10. Basically, the motherlode. Meltdown can be exploited by any script kiddie with attack code. Spectre is harder to exploit, but nearly impossible to fix, short of shipping out new processors/hardware. The economic implications are not clear, but these are serious threats and
-
Show this thread
-
11. Chipmakers like Intel will have to do a full recall-- unclear if there's even manufacturing capacity for this-- OR customers will have to wait for secure processors to reach the market, and do their own risk analysis as to whether they need to swap out all affected hardware.
12 replies 304 retweets 762 likesShow this thread -
12. Intel is not surprisingly trying to downplay the threat of these attacks, but proof-of-concept attacks are already popping up online today, and the timeline for a full rollout of the patch is not clear. And that's just for the Meltdown threat. Spectre affects AMD and ARM too.
8 replies 266 retweets 796 likesShow this thread -
13. But judging by stock moves today (Intel down, AMD up), investors didn't know that, taken together, Spectre and Meltdown affect all modern microprocessors.
19 replies 271 retweets 853 likesShow this thread -
14. (Ok I'm back. Thanks United) Meltdown and Spectre affect most chipmakers including those from AMD, ARM, and Intel, and all the devices and operating systems running them (GOOG, AMZN, MSFT, APPL etc).
7 replies 239 retweets 648 likesShow this thread -
15. The flaws were originally discovered last June by a researcher at Google Project Zero (shout out @ Jann Horn) and then separately by Paul Kocher and a crew of highly impressive researchers at Rambus and academic institutions. Originally public disclosure was set for next week
5 replies 239 retweets 748 likesShow this thread -
16. But news of Meltdown started to leak out (shout out
@TheRegister) yesterday, so the disclosure was moved up a week to right now. The problem with this rushed timeline is that we don't necessarily know when to expect Meltdown patches from tech cos.8 replies 179 retweets 604 likesShow this thread -
17. Google says its systems have been updated to defend against Meltdown https://security.googleblog.com/2018/01/todays-cpu-vulnerability-what-you-need.html …. Microsoft issued an emergency update today. Amazon said it protected AWS customers running Amazon's tailored Linux version, and would roll out the MSFT patch for other customers 2day
20 replies 316 retweets 717 likesShow this thread -
19. And yes, there is no evidence of attacks “in the wild” (apart from the proof-of-concept research) but let’s be real. If an intel agency knew about these exploits, I think we can safely assume this would fall into a category of exploits they would rather hold onto vs. disclose
4 replies 14 retweets 60 likesShow this thread -
20. And now it’s time for me to put down my devices and pay attention to this guy. Good night and good luck.pic.twitter.com/mpzbIxCmkL
11 replies 11 retweets 126 likesShow this thread
Adorable :) And thank you for the great summary.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.