Android, Antivirus, Apple, Chromebook, Enterprise, Internet Security, iPhone, Mobile, OS X

CPU Security Flaw (Meltdown and Spectre) – What you need to know

Processors (CPUs) provide the brainpower for all the computerized devices we use day to day, from PCs and smartphones down…

Published 8 years ago in
CPU Security Flaw (Meltdown and Spectre) – What you need to know

Processors (CPUs) provide the brainpower for all the computerized devices we use day to day, from PCs and smartphones down to mundane things such as ATMs. Therefore an exploit – or exploits – that affects virtually all of these devices at the same time is a shocking thing to hear about.

Unfortunately, early 2018 saw just such a thing happen with the news that a design flaw in nearly all modern processors had been found.
 

What are Meltdown and Spectre?

Meltdown and Spectre are the names given to the two newly discovered vulnerabilities that affect virtually every device with a processor in it.

They rely on retrieving small amounts of data that are made available outside of the processor temporarily. This happens due to a design in processors called “speculative execution”.

This is the process where a CPU essentially guesses what information it will need next to function quickly.

Spectre allows attackers to force the processor itself to start the speculative execution process. They then access the extra data to obtain sensitive information that should never be available.

Meltdown fundamentally breaks down the mechanism that stops applications from accessing system memory. By doing so it enables exploits to access arbitrary system memory to retrieve sensitive data.
 

Who discovered them?

Both exploits were independently discovered by multiple teams of researchers.

Meltdown

  • Jann Horn (Google Project Zero)
  • Werner Haas, Thomas Prescher (Cyberus Technology)
  • Daniel Gruss, Moritz Lipp, Stefan Mangard, Michael Schwarz(Graz University of Technology)

Spectre

  • Jann Horn (Google Project Zero)
  • Paul Kocher in collaboration with Daniel Genkin (University of Pennsylvania and University of Maryland), Mike Hamburg (Rambus), Moritz Lipp (Graz University of Technology), and Yuval Yarom (University of Adelaide and Data61)

 

What systems are affected?

On a technical level, every Intel processor that implements out-of-order execution (speculative execution) is potentially affected. This includes almost all Intel processors dating back all the way to 1995!
A portion of AMD processors and ARM processors are also affected.

All desktop, laptop and cloud computing services may be affected by Meltdown.
 

Am I affected by Meltdown and Spectre?

Yes!

This may seem like a very blunt answer but due to the wide-reaching nature of the design flaw, you almost certainly have a device that will have been affected.
 

Does my antivirus protect me?

Antivirus programs could theoretically detect the use of these exploits, however, in practice it is very unlikely. It is possible that your antivirus could detect malware designed to exploit these vulnerabilities but not the actual vulnerabilities themselves.
 

How do I protect myself?

The Meltdown exploit is able to be fixed with a software patch as it relies on breaking the isolation between user apps and the operating system.

Computers fitted with a vulnerable processor and running unpatched operating systems will be open to exploit.

Fortunately, Operating system vendors have released relevant patches to protect their users. As long as you regularly update your operating system using built-in update tools, you should be fully protected from the Meltdown vulnerability.

As usual, it is best to operate safe web browsing habits and not install any potential malware on to your device that may potentially make use of these vulnerabilities.

Spectre has proven to be much harder to protect from as it is executed at the hardware level.

Initial advice so far is to follow the basic steps (similar to meltdown):

  • Update your operating system frequently
  • Install updates from your hardware manufacturer (firmware updates)
  • Turn on isolation mode in your web browser ( Chrome and Firefox ) – This prevents exploits in javascript from utilizing Spectre vulnerability.

 

What next?

The main thing for most people to do is to not panic. If you have followed the basic security steps and best practices above then you will almost certainly be safe.

It is important to note that some of the security patches that have been released may deliver a performance hit to your device. This is a widespread complaint and many of the operating system vendors recognize this as an issue.

They have stated that the performance hit should not be noticeable to the average user, however, hits to performance are “highly variable and depend on a number of factors”.

