- Anthony Scaramucci praised QAnon during American Priorities conference Sunday 5:44 PM
- Report: FBI investigating fake net neutrality comments Sunday 4:36 PM
- The first professional U.S. transgender boxer just won his first fight Sunday 2:18 PM
- Twitch streamer apparently hits partner on video Sunday 1:45 PM
- There’s now rehab for Fortnite addiction Sunday 12:07 PM
- How to watch América vs. Pumas online for free Sunday 11:25 AM
- ‘Target Tammy’ is the latest white woman to complain about Black people minding their own business Sunday 11:08 AM
- Jason Momoa reprises ‘Game of Thrones’ character on ‘SNL’ Sunday 10:06 AM
- How to watch the epic Copa Libertadores final online for free Sunday 9:35 AM
- The top fandoms of 2018 Sunday 8:00 AM
- How to watch Real Madrid vs. Huesca online for free Sunday 6:40 AM
- What is Sling TV? Sunday 6:15 AM
- A year of apologizing to the internet Sunday 6:15 AM
- How to stream NFL’s Week 14 games for free Sunday 6:00 AM
- John Kelly will be leaving the White House, and Twitter reacted exactly as expected Saturday 6:12 PM
Simon Waldherr/Flickr (CC-BY-SA)
A patch is being developed—but it may slow your computer down.
Google and Microsoft researchers have discovered a new computer processing unit vulnerability that’s a variant of the Meltdown and Spectre bugs uncovered earlier this year. Fortunately, the issue known as Speculative Store Bypass will soon be patched via a firmware update. Unfortunately, that patch will likely slow your machine down.
In January, security researchers unveiled a pair of security flaws that affected nearly every modern processor, from smartphones to desktop computers. Dubbed Meltdown and Spectre, the critical security vulnerabilities could render memory on your computer readable by outside parties, leaving sensitive information such as passwords, security keys, and files open to hackers. The problem affected virtually all x86 Intel CPUs shipped over the past 23 years, as well as CPUs from Arm and other chipmakers.
The latest CPU vulnerability functions similarly to Spectre, the Verge reported. Microsoft discovered Speculative Store Bypass back in November and has been working with Intel and Advanced Micro Devices since then to determine its impact on PCs, as well as a fix. Luckily, most modern browsers—including Edge, Safari, and Chrome—were patched for Meltdown earlier this year, and they are already protected against this new threat.
For firmware, however, the update isn’t so peachy. Intel has shipped beta microcode updates for Speculative Store Bypass to manufacturers, which should ship over the next few weeks.
Protection against the CPU vulnerability will be switched off as a default—users will need to actively enable it—but doing so could slow computers down anywhere from 2 to 8 percent, according to the Verge. Thus, users will need to choose between extra security for their machine or continued performance levels.
Thankfully, this variant of Spectre and Meltdown doesn’t seem to be as insidious as the originals. As for the future, Intel is working to redesign its processors—including its chips shipping later this year—to protect against all these bugs.
H/T the Verge
Christina Bonnington is a tech reporter who specializes in consumer gadgets, apps, and the trends shaping the technology industry. Her work has also appeared in Gizmodo, Wired, Refinery29, Slate, Bicycling, and Outside Magazine. She is based in the San Francisco Bay Area and has a background in electrical engineering.