More Spectre-like flaws uncovered in Intel and ARM processors
The year began with horrible news for CPU manufacturers after two security flaws, named Meltdown and Spectre, were discovered. Back then it was speculated that fixes could slow down an OS by 30% to prevent the device from malware.
A fix was issued by manufacturer and when it turned out it's not that bad the hysteria started to die down. Now however it might return in full for as eight more vulnerabilities, dubbed Spectre-NG (New Generation), were revealed and they are classed as “high risk”, compared to the first Spectre that was “medium”.
One of the Spectre-NG flaws simplifies an attack on the system boundaries, making the threat potentially more significant. Getting into detail, c’t explains an attacker might launch an exploit code in a virtual machine and attack the host from there - for example, a server of a cloud. That way the malware could spread to everyone connected to the same server, leaking passwords and private info.
The danger for private individuals and corporate PCs is rather small since there are other weaker points of access. Intel said that it “will share additional details on any potential issues when mitigations are finalized”.
-
Sony patches up Xperia XZ, Xperia XZs and X Performance for “Spectre” and “Meltdown”
-
Test: iPhone 8 and iPhone 7 performance after the Spectre and Meltdown patches
-
Essential Phone getting January patch and Spectre/Meltdown fixes
-
Macs and iOS devices also affected by Meltdown and Spectre vulnerabilities
Reader comments
- Tango.
- 8E}
"Professor, without knowing precisely what the danger is, would you say it's time for our viewers to crack each other's heads open and feast on the goo inside?" LOL
- Anonymous
- Iks
Yes, I'm sure every CPU designed within the last 15 years is designed explicitly for the US to be able to spy on it...even the ones who are clearly not designed in the US...or by US companies... And yes, clearly they made it on purpose tied to the ...
- AnonD-752804
- dZt
forget it. these bugs are intentional to spy on everyone in the world. they will fix some and add new ones until some one finds out about them ... and so on
-
Samsung launches a 60W charger in preparation for the Galaxy S26 Ultra
-
SHARGE ICEMAG 3 is a 10,000 mAh power bank with graphene cooling and 25W Qi2 wireless charging
-
Samsung is working on a major camera upgrade for its next-gen flagships
-
Ultrahuman Air is a smart ring that monitors sleep, recovery and more
Tip us
2.0m 150k
RSS
EV
Merch
Log in I forgot my password Sign up