Symantec has released the following detection for attempts to exploit the Multiple CPU Hardwares Information Disclosure Vulnerability (CVE-2017-5753/Spectre):

 

A series of newly discovered vulnerabilities affecting processor chips could permit attackers to gain unauthorized access to a computer’s memory. Dubbed Meltdown and Spectre, the vulnerabilities affect nearly all modern processors and can only be mitigated through operating system patches.

 

Of the two, Meltdown poses the greatest threat because it is easier to exploit and affects all kinds of computers, including personal computers and virtual machines in the cloud. Symantec is not aware of either vulnerability being exploited in the wild.

 

The vulnerabilities are significant, since a successful exploit could allow attackers to gain unauthorized access to sensitive data, including passwords. However, exploit of any vulnerable computer would require an attacker to gain access to the targeted computer via a prior step, such as running a malicious application on it; through JavaScript which triggers an exploit in order to run as native code; or running JavaScript to map the kernel. All of these malicious activities can be blocked by Symantec products. Nevertheless, users are advised to apply operating system patches as soon as they are made available.

 

Both Meltdown and Spectre exploit flaws in processors in order to bypass memory isolation in the operating system. Operating systems are designed in a way to block one application from accessing memory being used by another. If memory isolation fails to work, a malicious application could steal information from memory being used by other applications.

 

What is Meltdown?
Meltdown (CVE-2017-5754) exploits a flaw in out-of-order execution, a performance feature found in many modern processor chips. The researchers who discovered it have confirmed that it affects every Intel processor since 1995 (with the exception of pre-2013 Intel Itanium and Intel Atom processors). However, they added that it remains unclear whether ARM and AMD processors are also affected by the vulnerability.

 

If successfully exploited, an attacker can obtain a copy of the entire kernel address space, including any mapped physical memory, in other words, any data stored in memory at the time of the attack.

 

Meltdown can be exploited regardless of the operating system a computer is running. It affects both individual computers and any computers hosting cloud services, meaning an attack on a single server could lead to the compromise of multiple virtual machines running on that server.

 

Exploitation against cloud services is potentially the most worrying scenario, since the Meltdown can be exploited on a virtual machine in order to access memory from the host machine. Attackers could potentially buy space on a vulnerable cloud service and use it to stage an attack against other customers using the same host.

 

What is Spectre?
Spectre (CVE-2017-5753 and CVE-2017-5715) has a similar outcome but works in a slightly different way, and exploits a flaw in processor design to trick an application into leaking information stored in memory.

 

According to the team who discovered Spectre, virtually all modern processors are affected by the vulnerability, including Intel, AMD, and ARM chips. Once again, the vulnerability is operating system agnostic.

 

Mitigation
Users are advised to apply operating system patches immediately. Patches have already been released for Microsoft Windows, Apple macOS, and Linux to patch Meltdown. Spectre is reportedly more difficult to patch but also more difficult to exploit. Work is underway to harden software against any potential exploits.

 

Operating system vendors have already warned that patching is likely to have a performance impact on affected computers. According to Microsoft, the impact may not be noticeable on most consumer devices, however the specific impact “varies by hardware generation and implementation by the chip manufacturer.” The developers of the Linux patch said average performance could decline by 5 percent, but instances of a 30 percent decline were observed.


RECOMMENDED ARTICLE FOR TECHWORLD


Frank Emmanuel Trazo
Adaptability and Stability
Techworld • By: Frank Emmanuel Trazo | Date Posted: 2 August 2017 2:42 PM | 441 Views
California-based multinational computer technology corporation Oracle continues to push on innovating their Security Operation Center (SOC) cloud service, a cloud-native, management, and identity-based platform designed for every company's security systems. Oracle aims to improve.... See More
Frank Emmanuel Trazo
Adaptability and Stability
Techworld • By: Frank Emmanuel Trazo | Date Posted: 2:42 PM | 441 Views
California-based multinational computer technology corporation Oracle continues to push on innovating their Security Operation Center (SOC) cloud service, a cloud-native, management, and identity-based platform designed for every company's security systems. Oracle aims to improve...See More

PCBG Contributing Writer
Making Money from Lootboxes
Techworld • By: PCBG Contributing Writer | Date Posted: 6 March 2018 4:10 PM | 166 Views
Some people make money from gaming. There are gaming commentators on the web. Some play in tournaments. Others develop gaming apps. But what if you’re just some guy on your computer seat, and you’re.... See More
PCBG Contributing Writer
Making Money from Lootboxes
Techworld • By: PCBG Contributing Writer | Date Posted: 4:10 PM | 166 Views
Some people make money from gaming. There are gaming commentators on the web. Some play in tournaments. Others develop gaming apps. But what if you’re just some guy on your computer seat, and you’re...See More

 
Phantom Menace: Mobile Banking Trojan Modifications Reach All-Time High
Techworld Date Posted: 23 August 2018 2:10 PM | 249 Views
Mobile banking Trojans hit the list of cyber-headaches in Q2 2018. The number of installation packages for mobile banking – modifications which help attackers avoid detection by security solutions and to expand their arsenal.... See More
 
Phantom Menace: Mobile Banking Trojan Modifications Reach All-Time High
Techworld Date Posted: 2:10 PM | 249 Views
Mobile banking Trojans hit the list of cyber-headaches in Q2 2018. The number of installation packages for mobile banking – modifications which help attackers avoid detection by security solutions and to expand their arsenal...See More

