Research

Apple confirms iOS and macOS are vulnerable to 'Meltdown' and 'Specter'

Apple confirms iOS and macOS are vulnerable to 'Meltdown' and 'Specter'

Researchers announced the two flaws affecting virtually all computer processors on Wednesday. Malicious programmes could exploit these flaws "to get hold of secrets stored in the memory of other running programmes", the researchers said.

It was revealed this week that two security flaws, known as Meltdown and Spectre, were affecting microchips made by Intel, AMD and Arm, which are used in nearly all computers, internet servers, smartphones and tablets, as well as data centres and any devices that connect to the cloud.

Meltdown allows a corrupted computer program to access the memory of other programs, apps or operating systems which are normally inaccessible, according to various researchers. While on some discrete workloads the performance impact from the software updates may initially be higher, additional post-deployment identification, testing and improvement of the software updates should mitigate that impact.

Cloud administrations possessed by Amazon, Microsoft, and Google itself have additionally been utilizing Project Zero's examination to make and issue patches for their servers, while numerous other littler cloud suppliers who had not been beforehand told about the defect are now scrambling to fix their machines.

The National Cyber Security Centre, a part of GCHQ, said the major cloud service providers were installing fixes on their own platforms but separate updates would be needed on the operating systems of any virtual machines.

More news: Airstrikes on suburbs of Syrian capital kill 17

"This bug is probably worth its name and logo considering the pervasive nature of the vulnerability", Bambenek said in a blog post.

The Spectre flaw contains two different exploitation techniques called CVE-2017-5753 or "bounds check bypass", and CVE-2017-5715 or "branch target injection", according to Apple.

"Contrary to some initial reporting, this is NOT just an Intel bug, it affects AMD and ARM processors as well".

Researchers said nearly every computing system - desktops, laptops, smartphones, and cloud servers - is affected by the Spectre bug. Intel's press release detailing the Meltdown and Spectre security issues seemed to minimize the security risks and performance degradations that users would see after software patches are deployed. "The good news is that Spectre is harder to exploit".

"Fully removing the vulnerability requires replacing vulnerable CPU (central processing unit) hardware", said the first bulletin.


  • Macs and iOS devices also affected by Meltdown and Spectre vulnerabilities

    Apple plans to reduce the risk of attacks exploiting Spectre by releasing an update for Safari for iOS in the coming days. Users should only download apps from trusted sources to avoid being made vulnerable, the post said.

    Tech Giants Issue Fixes, Updates For Meltdown And Spectre Flaws

    Current updates to macOS and iOS protect against Meltdown, and Apple is working on providing better protections against Spectre. Apple has confirmed that all of its iPhones, iPads, and Mac devices are affected by the recently discovered chip flaws .
    Unknown apps: How does Android Oreo control installation?

    Unknown apps: How does Android Oreo control installation?

    So that means it is not being done in secret really , but most people are not aware this is happening. The good news is that there is a way to opt-out of this information being collected.
  • Jefferies Group Boosts Abercrombie & Fitch (ANF) Price Target to $17.00

    Bnp Paribas Arbitrage stated it has 0.01% in Abercrombie & Fitch Co. (NYSE: ANF ) closed its last session at $18.2. (NYSE: ANF ). Foster Dykema Cabot Inc Ma reported 0.04% in Verizon Communications Inc. (NYSE: ANF ) for the current quarter stands at $0.85.

    Has $3.64 Million Position in Bank of America Corp (BAC)

    Ontario - Canada-based Breton Hill has invested 0.56% in Bank of America Corporation (NYSE:BAC). 81,100 are held by Argentiere Ag. Stockholders of record on Friday, December 1st were given a $0.12 dividend. 106 funds opened positions while 696 raised stakes.
    Supreme Court refers plea on validity of adultery law to constitution bench

    Supreme Court refers plea on validity of adultery law to constitution bench

    The offence is punishable with five years jail but the government does not track the number of cases registered under this law. A 19th century criminal law provides for punishing only men, and not women, for adultery.
  • Samsung to supply hardware for Verizon's 5G service

    Samsung to supply hardware for Verizon's 5G service

    Samsung will use its in-house technology and assets to build commercial 5G home routers and 5G radio access units for Verizon. Meanwhile, T-Mobile announced that is working with Intel and Nokia on trials ahead of commercial 5G services by 2020.

    BerganKDV Wealth Management LLC Raises Holdings in Microsoft Co. (MSFT)

    Rainier Inv Management Ltd reported 0.91% stake. 106,098 are held by Greenwood Capital Associate Limited Liability Company. Moreover, Hutchin Hill Cap Ltd Partnership has 0.02% invested in Microsoft Corporation (NASDAQ:MSFT) for 6,932 shares.

    All the pictures from tonight's male Celebrity Big Brother launch

    The compound has been given a feminine makeover as the show celebrates it being 100 years since women won the right to vote. Making her way towards the stairs, Courtney's sparkling skirt fell away revealing more than meant to the cameras.
  • Lazard (NYSE:LAZ) Receives Upgrade From Instinet. Will Other Analysts Follow Suit?

    The company reported $1.13 earnings per share for the quarter, beating analysts' consensus estimates of $1.01 by $0.12. The P/E ratio is one of the most common ratios used for figuring out whether a company is overvalued or undervalued.
    Manchester United Fans Hammer Henrikh Mkhitaryan After Another Poor Performance

    Manchester United Fans Hammer Henrikh Mkhitaryan After Another Poor Performance

    He had a couple of missed possessions but he was playing well, he was giving (a) good dynamic to the team. I did at half-time. "Doubt he'll be coming our for the 2nd half at this rate".

    Tencor Corp (KLAC) Director Emiko Higashi Sells 500 Shares

    Cookson Peirce & Co Inc decreased its stake in Kla ( KLAC ) by 95.8% based on its latest 2017Q3 regulatory filing with the SEC. The investor is now holding $6.69 million shares due in part to a decrease of 31543 new shares in their portfolio.