If you feel like your device performance has been significantly affected, do some research on whichever update you just installed. Other people may have suggestions and/or the vendor themselves may recognize a compatibility issue with certain device setups.
 

Conclusion

The shock release of these two huge vulnerabilities should be a wakeup call to the entire world.

It is increasingly important in this day and age to be ever vigilant about what information you store on your devices.

More importantly, users and companies should focus on preventative practices, such as being aware of potential malware that could expose devices to cybercriminals.
For more advice on what users should look out for in 2018, check our article – Internet security threats to look out for in 2018

/ / / /

Be the first to write a comment.

Leave a Reply

Your email address will not be published. Required fields are marked *

iPhone

Baseus PicoGo AM31 Qi2 power bank review: I finally found my perfect iPhone companion

Baseus PicoGo AM31 Qi2 Power Bank MSRP $50.00 Score Details “A no-brainer, low-fuss, everyday carry that your iPhone will love.” Pros Light, tiny, and well-built Strong magnetic attachment Built-in kickstand is a sweet bonus Qi2 charging doesn’t disappoint Cons Slight stability woes for kickstand Warms up during wireless charging It’s not ready for a full

Published 5 days ago in
Baseus PicoGo AM31 Qi2 power bank review: I finally found my perfect iPhone companion
Baseus PicoGo AM31 Qi2 Power Bank
MSRP $50.00

Score Details

DT Editors' Choice

“A no-brainer, low-fuss, everyday carry that your iPhone will love.”

Pros
  • Light, tiny, and well-built
  • Strong magnetic attachment
  • Built-in kickstand is a sweet bonus
  • Qi2 charging doesn’t disappoint
Cons
  • Slight stability woes for kickstand
  • Warms up during wireless charging
  • It’s not ready for a full tank top-up

Amazon

Instant Insight

The Baseus PicoGo AM31 Qi2 power bank is a lovely everyday carry (EDC) if you want something pocketable for the last-gasp power shot to your phone. It has a terrific build with strong magnets and offers the convenience of a built-in kickstand, as well.

Recommended Videos

The magnetic position lock is great, and support for Qi2 standard means your iPhone can tap into the full 15W wireless power share potential. In wired mode, you can draw 20W out of this tiny power bank. It does run warm, but not to a worrying extent.

Baseus PicoGo AM31 specs: A quick look at the numbers

Model Name PPKPC-0520S
Battery Capacity 5000 mAh
Connector Type USB Type-C
Power Output 20W Wired / 15W Wireless (Qi2 Certified)
Voltage 20 Volts
Weight 4.8 oz (Ultra-Light)
Build Materials Aluminum Alloy Shell & Liquid Silicone
Safety Features NTC Temperature Control, Heat Dissipation, 9-Layer Protection
Compatibility iPhone 12–16 Series, Samsung, Android, iPad
Warranty & Support 24-Month Warranty with 24/7 Professional Support

I carry an iPhone 17 Pro with me at all times. Not because it’s the only phone that has my heart. Apple just has me locked in its ecosystem, and I test more experimental apps (read: TestFlight program) and beta OS builds than I can count on my fingers. It’s a great phone, otherwise, but my wayward ways are a recipe for unnatural battery drain. 

But that’s not the end of my ordeal. I love to work outdoors. Cafes. Parks. Essentially, anywhere away from my workstation. Lugging a charging kit is something I despise. My jeans pockets aren’t fond of a massive power bank either. All that puts my iPhone’s full-day battery survival in serious jeopardy. Maybe, something small, convenient, and versatile can work? 

Baseus Picogo Power Bank AM31 Qi2 5srcsrcsrc mAh
Nadeem Sarwar / Digital Trends

There certainly are products that meet the above criteria, and that hunt landed me at Baseus’ doorsteps. And specifically, the Baseus PicoGo AM31 Mini Magnetic Power Bank with Stand 20W 5000mAh. Ignore the utterly loquacious name. Let’s call it the Baseus PicoGo AM31, for it’s a product that is fittingly tiny, and gets the job done — with some heat.

