Close
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity

    Microsoft Investigating Problematic Meltdown Patch on AMD PCs

    By
    Pedro Hernandez
    -
    January 8, 2018
    Share
    Facebook
    Twitter
    Linkedin
      Meltdown Spectre

      Meltdown and Spectre are already causing trouble, even if there’s no evidence that cyber-attackers have weaponized the critical processor flaws.

      On Jan. 3, the Google Project Zero team of security researchers published its findings on the two CPU vulnerabilities that collectively affect most modern processors from Intel, Advanced Micro Devices (AMD) and Arm. Microsoft was quick to issue emergency patches, but some hardware operating system combinations are proving to be problematic for some users who followed the urgent recommendations of cyber-security experts and updated their systems before Meltdown and Spectre attacks surface and cause serious data breaches.

      “These vulnerabilities allow malware to read the computer’s memory, effectively giving access to sensitive user data such as passwords, cryptographic keys, banking information, and so on,” Frederik Mennes, senior manager of market and security strategy at VASCO Data Security’s Competence Center, told eWEEK in email remarks. “Many servers hosting cloud services are equally vulnerable to these flaws. Users should patch the firmware and software of their devices as soon as possible, and should also be extra cautious when downloading software from unknown or suspicious sources.”

      It’s prudent advice any time a major vulnerability is discovered and fixed, but on occasion, the remedy can be worse than the disease.

      In recent days, many PC owners who applied the early Windows 7 “monthly rollup” patch (KB4056894) that addresses the Meltdown and Spectre vulnerabilities took to Microsoft’s online support forums, Reddit and other technology discussion sites to vent their frustrations with the update.

      Several users reported that after applying the patch on Windows 7 systems with AMD chips—Athlon 64 CPUs in particular—they were greeted with a Blue Screen of Death (BSOD), rendering their PCs inoperable. The Windows 10 flavor of the patch (KB4056892) is also causing bootup problems for some users with AMD-based systems.

      Their complaints aren’t falling on deaf ears. “We are aware of the reports and are investigating,” a Microsoft spokesperson told eWEEK in response to an email inquiry.

      Intriguingly, in AMD’s response to Google Project Zero’s findings, the chip maker downplayed the effects of the Meltdown and Spectre flaws on its processors. Between software patches and the differences in AMD’s microarchitectures compared to its rivals, the company’s chips are largely immune to the so-called “speculative execution” vulnerabilities, AMD claimed.

      Meanwhile, IT vendors are taking stock of what flaws like Meltdown and Spectre mean for an industry that is becoming increasingly reliant on cloud servers.

      Google recently assured its cloud customers that it had already patched its systems, which may not have been apparent to users expecting to have to reboot their instances after the changes were applied. “Google Cloud is architected in a manner that enables us to update the environment while providing operational continuity for our customers,” wrote Google executives in a Jan. 5 blog post. “Via live migration, we can patch our infrastructure without requiring customers to reboot their instances.”

      AWS (Amazon Web Services) patched many of its cloud services and issued guidance on how customers can protect themselves. A Microsoft spokesperson informed eWEEK on Jan. 4 that the software giant was working on deploying mitigations to its Azure cloud services portfolio.

      Pedro Hernandez
      Pedro Hernandez is a contributor to eWEEK and the IT Business Edge Network, the network for technology professionals. Previously, he served as a managing editor for the Internet.com network of IT-related websites and as the Green IT curator for GigaOM Pro.

      MOST POPULAR ARTICLES

      Big Data and Analytics

      Alteryx’s Suresh Vittal on the Democratization of...

      James Maguire - May 31, 2022 0
      I spoke with Suresh Vittal, Chief Product Officer at Alteryx, about the industry mega-shift toward making data analytics tools accessible to a company’s complete...
      Read more
      Cybersecurity

      Visa’s Michael Jabbara on Cybersecurity and Digital...

      James Maguire - May 17, 2022 0
      I spoke with Michael Jabbara, VP and Global Head of Fraud Services at Visa, about the cybersecurity technology used to ensure the safe transfer...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Applications

      Cisco’s Thimaya Subaiya on Customer Experience in...

      James Maguire - May 10, 2022 0
      I spoke with Thimaya Subaiya, SVP and GM of Global Customer Experience at Cisco, about the factors that create good customer experience – and...
      Read more
      Big Data and Analytics

      GoodData CEO Roman Stanek on Business Intelligence...

      James Maguire - May 4, 2022 0
      I spoke with Roman Stanek, CEO of GoodData, about business intelligence, data as a service, and the frustration that many executives have with data...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×