Meltdown And Spectre

Plenty of scary stuff being written about these latest problems but nothing I've seen about actual fixes - like when they will be available and how we will know that our computers have been patched, or don't need to be. Come on Microsoft, it was simple enough to advise XP users what they needed to do. The advice vacuum here is just not good enough.

 

Run this utility.
http://www.majorgeeks.com/files/details/ashampoo_spectre_meltdown_cpu_checker.html

 

Good catch Eldon

 

I got this on both my laptop with AMD E2 processor and on my PC with Intel i5 processor

 

I would be updating BIOS and running the MS script in powershell/cmd prompt to check, 'Install-Module SpeculationControl'

 

Same result on both mine with AMD FX's.
Will wait and see as flashing the BIOS is beyond my abilities!

 

Although BIOS updates are available for the laptop I can't update because Win 10 is not supported on this machine. That was my - probably unwise decision when 10 first came out. However Install-Module SpeculationControl did run in Powershell but produced no output. I'll have a look at the PC tomorrow time permitting.

 

I will wait, with the AMD machines seems the cure is possibly worse than the disease. I endeavor not to run malicious software. Microsoft is offering the update on a three year old 8.1 AMD laptop, and it is ok with the security suite as well. Have not installed it though. I hope they leave the Ryzen 7 desktop alone, unfortunate it is using Windows 10, for the present. Backed it up after first windows.old.

 

I have a 18 month old Dell Desktop with Intel Chipi5 when I checked I received the same message as
EarthlingInterplanetary Geek.

I am using Total AV, I was told to change even though I paid for it that it was junk. I can get McAfee for free with Cox, however, it slows my computer down. Suggestions for replacement, Avast. AV, ??? Is this I am not sure if I can post the link where I read that Total AV is garbage. I am not sure how to protect myself from this problem of Meltdown/ Spectre.
Thanks any suggestions would be appreciated.

 

The key to remember is that in order to exploit these CPU flaws, the attacker would firstly need to install malicious code on your machine, however Spectre can be launched from the browser using a script.
They would then need to run a much more sophisticated attack in order to expose the flaw, and give up the secret info from memory contents.
The best thing to do to protect yourself is to keep everything up to date (as it always has been)....browsers, OS, flash player etc, etc. No new info there.
@mladynicole.......Malwarebytes in conjunction with Win Defenders real time protection (once MB's expires) should be adequate to keep you safe as they are both aware of the flaws and have developed updates.
Most attempts to install malicious code are from phishing emails, so not much has changed there either.....just be careful what you open and click on!

 

Thank you! Greatly appreciated.

 

For those interested, here's some more info.
https://blog.ashampoo.com/en/2018-0...he-great-processor-disaster&utm_campaign=blog

 

What a PITA to check for this vulnerability.
Take your pick...
https://www.windowscentral.com/how-check-if-your-pc-still-vulnerable-meltdown-and-spectre-exploits
https://www.bleepingcomputer.com/ne...stems-for-the-meltdown-and-spectre-cpu-flaws/
https://www.howtogeek.com/338801/how-to-check-if-your-pc-is-protected-against-meltdown-and-spectre/

 

The Microsoft Windows Update for these flaws went very smoothly for me today. No change in how my system runs at all. Good work MS.

 

An update showed today (not Tuesday just gone) and before letting install I read links for it and it specifically mentioned the flaws. Also, when I ran the Ashampoo tool after it never showed flaws.
So I'm happy with that update since it only appeared as available today.

 

The article about this update KB4056892 specifically refers to it as a Meltdown/Spectre patch but only for Intel systems with Win 10 & Windows Server 2016 and that updates for all other systems will happen next week.
I always read about updates before installing them.

 

I have Advanced System Care, and they provide a download fix for Intel -
https://www.iobit.com/en/tips-thing...ive-fixes-for-windows-users---updated-112.php

 

Did the download button not show ? I suppose it would be automatic for me, but Advanced system care (just the free version) might be needed for it to work.
As I have the full Ultimate version, I was automatically offered the fix.

 

Sometimes too much information can fog the answer- It was a bit long winded on that link.
Still, you have confirmed an answer for others by trying it, thanks.

 

The MS Windows update today fixed it for me on my Intel based system. So I don't see the need for it. Next Tuesday MS are rolling out fixes for other systems.
None of the articles about these specific flaws suggest anyone is even at risk right now.

 

It stayed quite a while at 97% on mine, but finished eventually- I just got on with other stuff, and let it carry on.

Alwaysworth noting these warnings , especially on older cpu's apparently.

If a fix is available, and you have automatic updates, then luck is with you.

 

I used the iobit security fix then restarted my computer and ran the test again. It seems to have fixed part of the problem but not all of it. I add the file and I am wondering if you got the same results. Also, anyone else have a preference whether I should start to use AV or Avast? I am getting rid of my Total AV. Thanks It fixed Meltdown but not Spectre on my machine.

 

Yes, obviously not a full answer to the Spectre problem.

