Meltdown and Spectre Vulnerabilities Information

Page 20 - Seeking answers? Join the Tom's Hardware community: where nearly two million members share solutions and discuss the latest tech.


Many people on these very forums would disagree with you. I honestly think the reverse is true: Government really couldn't care if the "fix" is SW or HW based, but your generic Fortnite player will raise hell about any performance drop.
 

audiospecaccts

Upstanding
Oct 13, 2018
149
0
210
14


Secure from What?

btw, encryption doesn't doesn't increase safety, it just mean its encrypted. and its only secure till someone parses the key to it,
which does happen.

btw we've been testing a few budget servers that has "secure boot" and encryption. Needless to say, the hackers out there have figured out how to get in and attach the UEFI partition and host it out on an iSCSI connection with a different encryption encoding that uses the empty spaces of the encrypted drive.

my my, the lengths they go to hijack web servers now these days.
 

goldstone77

Honorable
Aug 22, 2012
2,220
3
11,965
85


That, would be crazy thinking on the part of those uninformed forum goers. No one wants their secrets being stolen. Examples: years of cancer research, military movements, next gen power source, etc. It's not a crazy concept to want to keep private things private. It is a crazy concept to think that everyone doesn't care about their privacy, and by extension their finances and reputation. The military wouldn't want their messages intercepted and decrypted. I'm sure Hillary Clinton didn't want her server hacked and have all her email public. Just saying, who doesn't want privacy? The kid playing Fortnite, probably doesn't care, but countless millions are probably terrified by the prospect that their privacy is in jeopardy. I know Apple pushes privacy right really hard!
 


As someone who works with government IT: You give most government IT way too much credit.
 

goldstone77

Honorable
Aug 22, 2012
2,220
3
11,965
85
How much do people care? That is the question. This article is from 2016.

Fri, 08/19/2016 - 16:37 - Archive
Cyber Security Bill for 2015: $75 Billion Spent, $300 Billion Lost

Technology research company Gartner forecasts worldwide spending on information security to reach $75.4 billion this year. According to their report, this represents a 4.7% increase in spending from 2014. The increase is partly attributed to government initiatives and increased legislation in countries such as Poland, the Czech Republic and South Africa. Additionally, high-profile data breaches are forcing organizations to increase their focus on information security. Gartner identifies security testing, IT outsourcing and access management as the largest areas for growth for technology providers.

According to Elizabeth Kim, research analyst at Gartner, “Interest in security technologies is increasingly driven by elements of digital business, particularly cloud, mobile computing and now also the Internet of Things, as well as by the sophisticated and high-impact nature of advanced targeted attacks.” Additionally, “endpoint detection and remediation tools, threat intelligence and cloud security tools” were also identified as areas for growth.

Additionally, Grant Thornton, a global accounting advisory firm, has just released theresults of their global survey on cyber security attacks. The total estimated cost of cyber security attacks over the past 12 months, in American dollars, is $315 billion. The findings are based on a survey of 2,500 international business leaders in 35 economies. Regionally, cyber security attacks cost “Asia Pacific businesses $81bn in the past 12 months, while firms in the EU ($62bn) and North America ($61bn) are also counting the significant cost of attacks.”

According to the research, the sector most concerned by the threat of cyber attacks is financial services, while “only 10% of transport firms globally have reported a cyber attack in the past 12 months and just 27% perceive it as a threat.” Paul Jacobs, Global Leader of Cyber Security at Grant Thornton, said: ““Vigilance alone won’t keep businesses safe. Proactive measures are needed. This is an issue which needs to be on the agenda in boardrooms as well as IT departments. Management teams need to be driving cyber strategies which boost awareness of the threat among all staff, and of the policies and procedures in place to deal with the threat.”
https://www.adaware.com/blog/cyber-security-bill-for-2015-75-billion-spent-300-billion-lost

Ignorance, is an expensive game to play.
 

audiospecaccts

Upstanding
Oct 13, 2018
149
0
210
14


Things never change for them do they: always looking forward to the 1st and 15th
 

digitalgriffin

Distinguished
Jan 29, 2008
322
33
18,820
1
It's important to note that Spectre vulnerabilities also apply to java script and can attack MOBILE browsers. A lot of modern mobile CPU hardware use similar caching mechanisms which can be attacked in a similar fashion.
 

Similar threads


ASK THE COMMUNITY

TRENDING THREADS