| |
|
|
| |
|
|
Intel CEO Brian Krzanich sold off a large portion of his stake in the company months after Google had informed the chipmaker of a significant security vulnerability in its flagship PC processors — but before the problem was publicly known.
The vulnerability, which affects processors from Intel, AMD, and ARM and could allow malicious actors to steal passwords and other secret data, became public this week. The disclosure has left processor makers and operating-system vendors including Intel and Microsoft scrambling to get on top of the story and patch their products.
But while the public is just being informed about the security problem, tech companies have known about it for months. In fact, Google informed Intel of the vulnerability in June, an Intel representative told Business Insider in a statement.
That means Intel was aware of the problem before Krzanich sold off a big chunk of his holdings. Intel's CEO saw a $24 million windfall November 29 through a combination of selling shares he owned outright and exercising stock options.
The stock sale raised eyebrows when it was disclosed, primarily because it left Krzanich with just 250,000 shares of Intel stock — the minimum the company requires him to hold under his employment agreement. |
|
|
|
| |
|
|
|
| cauz |
Jan. 5, 2018, 11:09 a.m. |
| |
|
|
|
| Michele Bachmann |
Where do we say that a cell became a blade of grass, which became a starfish, which became a cat, which became a donkey, which became a human being? There's a real lack of evidence from change from actual species to a different type of species. |
| James Fallows |
The demise of Google Reader, if logical, is a reminder of how far we've come from the cuddly old 'I'm Feeling Lucky' Google days, in which there was a foreseeably-astonishing delight in the way Google's evolving design tricks anticipated what users would like. |
| Herman Cain |
In order to fix Social Security, we must restructure it so that we continue to provide for our Nation's seniors that are approaching retirement age, but allow for younger taxpayers to invest a portion of their Social Security taxes in private accounts. |
| Tito Jackson |
Oh, Michael Jackson is Michael Jackson. And no matter if he sold 40 million records off of one record and sold 15 off his last or whatever the counts may be, Michael Jackson will be Michael Jackson. |
| Jane Austen |
My idea of good company is the company of clever, well-informed people who have a great deal of conversation; that is what I call good company. |
| Luc Dardenne |
Film-makers in Belgium are seen as arts and crafts makers. It is a small country. There is not really a film industry there at all. |
| Michael Eisner |
21 years as CEO is a long time. I was and probably still am the longest serving CEO in America. Certainly I am in the media industry, bar none. |
| Robert Darnton |
In 2002, Google began an ambitious project to digitize every book in the world. It was intended as a search project: type in a query, and Google would show you snippets. They asked university libraries for books, which they would scan for free. At Harvard we didn't permit them to take works under copyright, but other libraries gave them everything. |
| Stephen Cambone |
There is a reasonable concern that posting raw data can be misleading for those who are not trained in its use and who do not have the broader perspective within which to place a particular piece of data that is raw. |
| Kirk Cameron |
We all have our convictions formed by different things, and mine are informed by my faith, they're informed by the Word of God, and I found that to be an anchor for me, a compass and a guide for me. When people start bullying one another and calling each other names for those different convictions, then I think you get into problems. |
|
|
|
|
Intel was aware of the chip vulnerability when its CEO sold off $24 million in company stock
Intel CEO Brian Krzanich sold off $24 million worth of stock and options in the company in late November.
The stock sale came after Google had informed Intel of a significant vulnerability in its chips — a flaw that became public only this week.
Intel says the stock sale was unrelated to the vulnerabil...
|
| |
|
|
|
By Next Week, Intel Expects To Issue Updates To More Than 90% of Processor Products Introduced Within Past Five Years (intel.com) 181
Posted by msmash on Thursday January 04, 2018 @01:40PM from the fixing-things dept.
Intel said on Thursday that by next week it expects to have patched 90 percent of its processors that it released within the last five years, making PCs and servers "immune" from both the Spectre and Meltdown exploits. The company adds:
Intel has already issued updates for the majority of processor products introduced within the past five years. By the end of next week, Intel expects to have issued updates for more than 90 percent of processor products introduced within the past ...
This post is a comment.
|
| |
|
|
|
Google Says Almost All CPUs Since 1995 Vulnerable To 'Meltdown' And 'Spectre' Flaws
Google has just published details on two vulnerabilities named Meltdown and Spectre that in the company's assessment affect "every processor [released] since 1995." Google says the two bugs can be exploited to "to steal data which is currently processed on the computer," which includes "your passwords stored in a password manager or browser, your personal photos, emails, instant messages and even business-critical documents." Furthermore, Google says that tests on virtual machines used in cloud computing environments extracted data from other customers using the same server. The bugs were discovered by Jann Horn, a security researcher with Google Project Zero, Google's elite security team. These are the ...
|
| |
|
|
|
Facebook breach put data of 50 million users at risk
The vulnerability had to do with the social network's "view as" feature.