Baseus PicoGo AM31 build: You’ll love how tiny it is

Quick take: The charmingly small build and barely-there heft is paired with a solid build and some welcome extras.

One of the biggest — if not the defining — reasons to pick up the Baseus PicoGo AM31 wireless power bank is the size and bulk. It tips the scales at just over 140 grams, and its compact size ensures that you can keep it in just about any pocket on your attire or carry bag. And as you can see in the image below, the tiny power bank can even fit in the small pocket of my jeans. 

Accessories, Clothing, Pants
Image used with permission by copyright holder

If you are someone who doesn’t like to carry a bag for gadgets and wires in a bag, and trust your laptop (and phone) to last the whole outdoor work session away from a power port, the Baseus PicoGo AM31 should serve as a perfect companion device. 

You can shake your iPhone without the case flying off. 

Another crucial perk is the built-in magnet. It’s pretty strong, and during my usage, the power bank never slid off my iPhone 17 Pro or the Google Pixel 10 Pro — both of which have magnetic rings underneath the real glass shell. The situation was no different with a case applied. 

Baseus Picogo Power Bank AM31 Qi2 5srcsrcsrc mAh
Nadeem Sarwar / Digital Trends

I tested Apple’s TechWoven Case for the iPhone 17 Pro and the Spigen Ultra Hybrid Neo One (Mag Fit) for the Galaxy S26 Ultra. Once again, the magnetic lock is pretty strong, and at no point will the Baseus power bank slip off the phone’s cover shell. You can hold the power bank in a vertically oriented position and let the phone hang off it.

But there are a couple of problems hiding behind the conveniences. First, not all phones fit well with the power bank. Any device with a large (or tall) camera outlay close to the charging coil will create a problem. The Pixel 10 Pro and iPhone 17 Pro slot in just fine. The Galaxy S26 Ultra? Not so much, as you can see in the image below. 

Baseus Picogo Power Bank AM31 Qi2 5srcsrcsrc mAh
Nadeem Sarwar / Digital Trends

Second, we have the USB-C port’s placement. The kickstand at the back is pretty useful. Whether you’re scrolling a social media feed or watching horizontal videos, it can comfortably handle any position for your phone. However, in portrait propped mode, you don’t want to tap too hard on the screen, or the phone will topple over.

It’s the placement of the USB-C port that is awkward. When the kickstand is in use, the USB-C port is at the bottom, which means you can’t charge it. Only when the kickstand is propping up the phone vertically is the USB-C port accessible for charging, or souping up another device with a cable.

Baseus Picogo Power Bank AM31 Qi2 5srcsrcsrc mAh
Nadeem Sarwar / Digital Trends

 Those two are not fundamental flaws, but worth considering. On the contrary, if your prerequisite is simply a small power bank with a strong magnetic connection and a built-in kickstand, the Baseus PicoGo AM31 Qi2 powerbank is arguably one of the best bets out there. 

Build and design score: 8/10

Basues PicoGo AM31 Qi2 powerbank charging performance 

This power bank comes equipped with a 5,000mAh battery. Ideally, it should be enough for a full top-up on nearly every mainstream phone sold in the US. It can cover the iPhone 17 Pro (4,252 mAh), the Pixel 10 Pro (4,870 mAh), and the Galaxy S26 Ultra (5,000 mAh), while falling just short of the iPhone 17 Pro Max and the Pixel 10 Pro XL’s range. 

Baseus Picogo Power Bank AM31 Qi2 5srcsrcsrc mAh
Nadeem Sarwar / Digital Trends

In reality, there’s a bit of a power bleed happening, though nothing too much to worry about. You can blame the losses on voltage and thermal woes, something you will even face with electric cars and everything else in between that has an electrochemical foundation. 

I mostly used it with my iPhone 17 Pro, and it took the battery from 7% to 78% in just over two hours. On the Pixel 10 Pro, the Baseus power bank could only manage 53% top up before it died. The charging times could also have been better, but that’s what you get here.  

Broadly, it can handle a current-gen iPhone with an average Qi charging rate of 10-13% in half an hour.

