Intel Corp (NASDAQ:INTC) downplayed concerns that software updates to address security vulnerabilities in its computer chips will degrade performance of computers as businesses and consumers scrambled to figure out whether installing the patches would slow their machines.
Continue Reading Below
These flaws are security holes in nearly every computing device that make their data vulnerable to hacking.
The problem surfaced early this week when news broke that researchers were planning to release technical reports on the threats, sending businesses, governments and consumers scrambling to understand the extent of the threat and the cost of fixes. No clear consensus has emerged.
“Intel continues to believe that the performance impact of these updates is highly workload-dependent and, for the average computer user, should not be significant and will be mitigated over time,” the world’s No. 1 chipmaker said in a release.
The release cited comments from Amazon.com Inc (NASDAQ:AMZN), Apple Inc (NASDAQ:AAPL), Alphabet Inc’s (NASDAQ:GOOGL) and Microsoft Corp (NASDAQ:MSFT), which said that they had seen no significant impact to performance after installing the patches.
They were among a group of firms that quickly patched their technology to mitigate against the threat from one of those vulnerabilities, dubbed Meltdown, which only affects machines running Intel chips.
Major software makers have not issued patches to protect against the second vulnerability, dubbed Spectre, which affects nearly all computer chips made in the last decade. However, Google, Firefox and Microsoft have implemented measures in most web browsers to stop hackers from launching remote attacks using Spectre.
Governments and security experts say they have observed no cyber attacks seeking to exploit either vulnerability, though they expect hackers to attempt to do so as they digest technical data about the security flaws.
One key risk is that hackers will develop code that can infect the personal computers of people visiting malicious websites, said Chris Wysopal, chief technology officer of cyber security firm Veracode.
He advised PC owners to install the security patches to protect against such potential attacks. There is less risk to computer servers at large enterprises, he said, because those systems are not used to surf the web and can only be infected in a Meltdown attack if a hacker has already breached that network.
Microsoft has issued a patch for its Windows operating system, and Apple desktop users with the most recent operating system are protected. Google has said most of its Chromebook laptops are already protected and the rest will be soon.
Apple said it plans to release a patch to its Safari web browser within coming days to protect Mac and iOS users from Spectre.
While third-party browsers from Google and others can protect Mac users from Spectre, all major web browsers for Apple’s iOS devices depend on receiving a patch from Apple. That means hundreds of millions of iPhone and iPad users will be exposed to potential Spectre attacks while browsing the Web until Apple issues its patch.