•   
  •   

Tech & Science Tech firms battle to resolve major security flaw

17:36  05 january  2018
17:36  05 january  2018 Source:   afp.com

Sci-fi home security scaring off burglars

  Sci-fi home security scaring off burglars Rapid advances in technology have given Australians home security systems straight out of science fiction.New systems boast motion sensors, smartphone connections and even double as doorbells.

Amazon, Google and now Apple -- as the list of digital giants hit by the "Spectre" and "Meltdown" computer security flaws grows longer, the race is on to limit the damage. "All Mac systems and iOS devices are affected, but there are no known exploits impacting customers at this.

Tech firms rush out patches for 'pervasive' computer flaw . Technology companies are scrambling to fix serious security flaws affecting computer processors built by Intel and other chipmakers and found in many of the world's personal computers and smartphones.

The race is on to fix security flaws in computer chips© Provided by AFP The race is on to fix security flaws in computer chips Amazon, Google and now Apple... as the list of digital giants hit by the "Spectre" and "Meltdown" computer security flaws grows longer, the race is on to limit the damage.

"All Mac systems and iOS devices are affected, but there are no known exploits impacting customers at this time," Apple -- whose devices are usually regarded as secure -- said in a post on an online support page on Thursday.

Amost all microprocessors produced over the past 10 years by Intel, AMD and ARM are affected. No PC or mobile device can function without the miniature components that are effectively nerve centres for executing computer programmes and apps.

12 bad tech habits you need to resolve to stop doing this New Year

  12 bad tech habits you need to resolve to stop doing this New Year Give 2018 a fresh start.

Tech giants race against the clock to fix major security flaws in microprocessors. That said, the experts concede that hacking the chips would require a very high level of technical expertise and the risks were therefore limited.

University Sports. Tech . News. Features. In addition to the security flaw , Intel found itself in hot water Friday over the announcement that its chief executive had sold some of his shares in the company.

And that is what distinguishes them from previous security alerts that have tended to involve software rather than hardware.

In theory, Spectre and Meltdown could enable a user to "access kernel level memory access, exposing critical information that would be stored there, like system passwords," said Chris Morales, head of security analytics at Vectra.

Luke Wagner, a software engineer at Mozilla, wrote on a security blog that it was "possible to use similar techniques from web content to read private information".

Effectively, all electronic devices manufactured all around the world in recent years contain potentially vulnerable chips.

Intel reveals chip design flaw that could have allowed hackers to access hidden info

  Intel reveals chip design flaw that could have allowed hackers to access hidden info Hardware and software manufacturers including Apple and Microsoft began pushing out patches that protected against attacks making use of the flaw. The flaw, which Intel dubbed a side-channel analysis attack,  was discovered "months ago" Intel CEO Brian Krzanich said on CNBC Wednesday. The discovery was made by researchers at Google's Project Zero security group, which reported it to the affected companies. The vulnerabilities undermine some of the most fundamental security constraints employed by modern computers, said Craig Young, a researcher at computer security company Tripwire.

Amazon, Google and now Apple -- as the list of digital giants hit by the "Spectre" and "Meltdown" computer security flaws grows longer, the race is on to limit the damage.

Amazon, Google and now Apple -- as the list of digital giants hit by the "Spectre" and "Meltdown" computer security flaws grows longer, the race is on to limit the damage.

The biggest names in the sector, including Amazon, Google, Microsoft and Mozilla, are now rushing out updates and patches to eliminate the flaw.

Intel says it has made quick progress with updating vulnerable chips© Provided by AFP Intel says it has made quick progress with updating vulnerable chips US giant Intel, as well as its rivals AMD and ARM, have started installing updates.

In a statement on Thurday, Intel said it and its partners "have made significant progress in deploying updates" to mitigate any threats.

"Intel expects to have issued updates for more than 90 percent of processor products introduced within the past five years," an Intel statement said.

"In addition, many operating system vendors, public cloud service providers, device manufacturers and others have indicated that they have already updated their products and services."

Apple, for its part, advised only getting apps from its online App Store which vets programmes for safety, and said it has already released some "mitigations" to protect against the exploit and planned to release a defensive update for Safari on macOS and iOS in the coming days.

Apple Says All Macs, IPhones, IPads Exposed to Chip Flaw

  Apple Says All Macs, IPhones, IPads Exposed to Chip Flaw Apple Inc. said all Mac computers and iOS devices, like iPhones and iPads, are affected by chip security flaws unearthed this week, but the company stressed there are no known exploits impacting users. The Cupertino, California-based company said recent software updates for iPads, iPhones, iPod touches, Mac desktops and laptops, and the Apple TV set-top-box mitigate one of the vulnerabilities known as Meltdown. The Apple Watch, which runs a derivative of the iPhone’s operating system is not affected, according to the company.

Amazon, Google and now Apple -- as the list of digital giants hit by the "Spectre" and "Meltdown" computer security flaws grows longer, the race is on to limit the damage. "All Mac systems and iOS devices are affected, but there are no known exploits impacting customers at this.

Amazon, Google and now Apple -- as the list of digital giants hit by the "Spectre" and "Meltdown" computer security flaws grows longer, the race is on to limit the damage. "All Mac systems and iOS devices are affected, but there are no known exploits impacting customers at this.

Difficult to exploit?

But some experts believe that the only real "fix" in some cases would be replacing the chip itself, which would be a huge issue for the computing industry.

That said, the experts concede that hacking the chips would require a very high level of technical expertise and the risks were therefore limited.

The US Computer Emergency Readiness Team (CERT) said that it was "not aware of any active exploitation at this time."

In Germany, the BSI Federal Office for Information Security, similarly found no evidence of any "active exploitation" of the flaw, but still sector players to protect themselves "as quickly as possible."

In addition to the security flaw, Intel found itself in hot water Friday over the announcement that its chief executive had sold some of his shares in the company.

According to the specialist magazine Solutions Numeriques, Intel was aware of the existence of the security flaw in its chips at the end of November. But in the fourth quarter of last year, CEO Brian Krzanich sold nearly 900,000 shares, halving his stake in the company, according to Bloomberg.

A company spokesman told Bloomberg that the sale had nothing to do with the issue of the security flaw, insisting that Krzanich had exercised options according to a pre-set timetable agreed long before.

Intel shares lost nearly two percent to close at $44.43 on Thursday, after already dropping 3.4 percent the day before.

Gilbert: Murray faces big battle after hip surgery .
Andy Murray will find it very difficult to return to the peak of his powers after hip surgery, his former coach Brad Gilbert said.The three-time grand slam champion went under the knife in Melbourne, where he had hoped to play in the Australian Open but withdrew from the first major of the year.

—   Share news in the SOC. Networks

Topical videos:

This is interesting!