Homepage / Currency / Spectre and Meltdown prompt tech industry soul-searching
Google and Facebook are watching our every move online. It's time to make them stop Daymond John tells shy airline passenger: You should have talked to me on the plane South Korea says it has no plans to shut down cryptocurrency trading AMD shares surge as Wall Street analysts say the chipmaker is ‘executing on all fronts’ James Altucher, the face of bitcoin, says he’s happy about Facebook’s cryptocurrency ad ban Pending home sales eke out 0.5 percent gain in December as supply shrinks to record low Uber is testing bike sharing in San Francisco The real source of the internet's problems might be the advertising business Game publisher EA's sales forecast tops estimates, sending shares higher GE will likely be dropped from the Dow, Deutsche Bank predicts Samsung surpasses Intel as world's biggest chipmaker for the first time Apple could be the best of the bunch in this tech earnings avalanche The 9-year stock rally still has 'years left,' says one of Wall Street's most bullish strategists Apple: We would never degrade the iPhone experience to get users to buy new phones Bitcoin headed for biggest monthly drop since January 2015 with nearly $60 billion of value wiped off ADP boosts forecast as new tax law spurs demand China 'will open even wider to the UK,' says Prime Minister Li Keqiang Big market swings are something you’re going to have to get used to, says Wells Fargo The dollar keeps weakening. Is that good news for the world? Apple downgraded by BMO, expects iPhone maker to slash revenue forecast this week SoftBank buys majority stake in Japanese messaging giant Line’s mobile division Rising interest rates cause a 2.6% pullback in weekly mortgage applications Trump's State of the Union address 'less hard' than first feared in Asia Trump vows to protect US intellectual property, without naming China Blockchain technology to boost Microsoft earnings, trader says Fujifilm to take over Xerox and combine it into the joint venture Fuji Xerox Samsung is making chips designed to mine cryptocurrencies like bitcoin There’s a risk of market turbulence, but it’s unlikely to hit until 2019, says Santander chairman We'll see up to a 15 percent correction in 2018, Swiss bank CEO says Japan's biggest messaging app Line is planning to launch a cryptocurrency exchange Quicksilver surfwear CEO missing at sea off the coast of France Venezuela says will pre-sell 'petro' cryptocurrency on Feb. 20 Nintendo ups its Switch sales expectations to 15 million units after profits rise 261% European markets seen mixed amid earnings and economic data The UK wants free trade with China. Beijing has its own goals Santander fourth-quarter net profit down 4 percent on US impairments The man who almost became ambassador to South Korea just warned about US plans for North Korea China's Leshi Internet flags $1.8 billion loss for 2017, citing conglomerate cash crunch South Korea says it uncovered about $600 million in cryptocurrency crimes Asia became less democratic in 2017 Al Gore's investment firm backs start-up created by Facebook co-founder Theresa May says she wants a free trade deal with China Chinese manufacturing weaker than expected in January Webpass is leaving Boston in latest sign of Google Fiber’s shrinking ambitions Samsung posts record fourth-quarter profit Asian shares look set for more declines as Wall Street sells off for a second day Don't count insurers out yet after Amazon-Berkshire-JP Morgan move Amazon's health care move could be a big win for consumer health start-ups Red Hat buys CoreOS, a start-up that sold tech developed by Google Here’s what Amazon told employees today about its landmark deal to deliver better health care Top official resigns after false missile alert in Hawaii Crazy odds: These online traders bet on the chaos of Washington and the Trump administration AMD falls despite beating Q4 estimates Facebook ban on bitcoin ads latest in very bad day for cryptocurrencies Indian man dies after being sucked into an MRI machine while carrying an oxygen cylinder Advice for Jeff Bezos, Warren Buffett and Jamie Dimon from a failed effort to control health costs Toys R Us poor holiday sales cast doubts on its future and could force renegotiation of loan terms The Apple sell-off is a buying opportunity into earnings, says trader Google partnership on mobile cloud services drives up MobileIron shares Facebook is banning all ads promoting cryptocurrencies — including bitcoin and ICOs Amazon's moves in health care over the last year are finally starting to make sense Buffett is getting a second chance to partner with Bezos after missing on Amazon as an investment How Pencils of Promise got a $1 million donation from an anonymous bitcoin multi-millionaire Amazon's home devices could be a key to cheaper health care, tech investor Roger McNamee says Two ex-Google engineers built an entirely different kind of self-driving car Cryptocurrencies join the global financial market sell-off as bitcoin drops 7% A travel agent is trying to charge fees for sunbeds Most of the tax cut windfall will boost buybacks and dividends, not workers' pockets, survey predicts The professor who wrote the book on making addictive technology is having second thoughts Trump's immigration policies are 'economic poison' that will cost taxpayers billions Airbnb trolls President Trump ahead of the State of the Union The iPhone X's $1,000 price tag scared everyone away Drop, a rewards app start-up, snags Airbnb's former head of engineering SEC halts one of the largest 'ICOs' ever as it wades deeper into the murky world of cryptocurrency offerings Passing on sanctions, Trump goes even softer on Russia than expected Buy insurers on dip as new initiative from Amazon, Berkshire and JP Morgan is ‘more bark than bite’: Analyst High schools stock up on Narcan to combat teen opioid crisis in US Apple will finally replace the fax machine in health care Apple is reportedly delaying new iOS features until next year because of quality problems Bond expert predicts a ‘wall of buying’ in Treasurys will protect the stock market Home prices surge to new high, up 6.2% in November Noted tech investor says the sector is not the best place to invest right now Sterling predicted to hit pre-Brexit vote level before the end of 2018 Stocks making the biggest moves premarket: AMZN, BRKB, JPM, AAPL, BX, TSLA & more Bitcoin boom to give AMD earnings a boost, says MKM Partners Apple shares fall again on another report of fading iPhone X demand Trump advisor Cohn: President to focus on $1.5 trillion infrastructure plan in State of the Union Why don't foreign investors take fright more often? The dollar is doing something it hasn’t done since 1987 UnitedHealth, CVS plunge on Bezos, Buffett and Dimon plan to improve U.S. health care Amazon, Berkshire and JPMorgan Chase to team in landmark new health care company Can earnings afford to slow down? 'Enemies of the USA': Russia slams America's list of oligarchs with ties to Putin The app that exposed the location of military bases with a heat map is reviewing its features For his next act, former Amex CEO Ken Chenault turns his focus on Silicon Valley Child experts: Just say ‘no’ to Facebook’s kids app Ryanair agrees to recognize British pilots union for first time Arab states are 'determined' to stick with reforms despite deepening 'frustration', IMF says The US 'oligarch list' is strikingly similar to Forbes’ richest Russians ranking Indian ride-hailing firm Ola expands to Australia to take on Uber


