Notices tagged with spectre, page 4

Intel facing class-action lawsuits over Meltdown and Spectre bugs

Plaintiffs claim compensation for security flaws and alleged slowdown that fixing computers will cause, while corporations count cost of corrections

https://www.theguardian.com/technology/2018/jan/05/intel-class-action-lawsuits-meltdown-spectre-bugs-computer

#Meltdown #Spectre

Prediction:

Software will be used to mitigate #meltdown and #spectre, slowing everything down.

In 2020, a new line of Intel CPUs hit the market where you pay a premium for "virtual security extensions" (VSE) that let you turn off the mitigations.

Google, AWS buy truckloads.

Intel profites.

Yay!

I suspect people trying to find alternate CPU architectures that don't suffer from #Spectre - like bugs have misunderstood how fundamental the problem is.

Your CPU will not go fast without caches. Your CPU will not go fast without speculative execution. Solving the problem will require more silicon, not less.

I don't think the market will accept the performance hit implied by simpler architectures. OS, compiler and VM (including the browser) workarounds are the way this will get mitigated.

Just FYI, the #OpenBSD project knew about the potential harm of #Spectre and #Meltdown 11 years ago

https://marc.info/?l=openbsd-misc&m=118296441702631&w=2

This is before exploits routinely started getting catchy names and even before MySpace was a thing. Let alone Twitter and Facebook was around to share news of the impending CPU apocalypse

Too bad so few people listened

https://mastodon.social/media/I10ysFRGxesWg61C5gU
https://mastodon.social/media/-_luWj8UwuEKaeoIq74

#Hardware #Security Fiasco: The Latest
http://www.tuxmachines.org/node/107901 #Meltdown #Spectre

#Debian Security Information about #Meltdown & #Spectre
https://www.debian.org/security/2018/dsa-4078

"Apple confirms all its devices affected by processor exploits"

https://support.apple.com/en-us/HT208394

source: https://seekingalpha.com/news/3321328-apple-confirms-devices-affected-processor-exploits?app=1&dr=1#email_link

#meltdown #spectre #infosec #apple #appl

Hard to explain why or how I think the #Meltdown and #Spectre vulnerabilities are hilarious.

It's kinda like a bad joke.

Oops, we accidentally your CPU.
Solution: replace CPU

I think it's the conceit of these institutions.

They took shortcuts and optimized one factor at the cost of the others. Maybe it's that #complexity is a real problem and people assume it will work itself out somehow. 🤷♂️

It's an important lesson for the future of computing.

https://cybre.space/media/OYRQMMYfKASXuSh0AHg

Pas Mal #Meltdown #Spectre

- La faille est exploitée par un ransomware: ❌
- Joli petit nom: ✅
- Faut tout patcher: ✅
- Les concurrents sont aussi vulnérables: ✅
- Linus torvalds tape un drame: ✅
- C'est les Russes: ❌
- C'est l'IoT: ❌
- L'éditeur n'assume rien: ✅
- La NSA savait: ❌
- We are fucked: ✅
- Joli petit nom: ✅
- Le KGB savait pas: ✅
- C'est les chinois: ❌
- Depuis 15 ans: ✅
- On ne sait plus qui doit patcher quoi: ✅
- La team Project Zero nique l'embargo: ✅

https://twitter.com/Mnyo/status/948962679271690240

Astounding coincidence: Intel's CEO liquidated all the stock he was legally permitted to sell after learning of catastrophic processor flaws https://boingboing.net/2018/01/04/39-million-to-one-shot.html #intelinsidertrading #guillotinewatch #insidertrading #classwar #impunity #meltdown #crooked #piketty #spectre #ripoff #fraud #intel #Post

Les campagnes marketing programmées (trop) en avance > *
#Meltdown #Spectre #Intel
😂

CERT recommends throwing away your computer and buying a new one. #meltdown #spectre #thisisfine https://www.kb.cert.org/vuls/id/584653