Germany calls on chip and hardware makers to tackle processor flaws

“Germany’s federal cyber agency called on chip and hardware-makers to address new vulnerabilities discovered in computer central processing units, but said no complete fix was possible at the moment,” Reuters reports. “The BSI agency said its analysis showed the new flaws, dubbed Spectre-Next Generation, resembled the Meltdown and Spectre bugs discovered in January and could allow attackers to access personal data such as passwords and encryption keys.”

“‘No complete eradication of the flaws is possible at the moment; the risk can only be minimized,’ it said in a statement,” Reuters reports. “Temporary measures were needed since vulnerable processors and affected computer systems could only be swapped out in the longer-term, the agency said on Friday. BSI also called on cloud and virtual solution providers to immediately investigate the impact of the flaws on their products, and respond along with the manufacturers of system components.”

“A German computing magazine called c’t reported earlier this month that researchers had found eight new flaws that resembled the Meltdown and Spectre bugs,” Reuters reports. “It said Intel Corp planned to patch the flaws and some chips designed by ARM Holdings, a unit of Japan’s Softbank, might be affected. Work was continuing to establish whether Advanced Micro Devices chips were vulnerable.”

Read more in the full article here.

MacDailyNews Take: We’ll drink to that!

Interns, tap away! Prost, everyone!

SEE ALSO:
Benchmarked iPhone shows performance took a serious hit at every possible level after Spectre security patch – January 12, 2018
Intel’s Spectre patch is causing reboot problems – January 12, 2018
In wake of Spectre and Meltdown, Intel CEO offers open letter, looks to restore confidence in Intel CPU security – January 11, 2018
Apple releases iOS and macOS updates with a mitigation for Spectre CPU flaw – January 8, 2018
Meltdown and Spectre: What Apple users need to know – January 8, 2018
How Apple product users can protect themselves against Spectre and Meltdown CPU flaws – January 5, 2018
Intel’s CEO Brian Krzanich sold off the majority of his shares after finding out about the irreparable chip flaws – January 4, 2018
Apple: All Mac systems and iOS devices are affected by Meltdown and Spectre security flaws – January 4, 2018
CERT: Only way to fix Meltdown and Spectre vulnerabilities is to replace CPU – January 4, 2018
Security flaws put nearly every modern computing device containing chips from Intel, AMD and ARM at risk – January 4, 2018
Apple has already partially implemented fix in macOS for ‘KPTI’ Intel CPU security flaw – January 3, 2018
Intel’s massive chip flaw could hit Mac where it hurts – January 3, 2018

4 Comments

  1. Germany’s federal cyber agency called on chip and hardware-makers to address new vulnerabilities discovered in computer central processing units

    If Germany’s federal cypher agency had bothered to follow the Spectre news, they’d know that frantic attempts to patch and to keep up with new exploits have been ongoing for months! Nagging at the firemen to stop a fire is only noise and distraction. How about giving or lending them more resources and support? That might speed things up relative to nags.

  2. A design *flaw*? As if to say, “Whoopsie. It would seem as though our chip design has… a flaw.” Flaws are what labs are for.

    As if all of Intel’s upper level chip designers, with all of their doctoral degrees don’t seem to have the slightest clue what they’re doing. Fumbling their way along, through trial and error, to somehow, get their designs to perform correctly, all for naught. And then, Intel has the audacity to knowingly release the product commercially, and then magically fix any boo-boo with a software patch (band-aid). This seems absurd.

    Intel released the hardware with a known vulnerabilty, and chose not to fix it until someone discovered it. Problem is, someone did.
    It’s about the money. Always is. Think about all the millions of chips that go to China and how they play into Beijing’s plans to monitor their population.

    It’s not a flaw, it’s a feature.

    http://www.bbc.com/news/world-asia-china-34592186

    https://www.businessinsider.de/china-social-credit-system-punishments-and-rewards-explained-2018-4?r=US&IR=T

Add Your Feedback

This site uses Akismet to reduce spam. Learn how your comment data is processed.