Intel 預計下週揭露此波安全疑慮說明與更新文件

昨天由國外媒體曝光，關於 Linux 更新記錄中所夾帶的安全更新，直指 Intel 處理器架構導致有被駭的風險。但今日 Intel 針對這安全疑慮發出聲明稿。

文章大意是：這波新型的安全研究，發現到惡意軟體收集系統中的敏感資料，但無法修改、刪除與破壞。而最近的報導指出這問題只存在於 Intel 產品的 BUG 或缺陷，但這安全研究指出問題存在於各式處理器與系統供應商。Intel 已在著手修正這安全疑慮，且一般「電腦使用者」並不會造成其「性能」的影響，Intel 也預計於下週揭露這安全疑慮說明與相關的更新文件。

簡單來說，Intel 指出這波安全問題存在於各式處理器與作業系統，我們已在著手修正這問題，預計下週公布。但因為有媒體先揭露導致 Intel 不得不先提早發出聲明稿。一般電腦使用者別擔心，i 皇說沒事就沒事，而若是伺服器用戶則請與供應商聯繫獲得更進一步的消息。

soruce: newsroom.intel

Intel Responds to Security Research Findings
Intel and other technology companies have been made aware of new security research describing software analysis methods that, when used for malicious purposes, have the potential to improperly gather sensitive data from computing devices that are operating as designed. Intel believes these exploits do not have the potential to corrupt, modify or delete data.

Recent reports that these exploits are caused by a “bug” or a “flaw” and are unique to Intel products are incorrect. Based on the analysis to date, many types of computing devices — with many different vendors’ processors and operating systems — are susceptible to these exploits.

Intel is committed to product and customer security and is working closely with many other technology companies, including AMD, ARM Holdings and several operating system vendors, to develop an industry-wide approach to resolve this issue promptly and constructively. Intel has begun providing software and firmware updates to mitigate these exploits. Contrary to some reports, any performance impacts are workload-dependent, and, for the average computer user, should not be significant and will be mitigated over time.

Intel is committed to the industry best practice of responsible disclosure of potential security issues, which is why Intel and other vendors had planned to disclose this issue next week when more software and firmware updates will be available. However, Intel is making this statement today because of the current inaccurate media reports.

Check with your operating system vendor or system manufacturer and apply any available updates as soon as they are available. Following good security practices that protect against malware in general will also help protect against possible exploitation until updates can be applied.

Intel believes its products are the most secure in the world and that, with the support of its partners, the current solutions to this issue provide the best possible security for its customers.