Baseus Picogo Power Bank AM31 Qi2 5srcsrcsrc mAh
Nadeem Sarwar / Digital Trends

I’d also like to highlight that the power bank runs hot when it’s juicing up your phone. And depending on the ambient temperatures, you may want to keep it outside your leather-lined bag or jacket pockets. Baseus says there’s a nine-layer heat protection system in place, so you shouldn’t worry too much about fire hazards. 

When I first began using it, the ambient temperatures usually hovered between 8-14 degrees Celcius (46-57 degrees Fahrenheit). I noticed that the power bank didn’t get too hot when lying outside, but I could definitely feel the warmth building up. At no point did it get worryingly hot that I had to take it off the phone.  

As I shifted back to my hometown, where th

Read More

Continue Reading
Internet Security

Oyo Police debunk terrorist infiltration claims in Ogbomoso, dismiss viral video as fake

Oyo State Police Command has dismissed as false and misleading reports circulating on social media alleging that suspected Lukarawa terrorists have infiltrated forests around Ogbomoso and the Old Oyo National Park. The Command, in a statement issued on Wednesday by its spokesperson, DSP Ayanlade Olayinka, said intelligence reports and security The post Oyo Police debunk

Published 7 days ago in
Oyo Police debunk terrorist infiltration claims in Ogbomoso, dismiss viral video as fake

Oyo State Police Command has dismissed as false and misleading reports circulating on social media alleging that suspected Lukarawa terrorists have infiltrated forests around Ogbomoso and the Old Oyo National Park. The Command, in a statement issued on Wednesday by its spokesperson, DSP Ayanlade Olayinka, said intelligence reports and security
The post Oyo Police debunk terrorist infiltration claims in Ogbomoso…
Read More

Continue Reading
iPhone

The iPhone 5C is making a comeback, thanks to retro-loving Gen-Z

Apple’s iPhone 5C is apparently getting a second life, and this time it is not because it was a hidden gem that was slept on. In an NBC News segment, the network highlights a small but noticeable social media comeback for Apple’s old iPhone 5C. The sudden popularity is largely driven by Gen Z users

Published 1 week ago in
The iPhone 5C is making a comeback, thanks to retro-loving Gen-Z

Apple’s iPhone 5C is apparently getting a second life, and this time it is not because it was a hidden gem that was slept on.

In an NBC News segment, the network highlights a small but noticeable social media comeback for Apple’s old iPhone 5C. The sudden popularity is largely driven by Gen Z users who seem drawn to its colorful design, “throwback” camera quality, and overall retro charm.

Recommended Videos

The story is less about raw utility and more about the vibes. So after the iPod, the colorful iPhone is the next to get a revival.

iPhone 5C
Apple

Why Gen Z is suddenly into the iPhone 5C again

The appeal behind the iPhone 5C is pretty simple. Gen Z is drawn to how different it feels from modern phones. Today’s smartphones mostly look like polished slabs of metal and glass. The iPhone 5C, on the other hand, is bright, plastic, cheerful, and a little awkward in a way that now reads charming rather than cheap.

NBC notes that another reason for the renewed interest is the camera. One of the on-screen captions specifically notes that the iPhone 5C is trending thanks to its grainy photo quality. The softer and lower image quality fits neatly into

Read More

Continue Reading
Enterprise

TRON Expands Enterprise Access to TRX and TRC-20 USDT

This content is provided by a sponsor. PRESS RELEASE. Geneva, Switzerland, March 31, 2026 — TRON DAO, the community-governed DAO dedicated to accelerating the decentralization of the internet through blockchain technology and decentralized applications ( dApps), today announced expanded enterprise access to the TRON network through an integration with zerohash…

Published 2 weeks ago in
TRON Expands Enterprise Access to TRX and TRC-20 USDT

This content is provided by a sponsor. PRESS RELEASE. Geneva, Switzerland, March 31, 2026 — TRON DAO, the community-governed DAO dedicated to accelerating the decentralization of the internet through blockchain technology and decentralized applications ( dApps), today announced expanded enterprise access to the TRON network through an integration with zerohash…
Read More

Continue Reading