Meltdown and Specter: They will happen again… and again

Meltdown and Specter: The recent gaps in multi-processor architecture built over the past two decades are the latest security breach that has hit the IT industry.

The phenomenon Meltdown and Specter once again came to confirm what many know but find it difficult to admit: no one should think of their system as safe. It is much more likely to recognize a system as "stable" and of course as potentially unsafe. Meltdown

This means thinking about security as a continuous process and not as an end point.

Specter and Meltdown flaws are present in most Intel CPUs by 1995, and other chip manufacturers are affected.

To many it may seem inconceivable that such serious vulnerabilities remain without updates for so many years (the joy of the NSA). However it is simply a function of the incredible complexity of the systems we all use. A long time ago, there was another one: You remember it ; Το κενό στην κρυπτογραφική βιβλιοθήκη which launched with its own logo and caused panic in IT worldwide. Remember Shellshock? WannaCry ransomware?

Security is a utopia and believing that your systems are absolutely safe you are living a very dangerous illusion. Just suppose your systems are precarious, and you'll start making better decisions.

Security ceased to exist upon his arrival , αλλά πολλοί από εμάς δεν φαίνεται να το έχουν συνηδητοποιήσει. Το Specter and Meltdown είναι δύο καλά παραδείγματα, επειδή μπορούν να επηρεάσουν τα πάντα, από το PC στο γραφείο σας και το smartphone που έχετε στην τσέπη σας μέχρι την cloud you use to store your data. No matter how good you are at "security", today you rely on the constellation of service providers and their various partners.

The code of any software, operating, or firmware shipped by suppliers is inevitably incomplete, so there will always be updates. Implementing these fixes is considered a tedious and tedious job by many IT. Especially in corporate environments, where every update should be monitored by IT to make sure they don't cause problems in their implementation. So often updates aren't the first priority, though. The WannaCry ransomware was released last year, though Microsoft had released a patch.

Of course this is what hackers know. Updates exist, but there are also systems that are not up to date.

So, what is security?

If you assume there is no security, you will have a greater chance of getting online and going safely. The aim of the article is to be suspicious.

There are no companies that can protect you, and if they promise they lie. Security means knowing that it does not exist, which prepares you for the worst scenarios.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).