Chris Mendla Tech

Thoughts, information and reflections about technology

1 4 5 6 7 8 66

Cert links to guidance from manufacturers affected by Meltdown and Spectre

Cert has published links to guidance from vendors regarding Meltdown and Spectre. It includes Amazon AWS, Android and numerous other vendors. You almost certainly have to apply the patches but the performance impact is hideous (30 percent).
See the CERT bulletin for details.  Continue reading

With Meltdown and Spectre what happens to pending server purchases and how will companies address the performance issues of patches?

Spectre is hitting servers especially hard. The software updates to protect the servers are causing performance issues. In other words, when a patch is applied to address the vulnerability, performance decreases perhaps 30 percent. Continue reading

What would you say if I told you that your television was listening to your conversations?

Many years ago,  back in the 1980’s. I studied Tae Kwon Do.  After class we would often go out for ONE beer. Any more and the instructor would not be happy.

One night, one of the newer students said “You know, they used to only be able to listen to you, now they can watch you through your television”. We had a couple of minutes of discussion on this. Continue reading

Meltdown and Spectre – You might NOT have to replace all of your hardware.

The analysis and assessments of the Spectre and Meltdown threats are still coming in. This is something that both business owners and individuals should keep a close eye on.

To recap, these exploits allow an attacker to ‘see’ data  from other applications running on your systems.  This is a HUGE screwup of epic proportions on the part of the chip and software designers. Continue reading

Meltdown and Spectre are going after your private information.

There are two vulnerabilities that were recently brought to light. The essence of these attacks is that they can establish processes that can read the supposedly secure data from other processes.

Suppose you are logged in to your bank via the web. There is data there about account numbers, balances, passwords etc. Some of that will be encrypted. However, the exploit MIGHT be able to view the unencrypted data. After all, your balance and account numbers need to be displayed in a format you can read. Continue reading

1 4 5 6 7 8 66

Contact me

Archives

Categories