Here come the class-action lawsuits against Intel over CPU security flaws

Adjust Comment Print

One vulnerabilty, named Spectre, was found in AMD and ARM-based chips, too.

Barclays believes that flaws like this happen with various CPU architectures every so often, they get resolved, and historically don't create long-term issues.

Amid a frantic rush to patch a computer security flaw, experts struggled Thursday to determine the impact of a newly discovered vulnerability which could affect billions of devices worldwide. "These new exploits leverage data about the proper operation of processing techniques common to modern computing platforms, potentially compromising security even though a system is operating exactly as it is created to". Gruss said Meltdown was the more serious problem in the short term but could be decisively stopped with software patches.

However, there is no evidence that any hackers have taken advantage of this - yet.

Here come the class-action lawsuits against Intel over CPU security flaws
Here come the class-action lawsuits against Intel over CPU security flaws

Alphabet's Google Zero Team in collaboration with academic and industry researchers from different countries have uprooted two security flaws, Reuters point out.

After keeping quiet for much of Wednesday, Intel released a statement on the reported security problems with its chips. That feature has been used in nearly every Intel processor since 1995, and is used by many AMD and ARM processors today. In the meantime, Intel put out software and firmware updates to deter further threats.

"The performance impact of these updates is highly workload-dependent and, for the average computer user, should not be significant and will be mitigated over time", the firm notes. ARM spokesman Phil Hughes said that patches had already been shared with the companies' partners, which include many smartphone manufacturers. The said flaw could leave users' PCs exposed to cyber attacks, which will let hackers have access to sensitive or personal data inside the computer. But these cloud services also use computers with the same types of problem chips. While security flaws are typically limited to a specific company or product, Intel says the problem is "not a bug or a flaw in Intel products" but rather a broader problem affecting processing techniques common to modern computing platforms.

Android devices with the latest security update from January 2018 are protected from the vulnerabilities, Google wrote in a blog post. But intel and ARM say both exploits can be patched with software updates from them and operating system makers over the coming days and weeks. The flaw affects only computers with Intel processors and the ones with AMD CPUs are not affected. For example, an unauthorized party may read sensitive information in the system's memory such as passwords, encryption keys, or sensitive information open in applications.

Wall St. hits new highs on bank earnings, economic optimism
For the week, the S&P rose 1.6 percent, compared with the Dow's 2-percent rise and a 1.8-percent advance in the Nasdaq. Economists polled by Reuters had forecast core CPI rising 0.2 percent.