake Inc. recently faced a challenging earnings period marked by slowing growth and concerns following multiple cyberattacks. Despite being an AI data company with innovative technology, these events have impacted investor confidence, causing the stock price to retest recent lows. The company’s latest financial results reflect a continuing trend of decelerating growth, which is compounded by a valuation that assumes far higher growth rates than currently achieved.  

Snowflake’s sales growth has slowed considerably, with its FQ2 revenue growing by just under 29%, down from nearly 33% in the previous quarter. Projections for FQ3 suggest an even sharper decline, with product revenue growth forecasted to rise by only 22% year-over-year. The slowdown in revenue is significant, with growth rates expected to dip to as low as 20% in FQ4. In past quarters, Snowflake experienced higher sequential growth on a much smaller base, indicating that the company’s growth challenges are becoming more pronounced as it scales. The deceleration in sales has not been mitigated by the company’s focus on AI. During the earnings call, Snowflake highlighted the adoption of AI technologies among its 2,500 customers. 

However, these new product features, such as those centered around AI products like Cortex, are not expected to materially impact revenues in the near term. Snowflake’s guidance for FY 2025 does not factor in any significant contributions from these AI initiatives, further dampening expectations for a quick turnaround. Snowflake’s recent performance is further complicated by lingering cybersecurity issues. The company faced a series of cyberattacks where customer data stored on their platforms was compromised, partly due to inadequate sign-on controls by customers. Additionally, the recent CrowdStrike (CRWD) cybersecurity incident has only added to investor concerns about the company’s data security posture. 

Despite the concerns, Snowflake points to growth in remaining performance obligations (RPOs), with commitments reaching $5.2 billion, a 48% increase. Yet, management admits that RPOs may not be the best leading indicator for growth, given that product revenue is declining. The company also contends with multiple top customers operating on flexible, month-to-month contracts, which creates uncertainty in long-term revenue projections. Snowflake remains priced for perfection, trading at 12 times its FY25 revenue target of $3.5 billion, with a fully diluted market cap of $41.4 billion. However, the stock price has already fallen nearly 50% this year, and non-GAAP gross margins are slim, sitting at just 5% in the most recent quarter. 

While Snowflake generates significant free cash flow due to upfront customer payments, it also carries future obligations, further straining its financial outlook. The key takeaway for investors is that while Snowflake continues to innovate in AI and data management, it faces substantial headwinds due to slowing growth, cybersecurity concerns, and a valuation that does not reflect current market realities. Given these factors, potential investors might be wise to stay on the sidelines until there is clearer evidence of a turnaround in the company’s growth trajectory.
Read more »
TrustZone
Arm Chip-maker Arm Chipmaker Cortex-M Cyber Attacks Direct Memory Access microcontrollers (MCUs) TrustZone

Chip-Maker Arm Reveals Side-attack on Cortex-M, Denies it as failure of The Architecture's Defenses


Chip designer Arm confirms that a successful side-channel attack on one of its TrustZone-enabled Cortex-M based systems cannot be viewed as a failure of the architecture's defenses.

In a statement last Friday, BLACK HAT ASIA Arm said that a successful side attack on one of its Cortex-M systems with TrustZone enabled was "not a failure of the protection offered by the architecture."

"The Security Extensions for the Armv8-M architecture do not claim to protect against side-channel attacks due to control flow or memory access patterns. Indeed, such attacks are not specific to the Armv8-M architecture; they may apply to any code with secret-dependent control flow or memory access patterns," argued Arm.

Arm released the statement following a presentation titled "Hand Me Your Secret, MCU! " at the Black Hat Asia infosec conference last week. Microarchitectural Timing Attacks on Microcontrollers are Practical" - claimed that side-channel attacks are possible on the microcontrollers made by the chip design company.

Researchers from Portugal's Universidade do Minho (UdM) were successful in demonstrating that MCUs were vulnerable to similar attacks. Their findings were based on the 2018 discovery of Spectre and Meltdown, the Intel CPU architecture vulnerabilities that opened Pandora's box of microarchitecture transient state side attacks.

Historically, servers, PCs, and mobile devices were the principal targets of microarchitectural attacks. Due to the systems' simplicity, microcontrollers (MCUs) like Arm's Cortex-M were considered an unlikely target. However, a successful assault would have serious repercussions because MCUs are included in almost all IoT devices, as UdM researchers Sandro Pinto and Cristiano Rodrigues explained at Black Hat Asia last Friday.

The researchers are calling their discovery the first microarchitectural side-channel attack for MCUs. A side-channel attack is a strategy that gets through CPU memory isolation protections by recovering or stealing knowledge about a system through observation.

The researchers described that the attacks take advantage of the timing differences exposed through the bus interconnect arbitration logic. The bus interconnect cannot support two transactions to access a value in memory issued simultaneously by two bus masters within the MCU, such as the CPU and Direct Memory Access (DMA) block. It delays the other while giving one priority.

The researchers applied this logic in an effort to analyze how much the victim application was delayed, and thus infer the secret PIN. The procedure was automated by running the spy logic independently of the CPU in the background using the peripherals.

For MCU CPUs and bus interconnect designs, Arm has a significant market share. The chipmaker claims that its TrustZone-M technology, when combined with other safeguards, provides tamper-proof security for the entire MCU, including defense against side attacks. Arm wants to at the very least render such attacks "uneconomical."  

Read more »
Subscribe to: Posts (Atom)