 
Russian-Speaking APTs Turla and Sofacy Share Malware Delivery Scheme, and Overlap Some Targets in Asia
Techworld Date Posted: 10 October 2018 4:10 PM | 90 Views
Kaspersky Lab researchers monitoring the various clusters of the long standing, Russian-speaking threat actor, Turla (also known as Snake or Uroburos) have discovered that the most recent evolution of its KopiLuwak malware is delivered.... See More
 
Russian-Speaking APTs Turla and Sofacy Share Malware Delivery Scheme, and Overlap Some Targets in Asia
Techworld Date Posted: 4:10 PM | 90 Views
Kaspersky Lab researchers monitoring the various clusters of the long standing, Russian-speaking threat actor, Turla (also known as Snake or Uroburos) have discovered that the most recent evolution of its KopiLuwak malware is delivered...See More

 
Post Malone Joins HyperX Family
Techworld Date Posted: 26 October 2018 4:21 PM | 59 Views
HyperX, the gaming division of Kingston Technology Company, Inc. has announced the signing of Post Malone, an award-winning global superstar, as a HyperX Gaming Brand Ambassador. An avid Call of Duty console gamer,. See More
 
Post Malone Joins HyperX Family
Techworld Date Posted: 4:21 PM | 59 Views
HyperX, the gaming division of Kingston Technology Company, Inc. has announced the signing of Post Malone, an award-winning global superstar, as a HyperX Gaming Brand Ambassador. An avid Call of Duty console gamer,See More

 
PLDT Offers Lowest Call Rate to All Networks
Techworld Date Posted: 12 April 2017 2:25 PM | 197 Views
Leading telecoms and digital services provider, PLDT, introduces its lowest call plan offer, the All Net Fam Call 299, starting April. The All Net Fam Call 299 allows subscribers to make 100 minutes of landline.... See More
 
PLDT Offers Lowest Call Rate to All Networks
Techworld Date Posted: 2:25 PM | 197 Views
Leading telecoms and digital services provider, PLDT, introduces its lowest call plan offer, the All Net Fam Call 299, starting April. The All Net Fam Call 299 allows subscribers to make 100 minutes of landline...See More

PCBG  Writing Staff
Free Operators on Rainbow Six Siege Released
Techworld • By: PCBG  Writing Staff | Date Posted: 16 March 2018 11:43 AM | 470 Views
Gamers are clamoring for freebies. The microtransaction scheme of today’s games got the market on their toes, keeping everyone busy playing and trading. We have all sorts of genres, from FPS to RTS to.... See More
PCBG  Writing Staff
Free Operators on Rainbow Six Siege Released
Techworld • By: PCBG  Writing Staff | Date Posted: 11:43 AM | 470 Views
Gamers are clamoring for freebies. The microtransaction scheme of today’s games got the market on their toes, keeping everyone busy playing and trading. We have all sorts of genres, from FPS to RTS to...See More

 
Kaspersky Lab and DICT Ink MoU to Develop Public Sector Cybersecurity Capability
Techworld Date Posted: 30 October 2018 5:08 PM | 83 Views
DICT & Kaspersky Lab inks MoU. Present at the signing were (from left to right) Allan S. Cabanlong, Assistant Secetary, DICT; Eliseo M. Rio Jr., Acting Secretary, DICT; Stephan Neumeier, Managing Director, Kaspersky Lab.... See More
 
Kaspersky Lab and DICT Ink MoU to Develop Public Sector Cybersecurity Capability
Techworld Date Posted: 5:08 PM | 83 Views
DICT & Kaspersky Lab inks MoU. Present at the signing were (from left to right) Allan S. Cabanlong, Assistant Secetary, DICT; Eliseo M. Rio Jr., Acting Secretary, DICT; Stephan Neumeier, Managing Director, Kaspersky Lab...See More

 
DreamHack and CORSAIR Enter Strategic Partnership
Techworld Date Posted: 15 December 2017 10:06 AM | 206 Views
CORSAIR®, a world leader in enthusiast memory, high-performance gaming hardware and PC components, and DreamHack, the world’s largest digital festival, are excited to announce a groundbreaking new partnership which will see CORSAIR and DreamHack.... See More
 
DreamHack and CORSAIR Enter Strategic Partnership
Techworld Date Posted: 10:06 AM | 206 Views
CORSAIR®, a world leader in enthusiast memory, high-performance gaming hardware and PC components, and DreamHack, the world’s largest digital festival, are excited to announce a groundbreaking new partnership which will see CORSAIR and DreamHack...See More

 
Transcend Announces New MSA450T mSATA 3D TLC SSD for Embedded Applications
Techworld Date Posted: 28 April 2018 4:47 PM | 244 Views
Transcend Information, Inc. (Transcend), a leading manufacturer of storage and multimedia products, is proud to announce the release of the MSA450T industrial solid-state drive equipped with 3D TLC NAND flash memory. The MSA450T comes.... See More
 
Transcend Announces New MSA450T mSATA 3D TLC SSD for Embedded Applications
Techworld Date Posted: 4:47 PM | 244 Views
Transcend Information, Inc. (Transcend), a leading manufacturer of storage and multimedia products, is proud to announce the release of the MSA450T industrial solid-state drive equipped with 3D TLC NAND flash memory. The MSA450T comes...See More


Power by

Download Free AZ | Free Wordpress Themes