In this digital age of technology, technology helps us connect and be more productive. But have you ever wondered how secure they are? Spectre and Meltdown vulnerabilities, which exploit critical vulnerabilities in modern processors, have just been discovered. These hardware bugs allow programs to steal data being processed on the computer.
What is Meltdown vulnerability?
Meltdown breaks the most fundamental isolation between user applications and the operating system. This attack allows a program to access the memory, and thus also the secrets, of other programs and the operating system.
This vulnerability would allow malicious attacks to occur if a hacker could bypass the boundary between the applications the user runs and the computer’s Core Memory.
Severity:
We would like to call Meltdown one of the most dangerous vulnerabilities ever found, at least for a CPU. Daniel Gruss is one of the researchers at Graz University of Technology and is one of the people responsible for discovering this flaw. In a statement, he said:
Meltdown is probably one of the worst CPU bugs ever found!
He also talked about the urgency of this situation and how important it is to fix this flaw on such quick notice as it leaves serious vulnerability to users all around the globe. This leaves millions of devices vulnerable to serious attacks. This is critical to fix because any application can steal your data. This includes any application programs or Javascript script running on a web page in any browser. This makes Meltdown dangerous for us and easy for hackers.
What is Spectre vulnerability?
Spectre breaks the isolation between different applications. It allows an attacker to trick error-free programs, which follow best practices, into leaking their secrets. In fact, the safety checks of said best practices actually increase the attack surface and may make applications more susceptible to Spectre
Spectre is slightly different from Meltdown. This is so because it can allow hackers to fool the applications (even the stable versions of the respective application) running on a machine to give up secret information from the Kernal module of the operating system to the hacker with the consent or knowledge of the user.
Severity:
Even though it is harder for hackers to take advantage of, you should always be careful because you are vulnerable. Also, it is worth noting that it is harder to fix and can lead to a larger issue in the long term.
UPDATE: New Intel CPU vulnerabilities allow Memory Leaks & Spectre v2 Exploits (CVE-2024-45332).
Are you affected by Spectre or Meltdown vulnerabilities?
Desktop, Laptop, and Cloud computers may be affected by Meltdown. Every Intel processor that implements out-of-order execution is potentially affected, effectively every processor since 1995 (except Intel Itanium and Intel Atom before 2013). At the moment, it is unclear whether ARM and AMD processors are also affected by Meltdown. As far as Spectre is concerned, almost every system is affected by it- Desktops, Laptops, Cloud Servers, and Smartphones.
If you are running any modern processors, whether Intel makes them, AMD or ARM, or what device you are using, you are vulnerable to Spectre. On the other hand, if you run Intel chips manufactured since 1995, you are vulnerable. But there is an exception for Itanium and Atom chips made before 2013.
You can use a free tool called InSpectre to find out if you are affected or safe. It is available from grc.com.
Who has been attacked yet?
According to the UK’s National Cyber Security Centre, there is no current trace of Meltdown or Spectre affecting any machines worldwide, but it is also worth noting that these attacks are so sensitive that they are challenging to detect.
Experts have said they expect hackers to quickly develop programs to attack users based on the vulnerability, as it is public now. Chief Executive of Cybersecurity Consulting firm Trail of Bits, Dan Guido, said:
Exploits for these bugs will be added to hackers’ standard toolkits.
How to stay safe from Spectre and Meltdown vulnerabilities?
You need to keep all your device updated with the newest fixes available. Enabling Strict Site Isolation in Chrome and preventing JavaScript from loading are the other precautions you could take.
However, US-CERT has said – “Replace CPU hardware. CPU architecture design choices primarily cause the underlying vulnerability. Fully removing the vulnerability requires replacing vulnerable CPU hardware.”
We know fixes for Linux and Windows are already available. Chromebooks are already safe if they run Chrome OS 63 or later. If your Android phone runs the latest security patch, it is already protected. Users with Android phones from other OEMs, such as OnePlus or Samsung, will need to wait for an update from their OEMs. Most of the popular browsers & software developers have released updates, and you need to ensure that you have updated your software to the latest version.
Microsoft has released a PowerShell cmdlet that lets you determine if your Windows computer is affected by Meltdown and Spectre CPU Vulnerabilities and suggests ways to protect your system.
A list of continually updated compatible antivirus & security software is available here.
Do these fixes affect my machine’s performance?
It is said that the Spectre fixes will not immediately affect machine performance, but the Meltdown fixes will significantly affect it.
If you wish to delve deeper into these vulnerabilities, refer to the official documentation here.
Related read: Intel processors have design flaws, resulting in ‘Kernal Memory Leaking’.
Find out if your Windows is affected by Meltdown and Spectre CPU Vulnerabilities.
Most of you have likely read about the Spectre and Meltdown CPU vulnerabilities and may be wondering what you need to do to protect yourself. Microsoft has released a PowerShell cmdlet that lets you determine if your Windows computer is affected by Meltdown and Spectre CPU Vulnerabilities and suggests ways to protect your system.
Find out if your Windows is affected by Meltdown & Spectre
Run PowerShell as administrator and execute the following commands one after the other:
PS> # Save the current execution policy so it can be reset PS> $SaveExecutionPolicy = Get-ExecutionPolicy PS> Set-ExecutionPolicy RemoteSigned -Scope Currentuser PS> CD C:\ADV180002\SpeculationControl PS> Import-Module .\SpeculationControl.psd1 PS> Get-SpeculationControlSettings PS> # Reset the execution policy to the original state PS> Set-ExecutionPolicy $SaveExecutionPolicy -Scope Currentuser
This will install, activate an additional module and enable protection.
Check the output and see if all the elements show a value of True. That shows that your Windows is protected. If it shows False, your system is vulnerable, and you need to fix those issues.
You can, later on, restore the default ExecutionPolicy setting by running executing this Set-ExecutionPolicy Default command.
For more information, you may visit Microsoft.
Protect Windows against Meltdown & Spectre
US-CERT has said – “Replace CPU hardware. CPU architecture design choices primarily cause the underlying vulnerability. Fully removing the vulnerability requires replacing vulnerable CPU hardware.”
However, there are some basic precautions you can take to protect your Windows against Meltdown and Spectre CPU Vulnerabilities:
- Ensure that your device firmware and the operating system are fully patched with the latest updates.
- Ensure that all your installed software, especially web browsers, are updated to their latest versions. You may use a Software Update Checker.
- Enable Strict Site Isolation in Chrome and prevent JavaScript from loading in your browser.
Ashampoo Spectre Meltdown CPU Checker will easily check if your Windows computer is vulnerable.
The tool is simple and easy to use. You do not need to run any script or cmdlet. You can use the simple GUI to check your computer for vulnerabilities. Once downloaded, Ashampoo Spectre Meltdown CPU Checker will scan your CPU. The scan may take a moment; toward the end, it will display the result. The program displays whether your computer is affected by any Spectre or Meltdown vulnerabilities.
Stay safe!
