Andy Patrizio
Author Archives: Andy Patrizio
- Home → Author's archive:
Andy Patrizio
0
Configuration errors in Intel workstations being labeled a security hole
Security researchers at an antivirus company have documented another potentially serious security hole in an Intel product, this time in the mechanism for performing system updates. The good news, however, is that it is limited to desktops, is a configuration error, and does not appear to impact servers.Last June, researchers at F-Secure found a flaw in Intel’s Active Management Technology (AMT), a feature used to perform remote updates to advanced desktops using Intel vPro or workstation platforms using Core desktop chips and certain Xeon CPUs. Xeon is primarily a server processor but there are some low-end chips used in high-performance workstations, such as those used in a CAD environment.To read this article in full, please click here
0
Facebook and Amazon are causing a memory shortage
If you’ve noticed a considerable increase in the price of memory in the last few months, you can thank (or blame) Amazon, Facebook, and Google. The explosion in growth among hyperscale data centers is great if you are a supplier of components to these companies, not so great if you are buying those same components.According to DRAMeXchange, a division of market researcher TrendForce, the price of server DRAM will continue to rise as the supply remains tight in the first quarter of this year. The server DRAM market has seen tight supply since the third quarter of last year due to massive construction projects by the data center market, especially the hyperscale data centers, data centers that are bigger than a football field.To read this article in full, please click here
0
Facebook and Amazon are causing a memory shortage
If you’ve noticed a considerable increase in the price of memory in the last few months, you can thank (or blame) Amazon, Facebook, and Google. The explosion in growth among hyperscale data centers is great if you are a supplier of components to these companies, not so great if you are buying those same components.According to DRAMeXchange, a division of market researcher TrendForce, the price of server DRAM will continue to rise as the supply remains tight in the first quarter of this year. The server DRAM market has seen tight supply since the third quarter of last year due to massive construction projects by the data center market, especially the hyperscale data centers, data centers that are bigger than a football field.To read this article in full, please click here
0
Wi-Fi Alliance announces WPA3 to secure modern networks
The Consumer Electronics Show (CES) is an odd place to announce an enterprise product, but the Wi-Fi Alliance used the massive trade show — which has more or less taken over where Comdex left off — to announce a major upgrade to Wi-Fi security.The alliance announced the Wi-Fi Protected Access 3 (WPA3), a new standard of Wi-Fi security that greatly increases the security capabilities of the wireless standard. WPA2, which is the current standard in wireless security, has been around for 14 years, so this is way overdue.To read this article in full, please click here
0
Wi-Fi Alliance announces WPA3 to secure modern networks
The Consumer Electronics Show (CES) is an odd place to announce an enterprise product, but the Wi-Fi Alliance used the massive trade show — which has more or less taken over where Comdex left off — to announce a major upgrade to Wi-Fi security.The alliance announced the Wi-Fi Protected Access 3 (WPA3), a new standard of Wi-Fi security that greatly increases the security capabilities of the wireless standard. WPA2, which is the current standard in wireless security, has been around for 14 years, so this is way overdue.To read this article in full, please click here
0
Wi-Fi Alliance announces WPA3 to secure modern networks
The Consumer Electronics Show (CES) is an odd place to announce an enterprise product, but the Wi-Fi Alliance used the massive trade show — which has more or less taken over where Comdex left off — to announce a major upgrade to Wi-Fi security.The alliance announced the Wi-Fi Protected Access 3 (WPA3), a new standard of Wi-Fi security that greatly increases the security capabilities of the wireless standard. WPA2, which is the current standard in wireless security, has been around for 14 years, so this is way overdue.To read this article in full, please click here
0
Impact of Intel and Micron ending their NAND partnership is negligible
Intel and Micron earlier this week announced an end to their long-term joint development partnership for 3D NAND memory. What does this mean for buyers of Intel SSDs? Turns out, not much — if anything.On the surface, it looks like a blow to Intel — which makes chips, not memory — but in fact, it has that base covered. Intel has a 300-mm fab in Dalian, China, that it began to convert to produce 3D NAND flash memory in 2015. With Dalian online, Intel simply didn’t need Micron any more.Intel and Micron will still partner on other things This is hardly a split between the two. The companies will complete development of their third-generation of 3D NAND flash technology, which will be delivered toward the end of this year.To read this article in full, please click here
0
Dell EMC patches vulnerabilities in its data protection products
