Exactly! And this is why it's so important not only to be aware of situations like this, but to always apply patches and updates as soon as they become available. Not only for your desktop and laptop machines, but also in the case of the recent wifi exploit, the rest of your network equipment.

Panic and paranoia are NOT allowed, awareness is required.

Darn, Just when I was getting myself wound up for a Y2K type round of hype, apocalyptic sermons and retreat to my abacus warehouse. Guess that investment was premature...

Do you stock 32-bead and 64-bead abaci, or just 64-bead?

I couldn't afford the 64 bead hardware and the patent holder requires a NDAA to use the proprietary OS. I had figured on catering to the same people who bought the six pound satellite phones.

That Intel CEO appears to have violated the laws against insider trading. He may be following Martha Stewart's path into Federal prison for several months or longer.

As far as those two vulnerabilities: call me a cynic. I believe they were well known to those gov spooks who spy on us continually. And, I have little doubt that those two holes are not the only ones added for the purpose of giving spooks access. Remember when the Feds wanted Apple to break into someone's phone and publically asked them, only to be told "no" by Apple. What did the Feds do? Contracted with an Israeli cyber team to break in, which they did. Every iOS device has a dedicated AES 256 crypto engine built into the DMA path between the flash storage and main system memory. In July of last year it was announced
https://www.theregister.co.uk/2017/0...conds_200_kit/
Maybe that's what the Israeli team used? Maybe they used a back door that Apple gave them in order to keep the heat off of Apple and still comply with the Feds, thus maintaining their security credibility. Regardless, AES 256 byte security is now useless.

My gpg keys are always 4096 bytes. If it really matters. And, no, I don't trust anything or anyone these days.

https://insights.ubuntu.com/2018/01/...lnerabilities/

Intel's PR team must be working overtime. Meltdown only really affects Intel CPUs, and the software fix will significantly slow down some workloads.

Spectra affects Intel, AMD and some ARM CPUs, but is harder to exploit.

Yet all of the news article in the mainstream press lump the 2 together and talk about vulnerabilities affecting Intel, AMD and ARM as if they are all the same. Intel seem desperate to obfuscate the fact they are by far the worst affected by this, and that the kernel fix will destroy their performance advantage over AMD (particularly on server and virtualisation workloads).

Meanwhile geeks in the know will be speccing AMD for their servers. I hope AMD has plenty of Epyc and Ryzen capacity...

Maybe these potential tragedies will end up being another push towards open source?

Why we need RISC-V

I agree this will certainly be a boon for AMD in the short run. Maybe longer, time will tell.

Nothing to see here

Hurray! 32 Bit Lives On!

Or was that an "oops" on the part of Intel?

Digital lobotomy as a "cure" is still lobotomy.

"I feel my mind going... Dave... Please stop... Dave..." - 2001, A Space Odyssey

Some cartoonists are geniuses! That cartoonist is one of them.

An appropriate example of 'back engineering'.

Another article discussing these two vulnerabilities. It does a good job (IMO) of a layman's explanation and addresses what the Linux devs are doing about it, as of Jan. 8 2017.

http://www.zdnet.com/article/the-lin...tag=RSSbaffb68

Yes, it is from ZDNET, but read it anyway...