Spectre and Meltdown prompt tech industry soul-searching

THE timing could hardly have been worse. Just as the tech industry was preparing for its big annual trade show, CES, held this week in Las Vegas, it was hit by one of the most worrying computer-security scares of recent times. On January 3rd it emerged that most microprocessors, the brains of electronic devices, are vulnerable to hacker attacks aimed at stealing sensitive data, such as passwords or encryption keys. Instead of enthusing over the new gadgets presented at the event (see article), many attending discussed only one question: how great would the damage be?

Once the weaknesses became public earlier this month (researchers had first discovered them in June), some cyber-security experts said the only full protection would be to replace all affected processors. The problem is baked into the chips and enables two separate, but similar, attacks. The first, called Meltdown, makes it possible to dissolve the virtual walls separating the digital memory used by different programs, letting hackers extract data. The second, Spectre, enables a rogue program to trick a legitimate one running on the same computer to divulge information.

  • Retail sales, producer prices, wages and exchange rates

  • Foreign reserves

  • Why commodity prices are surging

  • Why a judge’s injunction on DACA is unlikely to stand

  • Teenagers are becoming much lonelier

  • The Supreme Court considers the scope of automobile privacy

The scale of the threat can be overplayed. Computer firms have been toiling for months on software “workarounds” to fix the weaknesses and these are being deployed. By around January 13th, says Intel, a chipmaker, such programs will be available for more than 90% of its products. The question now is whether any attacks will occur outside the confines of a research lab, says Linley Gwennap of the Linley Group, a consultancy (lab researchers already have code running that exploits the flaws). Some predict that Meltdown will soon be forgotten, but that Spectre will plague computers for years because it offers many avenues of attack.

Even if hackers never pounce, however, the fact that the flaws have to be addressed means they will have an economic impact. Almost any computer can theoretically be attacked, but providers of cloud-computing services, such as Amazon Web Services and Google, are most vulnerable. Individual machines in the firms’ data centres often process jobs from many clients at once; hackers could rent capacity on them to get information from their virtual neighbours. These companies had already started to roll out patches before the design flaws became widely known.

In the case of Meltdown the patches come at a cost: they lower a computer’s performance. Firms say they have not yet seen a big impact, but even a few percentage points of number-crunching power matter, says Stacy Rasgon of Bernstein Research. In the case of Google, whose data centres are said to house more than 1m servers, the performance impact could amount to the equivalent of tens of thousands of servers. Cloud providers are likely to demand compensation from Intel, which makes most of the processors used in data centres.

Intel has already been hit by at least three class-action lawsuits over these vulnerabilities. If they do get exploited at scale, the firm could face a public-relations disaster similar to one in 1994 when news emerged of a bug that caused its Pentium processors occasionally to divide numbers incorrectly. Although the flaw did not affect most users, Intel was forced to replace many processors, leading to a $475m charge against its earnings.

The chip giant maintains that this time is different, noting that back then the problem stemmed from a bona-fide bug in its chips; now it is the result of a weakness in the way that most processors are designed, which also affects products from other chip firms, including AMD and ARM. Yet even if the firm does not take a financial hit, the episode will have made its chief executive, Brian Krzanich, look bad. In late November, nearly six months after Intel was warned of the vulnerabilities, he sold Intel shares worth $39m. The firm says that the sale was unrelated and executed under an automated trading plan, but this scheme was set up in October.

Mr Krzanich could do without the distraction, since Intel has other, bigger problems. It still reigns over the markets for chips that power personal computers and standard servers in data centres. Yet the action in the semiconductor industry has shifted to processors that excel at processing reams of data for artificial-intelligence services, such as those sold by NVIDIA. Intel is not standing still. It has bought Nervana Systems, an AI tech firm. But it has yet to prove itself in this new world.

Meltdown and Spectre are also likely to lead to soul-searching in the computer industry as a whole. Paul Kocher, one of the researchers who found the vulnerabilities, has said that they are chiefly a result of putting performance ahead of security. They stem from efforts to accelerate computers that date back to the 1990s. In order to save valuable nanoseconds when running a program, processors tackle some snippets of code ahead of time, a trick called “speculative execution”. Hackers can use bits of information that are not needed and are discarded, to their advantage.

There is no easy fix to this. Speculative execution is as fundamental to the working of modern chips as assembly lines are to a modern factory. More broadly, the economic incentives in the computing business favour speed and sharing over security, which promotes brittleness and fragility. The computer industry will survive this one-two punch, but other blows are bound to keep landing.

Source: economist
Spectre and Meltdown prompt tech industry soul-searching

Comments are closed.