Intel apocalypse thread - now with PoC on the wild

Time to ride the AMD.

It's literally not. AWS and Microsoft Azure reboots haven't happened yet (so they haven't patched secretly on advance), Linux patches aren't finished yet, there's no news of Microsoft being released to regular users.

STOP POSTING LIES JEW NIGGER SUBHUMAN

Reminder that anyone who's encrypted their entire computer will have a hell of a slow machine.

You can read any location in protected memory if you ask your intel CPU just right

p much

>tfw ALL INTEL CPUs are affected and not just the ones from last decade

It ain't patched yet. Windows definitely isn't done, and the Linux patches are ready but not deployed iirc.

Long story short it's arbitrary kernel memory read. The significance of this needs a little understanding of OS design. There's two sections of memory: Kernel and User.
Kernel is where all the super sensitive EXTREMELY CRITICAL data is kept. Unencrypted data, cleartext passwords, that sort of thing. It handles all the sensitive data so it's extremely restrictive and doesn't let user mode applications in. Like you have a house with a safe in it, the stuff in the kernel is the stuff in the safe, while the stuff outside the safe is user space.
It's basically a way of reading what's in the safe without opening it.

Is this a three letter agency backdoor?

F U C K W I T S
U
C
K
W
I
T
S

who gives a fuck? it can still be posted in.

Makes sense. And what prevented this from being discovered years ago? As I had it explained to me the issue is that the system kernel address space is in the same location as the user kernel address space, wasn't this always public knowledge?

Shhh

My current CPU is AMD and has been for 4 years.

Guys, is Norton sufficient protection or should I install Avast just in case?

If not an intentional backdoor from the beginning then probably kept as one, I refuse to believe so many people were so inept as to not discover this for so long.

B-but it s-seems like one...

even common sense 2018 aint gonna help you

this is over that. No antivirus can save you

Precisely and something so utterly critical. Well, now we have proof that those three letters are utter criminals.

It doesn't matter. Turning off your computer is the only defense.

There is no protection. That's why this is an intel apocalypse.

Just install an adblocker and disable JavaScript when you browse websites.

Just buy AMD, like I always have, AMD is better.

it doesn't matter its impossible to use this bug in a real world scenario

It's hardware bug, son. No antivirus can save you from it.

as if the vulnerability can be exploited over TCP/IP

i got my PC gifted by generous dude from Reddit and it has Intel CPU.
what should i do now? will the update come through pacman -Syu or?
also updates fail for me on Windows because i disabled all the telemetry shit. how fucked am i?

Nice Pepe folder, user.

Guys, stop fooling around. Is Kaspersky any good?

t. Bugtel

stop

Wouldn't you still need to know the exact memory addresses to be able to make any sense of the data you're pulling? What's the value of querying a random memory block if you don't know what's there?

Until it is, you mean.

:^)

replace the CPU

Kaspersky is the best antivirus but this bug is over all that.

Nothing is any good against this. Until your kernel is patched, you're open.

If explotation was impractical, why is there an embargo even on source code comments? How the fuck has Linus allowed such a fundamental change (with big performance degradation to boot) made in weeks in a fucking rc6?

It looks like a panic-fuelled emergency patch, what they're doing only makes sense is the vulnerability severity is 11 out of 10, and that means explotation is feasible.

>as if any process can be run on my computer via internet

I hope you use wget as your browser user

There's no defence. Run for the hills.

Tell that to nsayy

Not really since this is arbitrary read. You can pull where the information is. It defeats KASLR, which is huge. KASLR is the randomisation of kernel memory to prevent attacks similar to this, but this bug is so bad it works at a much lower level and defeats this.
The level it works at is so low that it triggers before all the safety things do.

It was thought that the performance benefit of not isolating kernel memory was worthwhile. However this hardware bug makes it impossible to secure data outside of total isolation.

these niggers are trying to scare you, retard
dont visit any shady websites with javascript and/or flash enabled, and dont download porn.jpg.exe and you'll be golden

Changing the interior wouldn't fix the exterior.

Is that you Terry?

tl;dr

Someone in an earlier thread was lying. The Thinkpad A475 is Bristol Ridge, not Raven Ridge. NOT a Ryzen part.

Guys, you're starting to scare me. Will a holy trinity of Norton, Avast and Kaspersky protect me? Should I encrypt my drives, too?

i mean what are you going to do with my info? do you like jacking off to my furry porn? my bank account? i got nothing in my bank account. extortion? extort what? the only stuff i can give you is my old underwear if you're into sniffing that. take my csgo knives? the only knives i have are plastic disposable ones. make me lose my files? oh no there goes all my 2004 naruto x sasuke mlpverse origin fanfiction

Drashek?

just get AMD

There's an A485 due, I believe.

Pretty much this.

The only concern to the end user is fucking rouge javascript.

But if the data pulled is anything like OP's proof of concept, then how the fuck would they even translate that information to a value?

That said, anyone still using Flash in this day and age needs to be taken behind a barn and shot through the head.

sucks too, i swear lenovo is holding back the coffee lake/ryzen thinkpads to sell those shit 25th anni thinkpads

see

RR ThinkPads are coming CES 2018.

If they had put the Raven Ridge (Ryzen) APUs in the 25th Anniversary thinkpads they'd have sold like crazy. Dumb chinks.

Now you're just trolling.

What kind of antivirus is that? Is it better than Kaspersky?

That's it. First coin miners. Now this. JavaScript was a mistake. I'm globally blocking it.

stop listening to internet autism and google your shit my dude

They can use you as scapegoat like the USA/NK wannacry stuff.

I can't imagine why hackers would priority stealing Kernal information over their miner botnet anyway.

>And what prevented this from being discovered years ago?

What makes you think it hasn't been discovered. The best zero days are the ones you never hear of. There exists private cyberwarfare companies built on keeping zero days secret for as long as possible because their clients will pay millions for them. Whenever you hear about an exploit the chances are pretty high that some person or group had found this exploit before the general public (sometimes years before).

Brave was a mistake.
Brendan Eich was a mistake.

>(((((discovered)))))
you don't need to "discover" something that you put in place intentionally

They aren't gonna come out and say "ye goy we put that shit intentionally"

and i go to jail and get raped and abused? what's the difference? at least jail has bed and food

>mfw if you encrypted your drives the performance hit can go up to 60%

>mfw games that use copy protection such as DENUVO will take a massive hit.

This. If it really did come from the PPro era (1993) then that was the peak of both Microsoft's monopoly powers and the federal government's willingness to dick with chip makers in the name of spying. The management engine is positively tame by comparison.

>tfw I have a laptop so I can't just go out and buy another processor
So it goes.

It's been known about for a while

I'm going to gift my laptop to my sister and buy an AMD laptop

You should install a fork into a light socket

update the kernel

it won't be comfy and tasty.

>25th anni
>relevant

They aren't holding shit back, business laptops just get released a few months behind the rest. Expect Coffin in Feb.

>Denuvo

OH BOY.

Why isn't AMD affected by this?

don't do that to your sister

>Dumb chinks.
>implying fucking over everyone wasn't part of the plan

because they're smart and know what they're doing

Got room for one more in that boat?

ebay

>AMD laptop

I've been looking for a decent one all morning but they're all shit tier HPs, ASUSs and the like. I guess there's the Chinkpad A series but eh

A series isn't Ryzen yet.

If the exploit were executed within a VM, would it innately be able to attack the host, or would it require additional considerations to exit the guest?

Now I wonder what's going to happen to prices for laptop with Intel CPUs.