 

It's not possible to fix meltdown & spectre using any software because you can't fix a problem caused by a wounded hardware unless your computer has a cpu that is not affected. Of course OS providers and 3rd parties will develop software that will avoid that these vulnerabilities are exploited. But please guys don't fall for the hysterics that the media spread only because the theme currently sells. Meltdown & spectre are as harmful as viruses and worms that nobody makes such a fuss about. Wait until those solutions are tested and are proved to work properly. Of course those software solutions will play the same cat-and-mouse game as viruses vs. antiviruses. A final fix is only a cpu without these issues.

 

I get the same result (Windows 7). Until I installed the MS update it showed my i5 computer was vulnerable to both. Well, Intel . . . ?

 

A few days ago I tried that iobit little program and it said that I was vulnerable for both.
Then a couple of days thereafter I tried to run it again and it wouldn't run.
So today I downloaded it once again and this time it said *error* and that I need to install management Framework version 5 or higher and try again. DUH. I don't have that, highest is around #4.7 and don't even know if version 5 exists.

 

Try this utility.
http://www.majorgeeks.com/files/details/ashampoo_spectre_meltdown_cpu_checker.html

 

Thanks Eldon. Tried the one you recommended and it doesn't work either.

 

Don't worry too much.
It's worth reading GermanOne's post #34.
I fully agree.

 

Thanks Eldon. Now that I read GermanOne's post again, it makes sense. I'll leave it as such.

 

Latest BIOS Updates for the Meltdown and Spectre.....A list of system manufacturer links, whats available now, and info of when new patches of CPU microcode will become available for your system!
https://www.bleepingcomputer.com/ne...updates-for-the-meltdown-and-spectre-patches/

 

Glad I have Advanced System Care, but those links are very good, and will prove very useful- Thanks replicator.

 

Its still only a software guru fix.
Having said that though, the flaw is mainly architectural hardware related so software still plays a large part in being able to expose it and patch it. (especially cpu microcode)
The main issue being, it wont show up in any logs, although malware sigs may eventually identify typical attacks!
If they cant access your system through malware plants (they need a control room)....Meltdown & Spectre cant do squat to you!

 

Software seems to fix meldown, but Spectre needs a firmware update, apparently.
As GermanOne said in post 34, ,it seems that Intel, and probably AMD need to get their fingers out.

 

I've not noticed any performance impact since I installed the Meltdown patch at least . . . played some games with my son over the internet and could discern no change. Same with editing some video. As soon as I find some time, I'm going to run some tests on my SSD to see how bad the impact is on it. I understand that is where the impact should be most noticable.

 

Forgot to send this before . . .

I've used Avast for many years and like it. For a firewall I use Zone Alarm (http://www.majorgeeks.com/files/details/zonealarm_free.html). Windows comes with an Ok firewall, but I prefer something a bit more beefy and interactive like Zone. If you use a second party firewall, make sure the Windows fire wall is off.

I also suggest using:

-Spyware blaster (http://www.majorgeeks.com/files/details/spywareblaster.html) which helps harden your internet browsers against net nasties (and issues regular updates; but updates are manual with the free version). I update it's definitions and apply them every time I boot my computer.

-MalwareBytes (http://www.majorgeeks.com/files/details/malwarebytes_anti_malware.html). I update it's definitions and run a scan at every boot, or when something online has tripped my inner virus trigger. The free version of Malwarebytes doesn't run in the background.

-Super Anti Spyware (http://www.majorgeeks.com/files/details/superantispyware_free.html). Do regular updates and scans with this. I believe you can have the free version running in the background, but I normally don't.

Using these programs, keeping them updated, and doing regular scans with them has kept me virus free for many years.

 

Hmm. Not browsing suspect sites, not clicking every link that I saw in the internet, not installing software from suspect websites or providers, carefully reading every message while installing software, not opening any email attachment from people that I don't know or don't trust, denying elevated permissions on the UAC prompt if I wasn't sure why a software requires it. This is what kept me virus free. No programs can save you if you act the other way around (while I'm not saying they are useless).

 

Spad, and GermanOne-
As I always say to people, you rarely, if ever, get a virus, or, malware, unless you go on-line- So, all makes so much sense.
Googling for something can be the worse, as you can be directed to a dodgy site- looking for old drivers was one that got me some years ago- anything hard to find can have hazards, -A good browser protection helps on that, but none will be completely foolproof.

 

I'm going to let all this pass me by. I can't see the possibility now of this being used against my one mainly online pc. I do have images if something does get hose. With all the different vulns appearing in the last 6 months, I figure we haven't seen the last.
What I do see is evolution. Maybe Intel changes their processors in some fashion. Then everything evolves to keep up with the cpu. Remember way back when the A20 address line was added? Suppose Intel (or anyone) goes to 128 bit! Any bad address space could be coded with no op or return instructions or passed to new instructions in a newly available address space. A whole bunch of possible op codes could be implemented with just one more address/ data line.

Then Windows, Linux and anybody else could have a whole new game. I don't think ia64 or windows 10 is the last of it!
Moore's law may be 3-d. Programs, programmers and hackers are bound to have to keep on keeping their skills up. I can't believe we have seen the last flavor of anything to do with the pc!