Spectre and Meltdown - Is Your Computer Vulnerable to Attack - What You Need to Know

Last Update: January 12, 2018

CPU Flaw - Spectre AND Meltdown

Don't Be Caught With Your Guard Down


Your computer's processor, the most important component you likely never think about, maybe under attack right now - take action if you haven't already!

Two new vulnerabilities considered processor flaws, identified on January 3rd, may leave your computer at risk for security attacks. They go by the names, Spectre and Meltdown.

If you aren't aware, your processor is the most vital component of your computer. Why, you ask? The processor runs all of the most critical processes done on your computer. Additionally, the processor contains all of the sensitive data, like your passwords and encryption keys. Your processor holds the keys to your Computer Kingdom and you must guard it at all costs. Leaving your computer unprotected or vulnerable could result in a grave security issue for you.


Like many computer security issues, it is urgent that you understand the impact these chip flaws can have on your computer and how to effectively fix it. First, you need to have a grasp on the potential security concerns. In this case we are not dealing with a virus but a flaw in the processor chip design. Second, what action is being taken to correct these flaws or in this case, the flaw that can allow the computer creepers, aka hackers, in to your system should they happen to find their way in.

Vulnerabilities

First, it is important to understand why our computer processors are vulnerable at the point of these flaws. There are three major processor chip companies involved; Intel, AMD, and Arm. These companies are working to fix the vulnerabilities that could leave us open to attack.


Second, you need to understand how these vulnerabilities affect us and how to recognize how to protect yourself. Your computer processor has considerable weaknesses that make it a target. The central processing unit, or CPU, houses very sensitive information and at brief times it will make this information available outside the CPU. This is when a computer beast can strike and steal your information.

Not getting into the long drawn out explanations as to how sophisticated these processor creepers are, what they do is play a guessing game with your CPU. Your CPU runs what is called speculative execution, in order to make your computer run faster. The computer processor chip will guess as to what information will be needed for its next function and gets ready to release it. It is at this point the sensitive data is vulnerable to attack, and these Computer Gremlins have capitalized on this vulnerability.


The Scoop On MELTDOWN and SPECTRE

Let's be clear, MELTDOWN and SPECTRE are not viruses, they are flaws in the CPUs chip that can be discovered and exploited by hackers.

Spectre reportedly lets the computer creepers trick the CPU into beginning the speculative execution process then, voila', the attack is on. The hackers now have access to your sensitive data guessing the next process the computer will carry out.

Meltdown is a slightly different flaw that exploits the computer's own operating system such as Microsoft Windows or Apple's High Sierra. The attackers will access your sensitive information through sanctioned processes right through your PC. These are called "side-channel" attacks because they are pulled off during regular operations by your computer.

Is there hope on the horizon?
What are the chip manufacturers doing?

Intel has assured consumers that all Intel-powered processors and servers will have fixes in the coming weeks. Approximately 90% of the chips released in the last five years will have a fix by January 13 and chips released in the last ten years will have a fix in the following weeks.

Microsoft has been quick to respond and provided patches for Windows Operating Systems, Internet Explorer, and it's Edge browsers. Be warned however that you may need to update your antivirus software to capture the latest patches released by Microsoft.

Apple has announced a fix for the Meltdown flaw directed at it's operating systems on Mac, iPhone, iPad, and Apple TV. Apple reports that neither flaw affects the Apple watch. Consumers can expect a patch to be released for the Safari browser in the coming days that is targeted at the Meltdown flaw, to prevent exploitation of this weakness and hijacking of sensitive information. More patches will be released shortly after that. Apple has already released its patch updates for the Spectre flaw for all iPhones and iPads.

So, Is this Something New?

The presence of these flaws is not new, it has been present for about 20 years! Interestingly, it wasn't discovered until 2017. There have been no significant security breaches because of these flaws but now that the hackers are aware of the flaws, it does open the doors to serious security breaches. Again this is not a virus or a computer code issue, it is merely how the computer chips are designed.

What Can You Do To Prevent An Attack?


