More OEMs Pull Spectre Patches As Intel Confirms Reboot Issues

HP and Dell, two of the largest server and enterprise workstation manufacturers, have stopped distributing BIOS/UEFI updates that include Intel’s CPU microcode patches for the Spectre vulnerability. The companies now advise customers to stop deploying the updates and wait for a new release. Days after releasing the patches two weeks ago, Intel revealed it was..
Read more

Meltdown Patch Is Causing Problems for Some Ubuntu Linux Users

Many Ubuntu Linux users who installed the latest kernel updates to fix the Meltdown CPU vulnerability found themselves stuck in a boot loop and had to revert back to a previous version. The problem affected mostly Ubuntu 16.04 (Xenial Xerus), which is a long-term support (LTS) release. Soon after the 4.4.0-108 kernel update was released..
Read more

Bromium Response: Intel CPU Design Flaw Creates Work for Everyone

The design flaw has been in existence for the last decade and does not affect Bromium. Operating system vendors are the only ones who can remediate the vulnerability. The Microsoft patch – out today – requires Bromium customers to upgrade before patching Windows. Spectre or Meltdown cannot be directly used to steal information from an The post Bromium Response: Intel CPU Design Flaw Creates Work for Everyone appeared first on Bromium.
Read more

Dangerous Intel Chip Flaw Patches Becoming Available

Some computer manufacturers have started releasing patches for eight serious vulnerabilities in Intel processors or they have outlined firmware update plans for vulnerable models. Acer, Dell, Fujitsu, Hewlett Packard Enterprise (HPE), Lenovo, Panasonic and Intel have identified hundreds of their products, including laptops, desktops and servers, that are affected by the recently announced flaws. Intel..
Read more

KRACK hacks: What you need to know

You’ve heard of ransomware, denial-of-service attacks, and even phishing, but one hacking technique you may not have heard of is the KRACK exploit. This attack takes advantage of a vulnerability in WiFi networks, which puts any device with a wireless connection at risk. The post KRACK hacks: What you need to know appeared first on Health Security Solutions.
Read more

Should Security Researchers Protect Organizations by Any Means Necessary?

Responsible disclosure is the gold standard for fixing security vulnerabilities. But as we all know, sometimes at least one stakeholder doesn’t hold up their end of the agreement. Parties violate a responsible disclosure timeline for many reasons. Take the Zero Day Initiative, for instance. One of its security researchers discovered a vulnerability in Foxit’s PDF … Read More The post Should Security Researchers Protect Organizations by Any Means Necessary? appeared first on The State of Security.
Read more