+- Limelight Forums (https://limelightgaming.net/forums)
+-- Forum: Community (https://limelightgaming.net/forums/forum-195.html)
+--- Forum: Announcements (https://limelightgaming.net/forums/forum-200.html)
+---- Forum: Archive (https://limelightgaming.net/forums/forum-249.html)
+---- Thread: [SECURITY] [CERT] Meltdown / Spectre (/thread-19138.html)
[SECURITY] [CERT] Meltdown / Spectre - Burnett - Jan 8, 2018
Good evening community,
we feel it is our duty to inform you that your browsers/systems could be compromised by attackers.
Now this is nothing new as you can guess. However, there is some critical difference between some regular attacks and those Meltdown/Spectre exploits.
On the night of 3rd-4th January, Google's Project Zero released three CVE (Common Vulnerabilities and Exposures) documents that are explicitly demonstrating the following exploits:
- CVE-2017-5715 (branch target injection - Spectre)
- CVE-2017-5753 (bounds check bypass - Spectre)
- CVE-2017-5754 (rogue data cache load - Meltdown)
Within hours, security researchers were able to steal browser passwords/tokens - all just by visiting some malicious websites.
Seeing that it is possible to compromise your systems without leaving any trace (no logs nothing), please update your systems/browsers in order to protect your data!
Various vendors have already released emergency patches/updates that you should apply now.
How to protect your systems/browsers against Spectre/Meltdown:
https://www.cnet.com/how-to/how-to-fix-meltdown-spectre-intel-amd-arm-windows-mac-android-ios/
RE: [SECURITY] [CERT] Meltdown / Spectre - Barkles - Jan 8, 2018
Limelight Gaming
Protecting browsers in your area.