Your iPhones, iPads and MacBooks are vulnerable to hackers, Apple warns

Share

The Cupertino, California-based company said recent software updates for iPads, iPhones, iPod touches, Mac desktops and laptops, and the Apple TV set-top-box mitigate one of the vulnerabilities known as Meltdown.

A PAIR of security vulnerabilities affect virtually all Apple products but are not now affecting users, the company said.

While initial coverage of the Meltdown vulnerability said that fixes could bring hits to performance, Apple says that neither macOS nor iOS suffer from a "measurable reduction in performance" in benchmarking or in web browsing testing.

The issue also affects devices such as PCs, with Intel chips widely affected.

The company says that it has already released "updates for the majority of processor products introduced within the past five years" in the form of firmware updates and software patches.

To summarise, Meltdown and Spectre are critical flaws that can be exploited in modern computer architecture.

Google too has issues a statement informing users that its Android phones were protected it users had the latest security updates. The statement further adds that the company will release mitigations in Safari to help defend against Spectre.

More news: U.S. suspends at least $900 million in security aid to Pakistan

Apple is expected to release an update in order to prevent the worse.

While Apple has taken (and taking) measures against protecting users against Meltdown and Spectre, so have others.

Meltdown and Spectre have the potential to affect almost all kinds of devices that have a CPU.

Spectre, which is known to impact virtually all modern processors, is a class of microarchitectural attacks that abuse the way processors perform branch prediction through speculative computation to read confidential information from a process. If the prediction was wrong, this speculative execution is rolled back in a way that is meant to be invisible to software.

Analysis of these techniques revealed that while they are extremely hard to exploit, even by an app running locally on a Mac or iOS device, they can be potentially exploited in JavaScript running in a web browser.

The circumstances that could lead to using the Spectre vulnerability might be a bit more hard to achieve but can still be done using Javascript running on a web browser.

Share