Skip to content
I T S S
  • Welcome
  • Hardware
  • Internet
  • Networking
  • Security
  • Data Recovery
  • Support
  • Contact
  • Webmail

Excellent and Accessible Write-Up on Spectre & Meltdown Vulnerabilities

By itss | 08/01/2018
0 Comment

https://ds9a.nl/articles/posts/spectre-meltdown/

Category: Technology
Post navigation
← Intel CPU Vulnerability MacOS High Sierra’s App Store System Preferences Can Be Unlocked With Any Password →

Recent Posts

  • Hardware Exploits?
  • Why Quake3 was so fast : Fast Inverse Square Root
  • A Nice Little Cryptography Primer
  • pfSense / Wireguard / Bad Code / Close Call
  • Apple Continues Its Trip To The Dark Side With The Release of MacOS 17 (Big Sur)

Slashdot

News for nerds

  • Perplexity's AI Browser Comet Vulnerable To Prompt Injection Attacks That Hijack User Accounts
    by msmash on 25/08/2025 at 4:54 pm

    Security researchers have uncovered critical vulnerabilities in Perplexity's Comet browser that enable attackers to hijack user accounts and execute malicious code through the browser's AI summarization features. The flaws, discovered independently by Brave and Guardio Labs, exploit indirect prompt injection attacks that bypass traditional web security mechanisms when users request webpage summaries. Brave demonstrated account takeover through a malicious Reddit post that compromised Perplexity accounts when summarized. The vulnerability allows attackers to embed commands in webpage content that the browser's large language model executes with full user privileges across authenticated sessions. Guardio's testing found the browser would complete phishing transactions and prompt users for banking credentials without warning indicators. The paid browser, available to Perplexity Pro and Enterprise Pro subscribers since July, processes untrusted webpage content without distinguishing between legitimate instructions and attacker payloads. Read more of this story at Slashdot.

  • Stock Exchanges Urge Regulators To Crack Down on 'Tokenised Stocks'
    by msmash on 25/08/2025 at 4:05 pm

    A group representing the world's biggest stock exchanges has called on securities regulators to clamp down on so-called tokenised stocks, arguing that the blockchain-based tokens create new risks for investors and could harm market integrity. From a report: Crypto exchange Coinbase and broker Robinhood are among those making a push into the nascent sector that could shake up the securities investing landscape. Proponents say tokenised equities can cut trading costs, speed up settlement and facilitate around-the-clock trading. The World Federation of Exchanges (WFE), in a letter sent to three regulatory bodies last Friday, said it was concerned the tokens "mimic" equities without providing the same rights or trading safeguards. Read more of this story at Slashdot.

  • Musk's xAI Sues Apple and OpenAI Over Alleged Antitrust Violations
    by msmash on 25/08/2025 at 3:28 pm

    An anonymous reader shares a report: Elon Musk's AI startup xAI sued Apple and ChatGPT maker OpenAI in U.S. federal court in Texas on Monday, accusing them of illegally conspiring to thwart competition for artificial intelligence. Musk earlier this month had threatened to sue Cupertino, California-based Apple, saying in a post on his social media platform X that "Apple is behaving in a manner that makes it impossible for any AI company besides OpenAI to reach #1 in the App Store." Read more of this story at Slashdot.

  • Chinese Solar Makers' Losses Deepen as Industry Vows To End Price War
    by msmash on 25/08/2025 at 2:41 pm

    Years of aggressive capacity expansion have driven China's solar manufacturing sector into deep losses. Panel prices have hit their lowest levels since 2011 even as the country's installations more than doubled. Shanghai-listed Tongwei reported a 4.96 billion yuan ($693 million) net loss for the first half of 2025, widening from 3.13 billion yuan a year earlier, while Trina Solar swung to a 2.92 billion yuan loss from a prior-year profit. Panel prices touched 8.7 cents per watt in July, forcing manufacturers to write down inventory values across the polysilicon-to-module supply chain. China installed 212.2 gigawatts of photovoltaic capacity through June, bringing total installations to 1.1 terawatts, yet supply continues outpacing demand after seven major manufacturers posted their first combined annual loss in 2024. The Ministry of Industry and Information Technology convened leading producers last week to urge shutdowns of outdated capacity, while the China Photovoltaic Industry Association pledged to tackle what it termed "involution-style" competition through strengthened self-discipline measures. Read more of this story at Slashdot.

