Sci-tech

Meltdown and Spectre reveal Firefox passwords

Meltdown and Spectre reveal Firefox passwords”

The more pervasive flaw, dubbed Spectre, leaves the world's supply of microprocessors potentially vulnerable to attack, the researchers said.

Spectre is a name covering two different exploitation techniques known as CVE-2017-5753 or "bounds check bypass", and CVE-2017-5715 or "branch target injection". This means an attacker could obtain passwords, encyption keys or steal information from other applications.

IBM, meanwhile, stated that its engineering teams are working to determine "any potential impact" and resolutions, as its services and security organizations work with users to plan and update potentially impacted systems. Vulnerabilities discovered in Intel, AMD, and ARM hardware also affects Microsoft Surface devices, and in order to protect the devices against any attacks, the company released the dedicated firmware update. "We used our VM Live Migration technology to perform the updates with no user impact, no forced maintenance windows and no required restarts". "Google Cloud is architected in a manner that enables us to update the environment while providing operational continuity for our customers".

It did add that those using their own operating system with CGP might need additional updates and that some action was needed for Google Compute Engine and Google Kubernetes Engine customers.

A number of AV firms also say the believe their anti-virus is compatible with the patch but they have not yet updated the Windows registry on customer machines to allow the patch to be installed.

AWS officials said in a statement that all but a small, single-digit percentage of instances across the Amazon EC2 fleet were already protected, and remaining ones would be completed within hours.

In the longer term, we have started experimenting with techniques to remove the information leak closer to the source, instead of just hiding the leak by disabling timers.

For Microsoft's part, the company said in a statement that it has already secured "the majority of [its] Azure infrastructure" against the flaw.

Apple and AMD did not immediately respond to requests for comment.

The patch applies to all supported versions of Windows and Windows Server, Microsoft SQL Server and the Edge and Internet Explorer 11 browsers. The chances of this happening to the average user are slim, but still most certainly significant.



Like this

Latest


06 January 2018
Fiera Capital Corp Boosts Stake in Taiwan Semiconductor Mfg. Co. Ltd. (TSM)
The stock of Taiwan Semiconductor Manufacturing Company Limited (NYSE: TSM ) earned "Hold" rating by HSBC on Wednesday, June 21. After having $0.57 EPS previously, Taiwan Semiconductor Manufacturing Company Limited's analysts see 5.26% EPS growth.

06 January 2018
Caterpillar INC (CAT) Holding Increased by Marietta Investment Partners Llc
Oarsman Cap owns 13,200 shares. 197.84 million shares or 1.05% less from 199.95 million shares in 2017Q2 were reported. At the close of regular trading, its last week's stock price volatility was 4.47% which for the month reaches 4.69%.

06 January 2018
Liam Payne and Rita Ora Join Forces 'For You'
The track is featured on the soundtrack to the forthcoming film Fifty Shades Freed which stars Dakota Johnson and Jamie Dornan . Rita already played a 90 second cameo way back in the first film, Fifty Shades Of Grey released in 2015.

06 January 2018
Star Wars: The Last Jedi Box Office Tanking In China
By comparison, a local comedy that has been already out for a full week, The Ex-Files 3, earned $11.6 million on the same Friday. Despite the low opening in China , The Last Jedi is still on track to earn around $1.6 billion at the worldwide Box Office.

06 January 2018
The Blackstone Group LP (NYSE:BX) Future Growth Projections From Analysts
The company holds a market cap of 40.25B with a P/E of 14.35 indicating whether its share price properly reflects its performance. It turned negative, as 29 investors sold BX shares while 155 reduced holdings. 52 funds opened positions while 177 raised stakes.

06 January 2018
Walgreens Boots Alliance Updates Earnings Outlook; Q2 Profit Beats Estimates
Walgreens' relationship with Prime Therapeutics, and their formation of AllianceRx Walgreens Prime, boosted prescription volumes. Shares of Walgreens Boots Alliance closed the previous trading session at 73.30 down -2.21 2.92% with 73.5 shares trading hands.

06 January 2018
Buys 39610 Shares of Bed Bath & Beyond Inc. (BBBY)
ValuEngine lowered Bed Bath & Beyond from a "strong-buy" rating to a " buy" rating in a research note on Sunday, December 31st. The stock of Brookfield Infrastructure Partners L.P. (NYSE:BIP) has "Buy" rating given on Friday, November 3 by TD Securities.

06 January 2018
Petition to stop Slender Man movie gains thousands of signatures
Days after the Wisconsin stabbing , a 13-year-old girl in Hamilton County, Ohio, attacked her mother with a knife. When one of the girls goes mysteriously missing, they begin to suspect that she is, in fact, HIS latest victim'.

06 January 2018
Hamilton to Provide Collection Site for 'Used' Christmas Trees
Wilkes-Barre residents can also take trees to the DPW garage at 3 Conyngham Ave. on weekdays from 7 a.m. through 3:30 p.m. The Christmas tree branches can help protect the more delicate of perennials from frost or cold winter temperatures.

06 January 2018
Shikhar Dhawan fit for first Test, Ravindra Jadeja down with flu
Jadeja has been taken to the hospital and the team management expect him to regain fitness ahead of the first Test. The team for the first Test will be picked in the morning of the first day's action, that is, January 5.



Recommended