Researchers have discovered several vulnerabilities in Dell EMC's data protection products that would allow an attacker to gain full control of the system. Fortunately, a fix is available now for download.The vulnerabilities, three in all, were disclosed on Jan. 4 by the security technology and services firm Digital Defense. They effect Dell EMC's Avamar Server, NetWorker Virtual Edition, and Integrated Data Protection Appliance, which use a common component called Avamar Installation Manager. This is the problematic app.In addition to this, a related problem in the VMware vSphere Data Protection backup product has also been uncovered, but it has already been patched.To read this article in full, please click here
0
Dell EMC patches vulnerabilities in its data protection products
Researchers have discovered several vulnerabilities in Dell EMC's data protection products that would allow an attacker to gain full control of the system. Fortunately, a fix is available now for download.The vulnerabilities, three in all, were disclosed on Jan. 4 by the security technology and services firm Digital Defense. They effect Dell EMC's Avamar Server, NetWorker Virtual Edition, and Integrated Data Protection Appliance, which use a common component called Avamar Installation Manager. This is the problematic app.In addition to this, a related problem in the VMware vSphere Data Protection backup product has also been uncovered, but it has already been patched.To read this article in full, please click here
0
Dell EMC patches vulnerabilities in its data protection products
Researchers have discovered several vulnerabilities in Dell EMC's data protection products that would allow an attacker to gain full control of the system. Fortunately, a fix is available now for download.The vulnerabilities, three in all, were disclosed on Jan. 4 by the security technology and services firm Digital Defense. They effect Dell EMC's Avamar Server, NetWorker Virtual Edition, and Integrated Data Protection Appliance, which use a common component called Avamar Installation Manager. This is the problematic app.In addition to this, a related problem in the VMware vSphere Data Protection backup product has also been uncovered, but it has already been patched.To read this article in full, please click here
0
Meltdown and Spectre: How much are ARM and AMD exposed?
As the chip vendors wrestle to get their arms around the Meltdown and Spectre vulnerabilities, we’re slowly determining the exposure of AMD and ARM to the exploit. Intel, unfortunately, is totally vulnerable. With AMD and ARM, though, it gets complicated.First, let’s go over the Spectre exploit, which is a second class of attacks similar to Meltdown, the one we all know. Like Meltdown, Spectre exploits speculative execution in order to root out information from a CPU’s cache. Spectre is different because of how it runs.Also read: Meltdown and Spectre exploits: Cutting through the FUD While Meltdown is based on a specific implementation of speculative execution, Spectre exploits a risk to speculative execution that requires more work to exploit but is also considered harder to mitigate. Because it’s more obscure and arcane, it’s not as well understood. That’s why Meltdown is considered the bigger risk.To read this article in full, please click here
0
Meltdown and Spectre: How much are ARM and AMD exposed?
As the chip vendors wrestle to get their arms around the Meltdown and Spectre vulnerabilities, we’re slowly determining the exposure of AMD and ARM to the exploit. Intel, unfortunately, is totally vulnerable. With AMD and ARM, though, it gets complicated.First, let’s go over the Spectre exploit, which is a second class of attacks similar to Meltdown, the one we all know. Like Meltdown, Spectre exploits speculative execution in order to root out information from a CPU’s cache. Spectre is different because of how it runs.Also read: Meltdown and Spectre exploits: Cutting through the FUD While Meltdown is based on a specific implementation of speculative execution, Spectre exploits a risk to speculative execution that requires more work to exploit but is also considered harder to mitigate. Because it’s more obscure and arcane, it’s not as well understood. That’s why Meltdown is considered the bigger risk.To read this article in full, please click here
0
Meltdown and Spectre: How much are ARM and AMD exposed?
As the chip vendors wrestle to get their arms around the Meltdown and Spectre vulnerabilities, we’re slowly determining the exposure of AMD and ARM to the exploit. Intel, unfortunately, is totally vulnerable. With AMD and ARM, though, it gets complicated.First, let’s go over the Spectre exploit, which is a second class of attacks similar to Meltdown, the one we all know. Like Meltdown, Spectre exploits speculative execution in order to root out information from a CPU’s cache. Spectre is different because of how it runs.Also read: Meltdown and Spectre exploits: Cutting through the FUD While Meltdown is based on a specific implementation of speculative execution, Spectre exploits a risk to speculative execution that requires more work to exploit but is also considered harder to mitigate. Because it’s more obscure and arcane, it’s not as well understood. That’s why Meltdown is considered the bigger risk.To read this article in full, please click here
0
Is single tenancy the fix for the Meltdown flaw?