  • DHL Deploys AI To Fill Retirement Gap as Third of German Workers Near Exit
    by msmash on 25/08/2025 at 2:01 pm

    DHL's German operations, facing the departure of one-third of support staff within five years, has automated customer service calls and begun capturing institutional knowledge through AI-conducted exit interviews. The company's voicebot now processes one million monthly calls, resolving half without human intervention, though initial deployments struggled with basic German language recognition. FT adds: At DHL in Germany, one in three staff working in support operations will retire in the next five years, taking with them decades of institutional memory. "Everyone in Germany understands that if you don't automate and use AI, you won't be able to deal with the shrinking workforce," says Gemein [chief information officer for post and parcels]. Read more of this story at Slashdot.

  • New Book Argues Hybrid Schedules 'Don't Work', Return-to-Office Brings Motivation and Learning
    by EditorDavid on 25/08/2025 at 11:34 am

    Yahoo Finance interviews Peter Cappelli, a Wharton professor of management, on "the business case for employers pushing for workers to get back to the office." (Cappelli has co-written a new book with workplace strategist Ranya Nehmeh titled In Praise of the Office: The Limits to Hybrid and Remote Work ...) Yahoo Finance: What's wrong with a hybrid work arrangement? Cappelli: People just don't come in. That's maybe the single biggest factor. There is a growing awareness that people are really never there on their anchor days. If you want that for your company, you have to manage that attendance... Yahoo Finance: What's the compelling advantage of in-person work? Cappelli: There's value in human interaction, what we learn from each other, the cooperation that we can get in solving problems, and the motivation and commitment that comes from being around other people... When you first began your career, imagine what it would've been like if no one was in the office. You'd be completely lost. If you think about how we learn about office work, we learn by watching. You learn what the values of the organization are. You learn it from the conversations in the office. You can see how the boss reacts to different requests and different problems. As you advance, you've got your ear to the ground, and you've got the opportunity to raise your hand and pitch in and have some influence. You can catch the boss between meetings and pass along a little tidbit of information, and you develop relationships with people where you can solve problems... Those are the kind of things that we miss when we move to remote — in addition to the general fact that people are energized by working with people. With remote work, people also spend more time in meetings that are worthless. A lot of those things could be fixed, but the problem is they're not. He argues remote work isn't as widespread as it seems. ("In Europe, for example, where employees have always had more power, I figured remote work would stay. It hasn't. Most everybody's gone back to the office.") Even in the U.S., 70% of employers are in-office, all the time. ("[M]ost employers are small. Remote work and hybrid work, in particular, is largely a big city, big company phenomenon... It's only white-collar jobs.") And fewer jobs offered are being offered with remote-working options, he believes, now that the labor market has softened. "CEOs are now thinking we're losing something, and the employee resistance to return to the office has weakened.... The longer you wait, the harder it is to ever get people to come back without a big fight. " Cappelli: Right now, people might be saying, 'I will quit if I have to go back to the office,' but it turns out they don't mean it. The reason, of course, is it's one thing to say that you will quit; it's another to actually walk away from a paycheck... If you opt for remote or hybrid, good outcomes don't happen by themselves. You can make it work, but it requires more time and effort for management, more rules, more practices, more leadership. Read more of this story at Slashdot.

Archives

  • September 2022
  • November 2021
  • June 2021
  • March 2021
  • November 2020
  • October 2020
  • September 2020
  • February 2020
  • January 2020
  • October 2019
  • August 2018
  • July 2018
  • April 2018
  • February 2018
  • January 2018
  • December 2017
  • October 2017
  • September 2017
  • August 2016
  • July 2016
  • March 2016
  • February 2016
  • August 2015
  • May 2015

Categories

  • Innovation
  • Security
  • Software
  • Technology

Tags

backdoor cisco coding json laziness patterns public information announcement security vulnerability
© 2017 IT Sales & Services Ltd
Quality IT solutions in Tanzania since 2010
Iconic One Theme | Powered by Wordpress