AMD along with Microsoft rolls out patch updates for Spectre Variant 2

by Jake Doe - -

AMD rolls out Spectre Variant 2 mitigation updates along with Microsoft's Tuesday Patch

AMD rolls out a patch fo Spectre Variant 2

AMD, the second-largest maker of microprocessors for PCs after Intel, has been affected by the biggest ever CPU flaws, known as Spectre and Meltdown[1]. While none of the AMD's processors are vulnerable to Meltdown, each of them can be exploited due to Spectre (CVE-2017-5753) and Spectre Variant 2 (CVE-2017-5715).[2] 

To mitigate the vulnerability, AMD rolled out a microcode update to its original equipment manufacturing (OEM) partners. The update is oriented to Spectre variant 2 for attack prevention on Windows 10 systems.[3] 

Today, AMD is providing updates regarding our recommended mitigations for Google Project Zero (GPZ) Variant 2 (Spectre) for Microsoft Windows users. These mitigations require a combination of processor microcode updates from our OEM and motherboard partners, as well as running the current and fully up-to-date version of Windows.

Windows users are urged to install Windows 10 update KB4093112

Spectre and Meltdown release by Google Project Zero[4]  researchers wrecked real havoc among companies manufacturing, employing or both Intel and AMD processors. Much has already been done to patch these vulnerabilities until they did not cause severe damage.

The problem is that Microsoft updates for CPU flaws are not that easy to roll out. Usually, microcode updates are released by chipmakers to OEMs and PC. However, the mainstream publishing is executed only after OEM testing and approval.

Therefore, PC users should follow Spectre and Meltdown news and actively participate in the patching process. The participation is rather simple – turn on automatic Windows update service and regularly check for updates.

Spectre and Meltdown patching consist of the two-step process – application of firmware updates to chipsets and installation of updates for OS. While Specre variant 1 updates have already been issued back in January, the fresh security update rolled out on April 10, 2018, has brought about a fix for Spectre variant 2. Thus, to apply the patch, make sure to download KB4093112[5] using automatic Windows update service or Knowledge Base manually.

AMD says Spectre Variant 2 is difficult to exploit

AMD's names its mitigation against Variant 2 on AMD processors as Indirect Branch Prediction Barrier (IBPB) and claims that the changes for hackers to exploit the vulnerability are extremely low, though possible.

While we believe it is difficult to exploit Variant 2 on AMD processors, we actively worked with our customers and partners to deploy [a] combination of operating system patches and microcode updates for AMD processors to further mitigate the risk.

Nevertheless, the company predicts the possibility of the attacks and does its best to prevent them.

Experts noticed a lack of information for those running older hardware before Bulldozer line. According to AMD, the exploit of Spectre Variant 2 is extremely low, and it's not very likely to affect versions older than a decade.

Prevent websites, ISP, and other parties from tracking you

Private Internet Access is a VPN that can prevent your Internet Service Provider, the government, and third-parties from tracking your online and allow you to stay completely anonymous. The software provides dedicated servers for torrenting and streaming, ensuring optimal performance and not slowing you down. You can also bypass geo-restrictions and view such services as Netflix, BBC, Disney+, and other popular streaming services without limitations, regardless of where you are.

A VPN is also crucial when it comes to user privacy. Online trackers such as cookies can not only be used by social media platforms and other websites but also your Internet Service Provider and the government. Even if you apply the most secure settings via your web browser, you can still be tracked via apps that you are connected to the internet. Besides, privacy-focused browsers like Tor is are not an optimal choice due to diminished connection speed.

Therefore, to stay completely anonymous and prevent the ISP and the government from spying on you, you should employ Private Internet Access VPN. It will allow you to connect to the internet while being completely anonymous, prevent trackers, ads, as well as malicious content. Most importantly, you will prevent the illegal surveillance activities that NSA and other governmental institutions are performing behind your back.

 

Recover your lost files quickly

Unforeseen circumstances can happen at any time while using the computer: it can turn off due to a power cut, a Blue Screen of Death (BSoD) can occur, or random Windows updates can decide to reboot the machine when you went away for a few minutes. As a result, your schoolwork, important documents, and other data might be lost.

Additionally, you might also be attacked by malware that can corrupt your Windows or encrypt files with a robust encryption algorithm, and ask for a ransom in Bitcoin for the decryption tool. Cybercriminals might not deliver what they promised, however, so it is better to attempt alternative file recovery methods that could help you to retrieve at least some portion of the lost data.

Data recovery software is one of the options that could help you recover your files. Once you delete a file, it does not vanish into thin air – it remains on your system as long as no new data is written on top of it. Data Recovery Pro is recovery software that searchers for working copies of deleted files within your hard drive. By using the tool, you can prevent loss of valuable documents, school work, personal pictures, and other crucial files.

About the author
Jake Doe
Jake Doe - Computer technology geek

Jake Doe is a News Editor at Ugetfix. Since he met Ugnius Kiguolis in 2003, they both launched several projects that spread awareness about cybercrimes, malware, and other computer-related problems.

Contact Jake Doe
About the company Esolutions

References


Your opinion regarding AMD along with Microsoft rolls out patch updates for Spectre Variant 2