Homepage / Currency / Spectre and Meltdown prompt tech industry soul-searching
'Never underestimate human stupidity,' says historian whose fans include Bill Gates and Barack Obama China says its second-quarter GDP growth was 6.7%, meeting expectations Asian stocks poised for slightly softer open as markets await China data Elon Musk courts new controversy after tweeting, then deleting, an attack on a British cave explorer How a former eBay employee is inspiring kids to become tomorrow's problem solvers Here's what the DOJ needs to happen to win its appeal against AT&T The 2018 Hyundai Tucson is a good bargain crossover but skip the high-end model Trump suggests US and UK could strike a 'tremendous' trade deal after Brexit PlayVS wants to bring electronic sports gaming into high schools The unintentional winners of Prime Day: Amazon’s competitors Elon Musk insists he's neither Democrat nor Republican, as political contributions come under fire Amazon could make a big impact in health by helping people eat better Even without a GPS, here's why mobile phones are 'the best spying device you can imagine' How the Bee Gees plan to stay alive in the era of digital music Verizon, AT&T, Sprint and T-Mobile say they have unlimited data plans, but here's the fine print Elon Musk has a new interest group that could be added to his list of enemies: Cabbies Uber's troubled culture persists, as sensitivity 'blind spots' raise new questions Top VC Deals: Uber and Alphabet backed Lime, Larry Page invests in personal aircraft company Tesla rolled out a new attendance policy for hourly workers this month — read it here Elon Musk: Whatever pain Tesla factory workers felt, 'I wanted mine to be worse' Facebook, Google and Twitter will testify next week at a House Judiciary hearing on content moderation In ETFs, the bigger the stock, the more money goes into it and that could be costing regular investors Ex-Labor secretary: Cash handouts 'may seem like a pipe dream' but could be 'inevitable' Cisco, networking stocks drop on a report Amazon Web Services is developing its own network devices Microsoft's president says the government needs to step up regulation of face recognition technology Facebook admits it's not adding enough minority engineers, says the problem may lie with its roots The 2018 Cadillac ATS-V is one of the best sports sedans you can buy There’s one media stock that’s outperforming Netflix Trump's SCOTUS nominee thinks ISPs have First Amendment rights, which could hurt privacy laws The bond market is sounding an alarm on the economy as 'yield curve' spread hits narrowest in 11 years on Friday India execs raise concerns about potential trade war with US Watch out, retailers. This is just how big Amazon is becoming Jefferies raises Facebook price target, sees revenue topping expectations An Amazon Prime Day for health care? Here's what experts say it could look like Can money buy success at the World Cup? Children and PTSD: Health risks linger long after acute psychological trauma ends Netflix faces major risk heading into earnings, money manager says Morgan Stanley raises its price target on red hot WWE stock by nearly 70% to Street-high Trump walks back Brexit threat: 'Whatever you do is OK with us' 4,500 tech workers, 1 mission: get Democrats elected Watch: Trump holds news conference with UK Prime Minister Theresa May after he attacked Brexit plan Goldman Sachs says cybersecurity stocks could get a boost from fears of meddling in the midterm elections AT&T's Randall Stephenson says chances of a successful DOJ appeal are 'remote': 'This changes nothing' PNC shares gain after higher commercial lending leads to better-than-expected earnings report Amazon just hit a new high, and one trader sees more to come Stocks making the biggest moves premarket: JPM, DIS, BLK, T, JNJ, MCD & more Deutsche Bank warns Netflix may miss second-quarter subscriber expectations Wells Fargo shares fall after second-quarter revenue misses estimates Trump’s dream to meet the queen makes this trip a victory, former White House aide says In this earnings season, a volatile stew of expectations London mayor says the UK is not afraid to call out Trump: ‘We think you’re wrong’ ‘Trump Baby’ balloon takes flight in central London amid protests Even May's UK opponents are backing her against Trump Theresa May had a plan in place for Brexit. Then Donald Trump landed Jack Dorsey loses 200,000 followers on Twitter after fake user purge Trump to have tea with the queen at Windsor Castle The US is trying to nail down terms with Pyongyang, while 'South Koreans aren't wasting time' Trump is likely to ask Putin for help with his North Korea problem European markets seen higher amid global trade war fears; Trump visits the UK History shows the US-UK special relationship is increasingly one-sided New tariffs threatened by the US would be more harmful to China than the first batch, says bank CEO Chinese imports fall short of expectations, while exports top estimates China says both its imports and exports with the US rose in the first half of the year Asian stocks extend gains amid relief over lack of trade escalation, tracking US rally Nvidia and Netflix produced top shareholder returns over past five years, BCG study shows Apple announces $300 million clean energy fund in China Broadcom has a new strategy after failing to buy Qualcomm: Roll up enterprise software companies Justice Department appeals Time Warner-AT&T merger approval Women in private Facebook group for cancer gene carriers found marketers could get their names How to avoid overshopping on the longest Amazon Prime Day yet Microsoft challenges Slack with a free tier for Teams Amazon, Xealth working on pilot program to deliver products to patients after hospital discharge Trump's tariffs are unlikely to cause a recession because they are leaving the most important part of the economy alone There are a lot of misconceptions about browsing the web in 'incognito' mode, researchers say How an obscure British rule — the 'chain principle' is changing Comcast's strategy for Fox and Sky Netflix just beat out HBO in Emmy nods, snapping HBO's 18-year streak John McCain blasts Trump’s NATO performance and warns that 'Putin is America’s enemy' Two Dow stocks to buy and one to fade in a volatile market Uber will let riders pay with a Venmo balance Cramer: Pizza execs say Papa John’s is ‘falling apart’ when compared with Domino’s This 23-year-old founded a company with self-driving car tech that's giving Tesla some competition NBA Commissioner Silver ‘rooting’ for Disney in the battle against Comcast for Fox L Brands tumbles after weak sales at 'broken' brand Victoria's Secret Law firms climb aboard the AI wagon A welcome upgrade to apprenticeships A Chinese music-video app is making WeChat sweat Development-impact bonds are costly, cumbersome—and good Big corporates’ quest to be hip is helping WeWork What the UK’s top politicians have said about Trump — and it's not always nice Kim Kardashian West and Warren Buffett agree that this is the best investment you can make Tesla factory workers reportedly drank Red Bull, walked through raw sewage to meet Model 3 quotas Amazon is 'the most robust and durable' among the FANG stocks, Canaccord says As Trump’s UK visit faces backlash, here are some of his most high-profile friends in the country Hackers are selling access to law firm secrets on dark web sites Mega-chip stock Broadcom loses $17 billion in value after Wall Street demolishes company's software acquisition strategy Trading app Robinhood adds two new cryptocurrencies despite bear market Apple just updated its MacBook Pro with new processors and better keyboards The UK government wants a 'new arrangement' for its banks after Brexit Consumer prices rise at the fastest pace in 6 years An under-the-radar defensive stock is quietly surging as safety plays make a comeback