As the fallout continues over the Meltdown and Spectre exploits in Intel and now some ARM processors, the issue of what to do about it is coming front and center. Clearly there is no fixing a silicon problem; Intel will have to adjust future chips to deal with it. So, for now, we have the software fixes.Linux distros are rolling out fixes, and Microsoft has issue patches for Windows — although the threat to consumers is minimal. Apple has also issued a macOS fix.To read this article in full, please click here
0
Is single tenancy the fix for the Meltdown flaw?
As the fallout continues over the Meltdown and Spectre exploits in Intel and now some ARM processors, the issue of what to do about it is coming front and center. Clearly there is no fixing a silicon problem; Intel will have to adjust future chips to deal with it. So, for now, we have the software fixes.Linux distros are rolling out fixes, and Microsoft has issue patches for Windows — although the threat to consumers is minimal. Apple has also issued a macOS fix.To read this article in full, please click here
0
Is single tenancy the fix for the Meltdown flaw?
As the fallout continues over the Meltdown and Spectre exploits in Intel and now some ARM processors, the issue of what to do about it is coming front and center. Clearly there is no fixing a silicon problem; Intel will have to adjust future chips to deal with it. So, for now, we have the software fixes.Linux distros are rolling out fixes, and Microsoft has issue patches for Windows — although the threat to consumers is minimal. Apple has also issued a macOS fix.To read this article in full, please click here
0
Intel’s processor flaw is a virtualization nightmare
2018 is off to a very bad start for Intel after the disclosure of a flaw deep in the design of its processors. And while the company has publicly said the issue won’t affect consumers, they aren’t the ones who need to be worried.The issue is found in how Intel processors work with page tables for handling virtual memory. It is believed that an exploit would be able to observe the content of privileged memory by exploiting a technique called speculative execution.Speculative execution exploit Speculative execution is a part of a methodology called out-of-order execution (OOE), where basically the CPU makes an educated guess on what will happen next based on the data it has. It’s designed to speed up the CPU rather than burn up CPU cycles working its way through a process. It’s all meant to make the CPU as efficient as possible.To read this article in full, please click here
0
Intel’s processor flaw is a virtualization nightmare
2018 is off to a very bad start for Intel after the disclosure of a flaw deep in the design of its processors, dubbed Meltdown. And while the company has publicly said the issue won’t affect consumers, they aren’t the ones who need to be worried.The issue is found in how Intel processors work with page tables for handling virtual memory. It is believed that an exploit would be able to observe the content of privileged memory by exploiting a technique called speculative execution.Speculative execution exploit Speculative execution is a part of a methodology called out-of-order execution (OOE), where basically the CPU makes an educated guess on what will happen next based on the data it has. It’s designed to speed up the CPU rather than burn up CPU cycles working its way through a process. It’s all meant to make the CPU as efficient as possible.To read this article in full, please click here
0
Tech predictions for 2018: Data center trends to watch for
Yes, it's that time of the year again. Another year gone by, which means another batch of predictions for the future.As is always the case, I own up to my misfires by leading off with the predictions I made last year and admitting what came true and what didn't. So, let's get that out of the way.My 2017 predictions: some hits, some misses Apple continues to lose its cool. — I think I got this one right. iPhone 8/X sales are not what they were expected to be, the list of complaints is growing and more and more people say the company has fallen behind. Hell, even I switched to a Galaxy after frustration with the poor quality of iOS 11. Cloud adoption will slow. — Oh, boy, did I blow that one. Some tech manufacturing will return to the U.S. — I don’t know about tech, although I did see Microsoft has moved Surface manufacturing to China. But overall, manufacturing has gained 138,000 jobs in 2017 vs. a loss of 34,000 in 2016. And we all know who will take credit for that. China will lose its luster as a manufacturing hub. — Clearly that has Continue reading
0
Tech predictions for 2018: Data center trends to watch for
Yes, it's that time of the year again. Another year gone by, which means another batch of predictions for the future.As is always the case, I own up to my misfires by leading off with the predictions I made last year and admitting what came true and what didn't. So, let's get that out of the way.My 2017 predictions: some hits, some misses Apple continues to lose its cool. — I think I got this one right. iPhone 8/X sales are not what they were expected to be, the list of complaints is growing and more and more people say the company has fallen behind. Hell, even I switched to a Galaxy after frustration with the poor quality of iOS 11. Cloud adoption will slow. — Oh, boy, did I blow that one. Some tech manufacturing will return to the U.S. — I don’t know about tech, although I did see Microsoft has moved Surface manufacturing to China. But overall, manufacturing has gained 138,000 jobs in 2017 vs. a loss of 34,000 in 2016. And we all know who will take credit for that. China will lose its luster as a manufacturing hub. — Clearly that has Continue reading