Monday, February 10, 2025
HomeSecurity NewsSecurity Patches - Intel Issued Spectre Patches for Skylake-based platforms

Security Patches – Intel Issued Spectre Patches for Skylake-based platforms

Published on

SIEM as a Service

Follow Us on Google News

Intel issued security patches for infamous security bugs that issued by Google Project Zero and the update is only for Skylake processors to address Spectre vulnerability.

Intel initially released patches for Spectre and Meltdown on Jan 15 which covers 90% of the modern CPUs, but it results in higher system reboots after applying firmware updates.

Most affected ones are the systems running Intel Broadwell and Haswell CPUs for both client and data center. Later Intel said now they have identified the root cause of the reboot issue that affected Broadwell and Haswell CPUs and they are preparing a solution to address the issue and asks to hold off applying patches for Spectre and Meltdown.

Spectre Patches

Now after a week, Intel released microcode updates to Skylake chips, and these updates are made available via OEM firmware updates.Intel said we expect to do the same for more platforms in the coming days.

Intel fixed the vulnerability only with Skylake, leaving Kaby Lake, Sandy Bridge, Ivy Bridge, Broadwell H, Haswell, Haswell Perf, Coffee Lake.

Spectre Patches

Crooks started trying to take advantage of the infamous bug Meltdown and Spectre which affects almost all the modern processors and pushes Smoke Loader malware as a patch.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

SHA256 Hash Calculation from Data Chunks

The SHA256 algorithm, a cryptographic hash function, is widely used for securing data integrity...

New Report of of 1M+ Malware Samples Show Application Layer Abused for Stealthy C2

A recent analysis of over one million malware samples by Picus Security has revealed...

Seven-Year-Old Linux Kernel Bug Opens Door to Remote Code Execution

Researchers have uncovered a critical vulnerability in the Linux kernel, dating back seven years,...

Ransomware Payments Plunge 35% as More Victims Refuse to Pay

In a significant shift within the ransomware landscape, global ransom payments plummeted by 35%...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

More like this

New FUD Malware Targets MacOS, Evading Antivirus and Security Tools

A new strain of Fully Undetectable (FUD) macOS malware, dubbed "Tiny FUD," has emerged,...

Google Blocks 2.28 Million Malicious Apps from Play Store in Security Crackdown

In a continued commitment to enhancing user safety and trust, Google has outlined significant...

Hackers Exploiting DNS Poisoning to Compromise Active Directory Environments

A groundbreaking technique for Kerberos relaying over HTTP, leveraging multicast poisoning, has been recently...