Spectre and Meltdown prompt tech industry soul-searching

THE timing could hardly have been worse. Just as the tech industry was preparing for its big annual trade show, CES, held this week in Las Vegas, it was hit by one of the most worrying computer-security scares of recent times. On January 3rd it emerged that most microprocessors, the brains of electronic devices, are vulnerable to hacker attacks aimed at stealing sensitive data, such as passwords or encryption keys. Instead of enthusing over the new gadgets presented at the event (see article), many attending discussed only one question: how great would the damage be?

Once the weaknesses became public earlier this month (researchers had first discovered them in June), some cyber-security experts said the only full protection would be to replace all affected processors. The problem is baked into the chips and enables two separate, but similar, attacks. The first, called Meltdown, makes it possible to dissolve the virtual walls separating the digital memory used by different programs, letting hackers extract data. The second, Spectre, enables a rogue program to trick a legitimate one running on the same computer to divulge information.

  • Retail sales, producer prices, wages and exchange rates

  • Foreign reserves

  • Why commodity prices are surging

  • Why a judge’s injunction on DACA is unlikely to stand

  • Teenagers are becoming much lonelier

  • The Supreme Court considers the scope of automobile privacy

The scale of the threat can be overplayed. Computer firms have been toiling for months on software “workarounds” to fix the weaknesses and these are being deployed. By around January 13th, says Intel, a chipmaker, such programs will be available for more than 90% of its products. The question now is whether any attacks will occur outside the confines of a research lab, says Linley Gwennap of the Linley Group, a consultancy (lab researchers already have code running that exploits the flaws). Some predict that Meltdown will soon be forgotten, but that Spectre will plague computers for years because it offers many avenues of attack.

Even if hackers never pounce, however, the fact that the flaws have to be addressed means they will have an economic impact. Almost any computer can theoretically be attacked, but providers of cloud-computing services, such as Amazon Web Services and Google, are most vulnerable. Individual machines in the firms’ data centres often process jobs from many clients at once; hackers could rent capacity on them to get information from their virtual neighbours. These companies had already started to roll out patches before the design flaws became widely known.

In the case of Meltdown the patches come at a cost: they lower a computer’s performance. Firms say they have not yet seen a big impact, but even a few percentage points of number-crunching power matter, says Stacy Rasgon of Bernstein Research. In the case of Google, whose data centres are said to house more than 1m servers, the performance impact could amount to the equivalent of tens of thousands of servers. Cloud providers are likely to demand compensation from Intel, which makes most of the processors used in data centres.

Intel has already been hit by at least three class-action lawsuits over these vulnerabilities. If they do get exploited at scale, the firm could face a public-relations disaster similar to one in 1994 when news emerged of a bug that caused its Pentium processors occasionally to divide numbers incorrectly. Although the flaw did not affect most users, Intel was forced to replace many processors, leading to a $475m charge against its earnings.

The chip giant maintains that this time is different, noting that back then the problem stemmed from a bona-fide bug in its chips; now it is the result of a weakness in the way that most processors are designed, which also affects products from other chip firms, including AMD and ARM. Yet even if the firm does not take a financial hit, the episode will have made its chief executive, Brian Krzanich, look bad. In late November, nearly six months after Intel was warned of the vulnerabilities, he sold Intel shares worth $39m. The firm says that the sale was unrelated and executed under an automated trading plan, but this scheme was set up in October.

Mr Krzanich could do without the distraction, since Intel has other, bigger problems. It still reigns over the markets for chips that power personal computers and standard servers in data centres. Yet the action in the semiconductor industry has shifted to processors that excel at processing reams of data for artificial-intelligence services, such as those sold by NVIDIA. Intel is not standing still. It has bought Nervana Systems, an AI tech firm. But it has yet to prove itself in this new world.

Meltdown and Spectre are also likely to lead to soul-searching in the computer industry as a whole. Paul Kocher, one of the researchers who found the vulnerabilities, has said that they are chiefly a result of putting performance ahead of security. They stem from efforts to accelerate computers that date back to the 1990s. In order to save valuable nanoseconds when running a program, processors tackle some snippets of code ahead of time, a trick called “speculative execution”. Hackers can use bits of information that are not needed and are discarded, to their advantage.

There is no easy fix to this. Speculative execution is as fundamental to the working of modern chips as assembly lines are to a modern factory. More broadly, the economic incentives in the computing business favour speed and sharing over security, which promotes brittleness and fragility. The computer industry will survive this one-two punch, but other blows are bound to keep landing.

Source: economist
Spectre and Meltdown prompt tech industry soul-searching

Comments are closed.