Facebook on Friday said a breach affected 50 million people on the social network.
The vulnerability stemmed from Facebook's "view as" feature, which lets people see what their profiles look like to other people. Attackers exploited code associated with the feature tha...
|
| |
|
|
|
The CCleaner Malware Fiasco Targeted at Least 20 Specific Tech Firms
Hundreds of thousands of computers getting penetrated by a corrupted version of an ultra-common piece of security software was never going to end well. But now it's becoming clear exactly how bad the results of the recent CCleaner malware outbreak may be. Researchers now believe that the hackers behind it were bent not only on mass infections, but on targeted espionage that tried to gain access to the networks of at least 20 tech firms. Earlier this week, security firms Morphisec and Cisco revealed that CCleaner, a piece of security software distributed by Czech company Avast, had been hijacked by hackers and loaded with a backdoor that evaded the company's security checks. It wound up installed on more than 700,000 co...
|
| |
|
|
|
Hacker Steals $30 Million Worth of Ethereum From Parity Multi-Sig Wallets
An unknown hacker has used a vulnerability in an Ethereum wallet client to steal over 153,000 Ether, worth over $30 million dollars. The hack was possible due to a flaw in the Parity Ethereum client. The vulnerability allowed the hacker to exfiltrate funds from multi-sig wallets created with Parity clients 1.5 and later. Parity 1.5 was released on January 19, 2017. The attack took place around 19:00-20:00 UTC and was immediately spotted by Parity, a company founded by Gavin Wood, Ethereum's founder. The company issued a security alert on its blog. The Ether stolen from Parity multi-sig accounts was transferred into this Ethereum wallet, currently holding 153,017.021336727 Ether. Because Parity spotted the attack i...
|
| |
|
|
|
One of the best emails I have received (edited for brevity) about a job that I configured wrong on a supercomputer:
"Your job was cancelled as you were asking for resources not available ... [you] were requesting 20 nodes with 4 processors each, and 80gb per processor. While there are a few large memory nodes ... there are not enough to fulfill this request. None of the other, more available node types have 240gb/node available as RAM so your job was never able to run ... so I cancelled your job. Please reconsider your requirements ... Let us know if you have any questions."
Yeah... thats...
|
| |
|
|
|
US Voting Server At Heart of Russian Hack Probe Mysteriously Wiped
A computer at the center of a lawsuit digging into Russian interference in the U.S. presidential election has been wiped. "The server in question is based in Georgia -- a state that narrowly backed Donald Trump, giving him 16 electoral votes -- and stored the results of the state's vote-management system," reports The Register. "The deletion of its filesystem data makes analysis of whether the system was compromised impossible to ascertain." From the report:
There is good reason to believe that the computer may have been tampered with: it is 15 years old, and could be harboring all sorts of exploitable software and hardwar...
|
| |
|
|
|
WPA2 Security Flaw Puts Almost Every Wi-Fi Device at Risk of Hijack, Eavesdropping
A security protocol at the heart of most modern Wi-Fi devices, including computers, phones, and routers, has been broken, putting almost every wireless-enabled device at risk of attack. From a report:
The bug, known as "KRACK" for Key Reinstallation Attack, exposes a fundamental flaw in WPA2, a common protocol used in securing most modern wireless networks. Mathy Vanhoef, a computer security academic, who found the flaw, said the weakness lies in the protocol's four-way handshake, which securely allows new devices with a pre-shared password to join the network. That weakness can, at its worst, allow an atta...
|
| |
|
|
|
One Year After Data Breach, Equifax Goes Unpunished
"It's been a year since Equifax doxed the nation of America through carelessness, deception and greed, lying about it and stalling while the problem got worse and worse," writes Cory Doctorow. Equifax's new CSO says they've spent over $200 million on security upgrades, in work being overseen by auditor from eight different states. An anonymous reader quotes Doctorow's response:
This all sounds very good and all, but it's still monumentally unfair. The penalty for Equifax's recklessness should have been the corporate death penalty: charter revoked, company shut down, assets sold to competitors... The fact that Equifax's investors and exec...
|
| |