Yet another major flaw has been discovered in practically all of Intel's processors released since 2011, with a new class of discovered vulnerabilities that could allow sensitive information to be stolen from the processor, in an issue likened to the Meltdown and Spectre fiasco.
A U.S. District Judge has dismissed a class action lawsuit brought against Apple for its handling of the Meltdown and Spectre vulnerabilities in ARM-based processors, which the plaintiffs blamed for slowing down iPhones, iPads, and other products with A-series chips.
A new vulnerability called "Foreshadow" affecting Intel processors has been revealed by researchers to bypass the company's built-in security on the chip, an attack which has the potential to acquire sensitive data stored on supposedly secure cordoned-off areas on the processor.
Details of the first of the second wave of Spectre-style vulnerabilities in Intel processors has been published earlier than expected, with the "LazyFP" vulnerability potentially allowing an attacker to access sensitive data, such as cryptographic keys.
Industry woes over Meltdown and Spectre continued this week when Google and Microsoft on Monday revealed a newly discovered silicon-level vulnerability impacting chips used in millions of computers, including those marketed by Apple.
The release of patches to fix new Spectre-style flaws in Intel's processor designs is allegedly delayed by two more weeks to late May, but a report suggests Intel wants to push the release back even further into July while it works to finalize the required updates.
More waves of patches to plug security holes in processors are on the way, after the discovery that Intel is working to patch more Spectre-style issues in its chips, with eight new vulnerabilities said to be found by security researchers following the Spectre and Meltdown fiasco from earlier this year.
Apple, Google parent Alphabet and Intel in letters to lawmakers on Thursday revealed a bit of background information concerning the recent airing of Meltdown and Spectre chip vulnerabilities, saying Intel notified U.S. cyber security officials of the flaws only after their existence was made public.
In letters sent to the CEOs of major tech companies on Wednesday, including Apple CEO Tim Cook, the U.S. House Energy and Commerce Committee asks why an agreement was made to keep details of the Meltdown and Spectre chip flaws secret until their public disclosure this month.
Following Intel's release of patches to combat the Meltdown and Spectre vulnerabilities in its chips, the processor producer has confirmed that reports of PCs rebooting are not limited to just older chip generations, with newer releases also confirmed to be susceptible to rebooting when using the updated firmware.
The identification of the "Meltdown" and "Spectre" vulnerabilities in Intel- and ARM-based processors — including chips used in Apple's Macs, iPhones, and iPads — can be credited almost entirely to a Google security researcher in his early 20s, Jann Horn.
Apple has become the target for another class action suit over the Meltdown and Spectre vulnerabilities found in Intel and ARM-based processors, as a suit filed in the California U.S. district court is going after the company for designing the A-series processors bearing these same defects.
In an open letter released on Thursday, Intel chief Brian Krzanich outlined the company's response to the Meltdown and Spectre vulnerabilities while reassuring customers that his company views security as "an ongoing priority."
Intel's legal woes surrounding the Meltdown and Spectre vulnerabilities in its processors are increasing, with more legal firms filing class action suits against the chip company, this time on the behalf of its shareholders over the revelation of the flaws and the effect on the value of the company's shares.
As tech companies rush to work around the 'Meltdown' and 'Spectre' chip flaws, a blog post from Microsoft suggests that the processor generation and age of the operating system will play a factor in terms of how much of an impact the fixes will have on system performance, at least from a Windows user's perspective.
Escalating its response to the processor vulnerabilities revealed recently, Apple has made iOS 11.2.2 available for the iPhone and iPad, and has issued a supplementary security update for macOS High Sierra 10.13.2 to further deal with the "Meltdown" attack vector and the "Spectre" vulnerability for the first time.
Intel is staring down class action lawsuits in California, Indiana, and Oregon over the Meltdown and Spectre vulnerabilities exposed in modern processors, which can be used to access restricted memory in unpatched devices.