MacOS High Sierra 10.13.2 Supplemental Update

They have also patched iOS.  This helps mitigate the recent Spectre flaw that affects Safari.

Everyone Releasing Patches for Meltdown CPU Flaw

Apple, Microsoft, Linux Distributions all have released patches for Meltdown.  Browser Opera, Chrome, Safari, Edge will also get patches for Spectre.

New CPU Flaws Get Cool Names: Meltdown and Spectre

These flaws affect most processors made in the last 20 years.  

Intel CPU Flaw Could Impact Performance

A flaw in Intel CPUs made during the last 10 years could cause a 5-30% performance impact when mitigated by software solutions added to the Windows and Linux kernels.  The kernel patches are required to increase security when accessing memory.  There’s NDAs and speculation, we should know more after Patch Tuesday of this month.

Older iPhones CPU Throttled Due To Battery Concerns

Apple has admitted to slowing the CPU of older phones to prevent unexpected shutdowns due to battery fatigue.

“Process Doppelgänging” vs Windows

A new technique to evade AntiVirus detection, based upon NTFS transactions, has been demonstrated at Black Hat Europe.

1.4 Billion Passwords Found on Dark Web

An IT Security company found 1.4 billion plain text (not encrypted) account passwords on the dark web (tor network), the largest password dump found.

Apple Releases MacOS 10.13.2

Apple has released 10.13.2 fixing some issues including the recent security problems.

Chrome 63 Gets Site Isolation

The newest version of Chrome now can use site isolation and render each site in its own process.  This at a cost of 10-20% increased memory usage.

Apple Releases Updated Fix for “IAMROOT” High Sierra Flaw

Apple’s first fix for the “root login w/o a password” flaw in High Sierra has gotten a second update.  Make sure to patch your OS X via the App Store.