Your First Line of Defense

  • Keep your Antivirus up-to-date.
  • Malware! For one of these computer creepers, aka Hackers, to get into your computer via one of these flaws, they first need to install software on your computer (Malware). How is this done? These are brought in via computer viruses or unwanted spyware. Hackers can be prevented in the first place by following appropriate antivirus and anti-spam protocols. AND of course,
  • As you see updates related to these chip fixes be sure that you install them ASAP.
  • Keep software up-to-date
  • Whenever you are suspect run your security software. Scan now and see if you are affected.
  • Say "No" to phishing!! Don't buy into email schemes. Deals that seem to good to be true, almost always are and are the number one way these computer creepers get their needed software downloaded onto your computer.
Join the Discussion
Write something…
Recent messages
NichtWichtig Premium
I just skyped one of our computer guys and sent him your post and his answer is: what the *peep* is this? Could she explain it? Could you?

This is not to understand for normal people, you should post something like this on a site with computerfreaks
Reply
Frenchfries5 Premium
The issue with these two flaws can freely be found doing an internet search for your relevant processor or OS. I didn’t post any links because what is required is for you to apply appropriate patches or security updates. This is US based. I guess I don’t know if this has reach Europe. Sorry.
Reply
NichtWichtig Premium
Clearly somebody else gave you an idea, what to write about but you missed the essentials. Everything happening in computers is worldwide and not pointed at one region.

Beside that, although I'm new here, I think you should write posts about the topic of this platform. Things like this belong here and I bet if you'd write this on a PC-platform they'd laugh until their pants fall of.
Reply
Frenchfries5 Premium
Well I am NOT new here and I DO my own research which I didn't think was a difficult thing to do - but apparently, I took a leap when I assumed that. So I did YOUR research for YOU...
This is readily available on the internet, which is "YES" globally available, these are US based companies. As we all know, recalls differ geographically because we are governed differently. I do see Intel is facing the possibility of a class action lawsuit in the US.

https://www.onenewspage.com/n/Technology/75inl3hlo/Google-Chrome-to-Get-Meltdown-and-Spectre-Patches.htm

http://money.cnn.com/2018/01/05/technology/spectre-meltdown-chip-flaws-what-to-do/index.html

https://www.theguardian.com/technology/2018/jan/05/intel-class-action-lawsuits-meltdown-spectre-bugs-computer

http://fortune.com/2018/01/05/apple-meltdown-spectre-watch/

http://money.cnn.com/2018/01/05/technology/spectre-meltdown-chip-flaws-what-to-do/index.html

https://support.apple.com/en-us/HT208394

THIS should be enough reading material for you. SIR, I'm afraid I have my own work to do, so you will have to do at least some of your own investigation. I brought this matter up as a public service, no more - no less. Since hacker vulnerabilities affect all of us! Everyone else was kind enough to just read and say - thank you.
I am afraid I don't have time to debate this issue further.
Reply
NichtWichtig Premium
It's idiots like you on this platform, that give non related info, which helped me to decide I don't want to be part of this. If one Googles you one could find out a lot, I don't use my good energy for negativity, so let others do that.

You even didn't have the politeness to like my answer, very narcistic and selfish, ich hasse Solche.
Reply
PMindra Premium
Hi, Michelle.
Very educational post.
Too often we let our guard down, and POW!
Thank you for sharing.

Paul.
Reply
Frenchfries5 Premium
You are welcome. Thanks for stopping by.
Reply
suzzziq Premium
Thanks for sharing, Michelle:). It's sad that we're constantly having to take precautions just to keep the bad guys out, and bad things from happening to our computers and sites. Really appreciate the share:)
Blessings:)
Suzi
Reply
Frenchfries5 Premium
Thank you for your comment.
Reply
suzzziq Premium
You're welcome! Thanks for the share:)
Reply
MKearns Premium
Also don't go to sites that lead you on to "turn page" in the content. I'd be concerned about SPECTRE. It is James Bond's most persistent adversary!
Reply
Frenchfries5 Premium
Hmm. Mike what do you me by turn page. Love the James Bond reference. Don’t you love how this issue has been there like a really long time and now it’s an urgent problem/fix
Reply
MKearns Premium
I use MacAfee and Norton successor programs Michelle!
Reply
MarkBa Premium
Wow I had no idea about any of this Michelle.

I guess 'evil' is continually developing ways to infiltrate technology so just as well Intel, Microsoft and Apple are on the ball.

Thanks for the "First Line of Defense" tips though, all of which we can all implement ourselves.

Mark
Reply
Frenchfries5 Premium
You are welcome Mark! Have a great evening!
Reply
Top