How is it any worse than rootkits or keyloggers? We've had unsafe password sniffing code for decades. Protip: don't execute unsafe code.
Literally nothing has changed.
Spectre is literally nothing
Colton Brooks
William Sanchez
Yes
Jaxon Foster
Thanks for the comforting message, NSA
Cameron Ortiz
Use the Management Engine to run Minix and your OS protections are bypassed.
NSA backdoor to the world!
David Lopez
lmao +20yrs of hidden substrate level evil
Daniel Perez
yeah except vms in hosting providers can view hypervisor and other vm memory
Justin Ward
>spin up an instance on AWS
>have full access to hypervisor and other instances hosted on the same intel server
>surf the net on your intel cuckputer
>drive-by Javascript has full access to memory and can steal passwords and sshkeys at will
Hudson Rivera
Breaking out of VMs is pretty much, by definition, worse than rootkits and keyloggers.
Colton Fisher
>testing out a new form of malware/ransomware in my testing VM
>breaks out an installs itself on the host machine and the network
>buy some basic hosting on amazon/wherever for $5 a year
>install malware that breaks out of the VM and infects the host servers all across the network
>tottes not worse than rootkits and keyloggers guys
This is supposed to be a fucking technology board. Where do you faggots come from?
Luke Campbell
You can abuse Spectre and Meltdown via Javascript without user interaction.
Jaxon Scott
go back to Sup Forums with your cryptofascist nazi conspiracies.
Xavier Gray
But that's exactly what happens with these issues. Fuck off you technology illiterate dick cheese
Christian Allen
>expert geek loads malware into vm sandbox
>malware jumps out of sandbox and rewrites hardware with rogue firmwares
>firmwares disable fail safes, turns fans off, increases voltage
>computer bursts into flames
>geek dies in basement fire
Easton Jones
whatever drumpfkin
Xavier Ward
I never voted for him. Take your identity politics and stuff them up your ass next to where your head is, shitposter
Aaron Jackson
but you dont understand.... mah AMD!!
Sebastian King
>identity politics
Dylan Hill
Javascript on a webpage could read all your system's memory, even if you're running it in a VM. The only thing worse than that is WRITING to all system memory, but future ME/PSP exploits will make sure it's possible.
Wyatt Mitchell
I'm just pointing out some of the capabilities of exploiting these bugs.
Nothing to get so defensive about.
James Carter
He's in here to thread slide, just report and ignore
Noah Smith
t. ShareBlue bot
Nolan Barnes
Someone said Spectre?
Jace Rodriguez
>doing anything serious on a pc
>having anything to hide
only pedos fear the spectre
Jose Sullivan
Management Engine, Meltdown and Spectre are big guy tools to spy on everyone.
I find it hilarious how AMDfags think that they are protected from the cyber intelligence community just because they use AMD.
Every bit of tech in your phone and PC are compromised.
Angel Bailey
*gets his CC stolen because it leaked across VMs*
Carter Cooper
nice try pedo but I only use cash and store value in physical assets.
Josiah Wright
The problem is that these attacks even work from sandboxed code, like code running in a virtual machine or code running in a web browser.
Ayden Scott
The CIAniggers have better solutions than some shitty design flaws.
Christian Morales
Have virtual servers you rent out.
Some fuckwit exploits Spectre or Meltdown and he then can access memory for any of the other virtual servers.
Isaiah Bailey
>How is it any worse than rootkits or keyloggers?
I'm not sure if this is some low quality bait, but Spectre and Meltdown are infinitely worse in that virtual address space isolation is a key foundation on which modern operating systems are built on, and now it's possible to even break out of virtual machines or other sandboxed environments.
>Protip: don't execute unsafe code.
You run potentially harmful code every day when you use a browser with a javascript engine. As these weaknesses can make ANY user space process break out of its memory isolation and read arbitrary memory, you're not even safe when visiting Sup Forums anymore.
Jace Reyes
Say a system consist of a hypervisor and two virtual machines.
If the hypervisor is patched and the one virtual machine is patched can the last virtual machine "break out" and view the other two systems?
Charles Cooper
No. However, as context switching overhead is increased with the patch, hypervisors with many vm guests are going to notice a considerable performance drop.
Owen Ward
yes, but it comes with a mandatory update that gimps performance.
Leo Lopez
I like the show Rick and Morty
Matthew Baker
>I only use cash
what do you have to hide, terrorist? Are you buying bomb parts and ammunition?
Kayden Carter
Why... WHY do americunts have so little trust, and instead of doing something about the system, all the critics just hide.
I live in the socialist utopia, you'll know which five contries i'm talking about. And i have two bank acounts, my main is registered with the government. They can see all that happens, with the right argument. The police etc. only with a court order, and the tax ministry only the regular payments. I've received 200$ last year, because THE GOVERNMENT discovered, BY LOOKING IN MY FILES, that i, MYSELF, had miscalculated my tax rate, and thus payed a little two much every month.
Who cares they would be able to, if i provoke the police, to see how much i spends at MacDonald?
I literally can't figure out how you either keep lying to yourself or ignoring the problem that you claim is in the system. I thanks my grandparents for allowing dangerous socialism in my country, so i can live better and more securely, EVEN THOU I DON'T VOTE SOCIAL.
Liam Hill
>socialism is when the government does things
Josiah Sanders
>what is a js keylogger
kill yourself, you fucking retard