H
Harry Newton
Guest
Massive chip flaw not limited to Intel
<https://www.axios.com/massive-chip-flaw-not-limited-to-intel-2522178225.html>
Intel is dealing with a major chip bug, but full impact unclear
<https://www.axios.com/intel-is-dealing-with-a-major-chip-bug-but-full-impact-unclear-2522162631.html>
How to protect your PC from the major Meltdown and Spectre CPU flaws
<https://www.pcworld.com/article/3245810/security/how-to-protect-your-pc-meltdown-spectre-cpu-flaws.html>
Mac and iPhone both affected by big chip vulnerability
<https://www.axios.com/apple-mac-and-iphone-both-affected-by-big-chip-vulnerability-2522548093.html>
How the Spectre CPU flaw affects phones and tablets
<https://www.pcworld.com/article/3245790/mobile/spectre-cpu-faq-phones-tablets-ios-android.html>
Google Project Zero: Reading privileged memory with a side-channel
<https://googleprojectzero.blogspot.jp/2018/01/reading-privileged-memory-with-side.html>
Intel's full statement:
Intel and other technology companies have been made aware of new security
research describing software analysis methods that, when used for malicious
purposes, have the potential to improperly gather sensitive data from
computing devices that are operating as designed. Intel believes these
exploits do not have the potential to corrupt, modify or delete data.
Recent reports that these exploits are caused by a "bug" or a "flaw" and
are unique to Intel products are incorrect. Based on the analysis to date,
many types of computing devices - with many different vendors'
processors
and operating systems - are susceptible to these exploits.
Intel is committed to product and customer security and is working closely
with many other technology companies, including AMD, ARM Holdings and
several operating system vendors, to develop an industry-wide approach to
resolve this issue promptly and constructively. Intel has begun providing
software and firmware updates to mitigate these exploits. Contrary to some
reports, any performance impacts are workload-dependent, and, for the
average computer user, should not be significant and will be mitigated over
time.
Intel is committed to the industry best practice of responsible disclosure
of potential security issues, which is why Intel and other vendors had
planned to disclose this issue next week when more software and firmware
updates will be available. However, Intel is making this statement today
because of the current inaccurate media reports.
Check with your operating system vendor or system manufacturer and apply
any available updates as soon as they are available. Following good
security practices that protect against malware in general will also help
protect against possible exploitation until updates can be applied.
Intel believes its products are the most secure in the world and that, with
the support of its partners, the current solutions to this issue provide
the best possible security for its customers.
<https://www.axios.com/massive-chip-flaw-not-limited-to-intel-2522178225.html>
Intel is dealing with a major chip bug, but full impact unclear
<https://www.axios.com/intel-is-dealing-with-a-major-chip-bug-but-full-impact-unclear-2522162631.html>
How to protect your PC from the major Meltdown and Spectre CPU flaws
<https://www.pcworld.com/article/3245810/security/how-to-protect-your-pc-meltdown-spectre-cpu-flaws.html>
Mac and iPhone both affected by big chip vulnerability
<https://www.axios.com/apple-mac-and-iphone-both-affected-by-big-chip-vulnerability-2522548093.html>
How the Spectre CPU flaw affects phones and tablets
<https://www.pcworld.com/article/3245790/mobile/spectre-cpu-faq-phones-tablets-ios-android.html>
Google Project Zero: Reading privileged memory with a side-channel
<https://googleprojectzero.blogspot.jp/2018/01/reading-privileged-memory-with-side.html>
Intel's full statement:
Intel and other technology companies have been made aware of new security
research describing software analysis methods that, when used for malicious
purposes, have the potential to improperly gather sensitive data from
computing devices that are operating as designed. Intel believes these
exploits do not have the potential to corrupt, modify or delete data.
Recent reports that these exploits are caused by a "bug" or a "flaw" and
are unique to Intel products are incorrect. Based on the analysis to date,
many types of computing devices - with many different vendors'
processors
and operating systems - are susceptible to these exploits.
Intel is committed to product and customer security and is working closely
with many other technology companies, including AMD, ARM Holdings and
several operating system vendors, to develop an industry-wide approach to
resolve this issue promptly and constructively. Intel has begun providing
software and firmware updates to mitigate these exploits. Contrary to some
reports, any performance impacts are workload-dependent, and, for the
average computer user, should not be significant and will be mitigated over
time.
Intel is committed to the industry best practice of responsible disclosure
of potential security issues, which is why Intel and other vendors had
planned to disclose this issue next week when more software and firmware
updates will be available. However, Intel is making this statement today
because of the current inaccurate media reports.
Check with your operating system vendor or system manufacturer and apply
any available updates as soon as they are available. Following good
security practices that protect against malware in general will also help
protect against possible exploitation until updates can be applied.
Intel believes its products are the most secure in the world and that, with
the support of its partners, the current solutions to this issue provide
the best possible security for its customers.