Intel processors discovered a dangerous vulnerability

[DronVR]

Intel processors discovered a dangerous vulnerability

A vulnerability has been discovered in the microprocessors of a popular Intel manufacturer. With it, hackers can access applications that work with the shared memory of the computer.

The vulnerability was discovered by researchers from Google, the University of Gratz (Austria) and several other organizations. According to them, owners of computers using a processor that were released from 1995 to the present are at risk.

The error is allegedly found in chips manufactured by AMD (competitor Intel), although it is possible that they are less vulnerable.

The danger to ordinary users lies in the fact that attackers can easily access the system’s memory. For example, they will be able to track what text is entered in the application - this will allow them to steal passwords and other sensitive data.

According to experts, the refusal to use the computer’s shared memory by the operating system (this is how software fixes will solve the problem) will lead to a significant decrease in the performance of computers - both user workstations and server systems.

Microsoft has already begun distributing a security update for Windows - it will be installed automatically. Google will release a “patch” for Chrome in late January (and before that, users can manually enable the so-called site isolation )

Original

 

[DronVR]

Experts found a security hole in Intel processors‍

A critical vulnerability was found in all Intel processors released in the last ten years.

A security breach crept in at the core level of the system, which allows hackers to access passwords, cached files from disk, access keys and other data. At the same time, you can intercept files even through the JavaScript code running in the browser.
Experts believe that the problem is not hardware and lies in the principle of the processors. So, the chip ignores security checks in an attempt to predict the following code for execution, which makes it possible to run a malicious program at the kernel level.
According to Register, only developers of operating systems can close the loophole by processing the core architecture at the system level. You can also separate kernel memory from user processes, but this will slow down the entire system by 17–23%.

Microsoft is expected to release its patch to solve the problem as early as January 9th.

Source

 

[Матушкин Андрей Николаевич]

That’s how we got hooked.

 

[Люков]

hope the patch has already been launched