The flaws were discovered by researchers at Google and academic institutions last year, although they were kept secret. The firm said the Apple Watch is not affected by Meltdown and it plans to release and update for its web browser, Safari, in the coming days to help defend against Spectre. They can leak your passwords and other sensitive data, which is why software companies are working on security patches. “Since exploiting many of these issues requires a malicious app to be loaded on your Mac or iOS device, we recommend downloading software only from trusted sources such as the App Store.” All Mac systems and iOS devices are affected, but there are no known exploits impacting customers at this time. “These issues apply to all modern processors and affect nearly all computing devices and operating systems. “Security researchers have recently uncovered security issues known by two names, Meltdown and Spectre,” it added. In a blog post, Apple said it had released software updates for iOS, the software on its phones and tablets, macOS, which is used by its computers and tvOS for its television products. There is no evidence that the flaws – which affect computer processors built by Intel and ARM – have so far been exploited by hackers, although companies including Microsoft have been working to provide urgent fixes. The US tech giant urged its millions of customers to only download software from trusted sources after the security vulnerabilities, known as Meltdown and Spectre, were revealed on Wednesday. While lawyers for the plaintiffs have yet to comment, Davila has given them until June 30 to repeal their claims.Apple warns all devices are affected by Meltdown and Spectre vulnerabilities 6 months agoĪpple has warned owners of its iPhones, iPads and computers that they are affected by a processor flaw that could leave them vulnerable to hackers. Other manufacturers custom CPU cores implementing the ARM instruction set, such as those found in newer members of the Apple A series processors, have also been reported to be vulnerable. By saying its newer processors were faster and longer-lasting wasn’t a falsehood as the patches may have disrupted performance. Since the disclosure of Spectre and Meltdown in January 2018, much research had been done on vulnerabilities related to speculative execution. Davila also stated that the company’s marketing wasn’t false or misleading. Customers claimed Apple first learned about the flaws in June 2017 and didn’t share until the New York Times reported the issue.ĭavila dismissed the case as Apple assertions that its products were ‘secure’ and ‘private’ were too general to support customer claims. These flaws could potentially let hackers access computer devices and steal memory contents. Reuters says the lawsuit came after Apple revealed the Meltdown and Spectre security flaws in 2018. District Judge Edward Davila in San Jose, California said customers failed to prove that they overpaid for their devices because Apple knowingly concealed defects, and provided security patches that made its devices significantly slower. Apple defeats the class-action lawsuit over security flaws The Meltdown and Spectre exploitation techniques abuse speculative execution to access privileged memory – including that of the kernel – from a less-privileged user process such as a malicious app running on a device. While all Mac and iOS devices were hurt by the vulnerability, Apple stated there were no known exploits affecting customers. Backgroundīack in 2018, Meltdown and Spectre security flaws were affecting ARM-based and Intel processors. This week, a US judge is dismissing a proposed class-action lawsuit that accuses Apple of defrauding customers, according to Reuters. Four years ago, we learned of the Spectre and Meltdown security flaws affecting Mac and iOS devices.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |