RIP Apple

RIP Apple

The Kind of Tired That Sleep Won’t Fix Shirt $21.68

Black Rifle Cuck Company, Conservative Humor Shirt $21.68

The Kind of Tired That Sleep Won’t Fix Shirt $21.68

  1. 4 weeks ago
    Anonymous

    https://gofetch.fail/
    https://arstechnica.com/security/2024/03/hackers-can-extract-secret-encryption-keys-from-apples-mac-chips/
    https://appleinsider.com/articles/24/03/21/apple-silicon-vulnerability-leaks-encryption-keys-and-cant-be-patched-easily
    https://www.cyberkendra.com/2024/03/gofetch-flaw-exposes-cryptographic-key.html
    https://www.tomshardware.com/pc-components/cpus/new-chip-flaw-hits-apple-silicon-and-steals-cryptographic-keys-from-system-cache-gofetch-vulnerability-attacks-apple-m1-m2-m3-processors-cant-be-fixed-in-hardware

    • 4 weeks ago
      Anonymous

      >Researchers have discovered a massive security vulnerability inside Apple M1, M2, and M3 silicon. The vulnerability, dubbed 'GoFetch,' steals cryptographic information from the CPU cache enabling an attacking program to build a cryptographic key from stolen data, allowing the application to access sensitive encrypted data. Ars Technica first reported on the security flaw.
      > all the m chips are absolutely fricked
      LMAO iTODDLERS BTFO AGAIN

      • 4 weeks ago
        Anonymous

        basted
        >RMSh

      • 4 weeks ago
        Anonymous

        [...]
        > noooo not my fruit company and memeshit1!1
        ABSOLUTELY BTFO FOR ALL TIME. only on IQfy will you experience the greatest apple marketing team defending a literal backdoor to steal keys. the absolute state of iBlack folk.

        [...]
        everyone knows you're only 1 step away from doing flips and shit off the top off your Indian office block/slum. make sure to get sandeep to record it for us.

        based Satania btfoing pajeets

      • 4 weeks ago
        Anonymous

        >exploit requires running malware for hours

        Poorgays coping again

      • 4 weeks ago
        Anonymous

        >Apple M1, M2, and M3 silicon
        heh... nothing personnel... but I have the M1 Pro!

    • 4 weeks ago
      Anonymous

      >gofetch
      >Just a readme in the git
      Github should restrict creating or publishing repost until a first fricking real commit besides a readme is made

      • 4 weeks ago
        Anonymous

        Nice theme. What is it?

        • 4 weeks ago
          Anonymous

          Wide Github for Firefox
          https://addons.mozilla.org/en-US/firefox/addon/widegithub

        • 4 weeks ago
          Anonymous

          Wide Github for Firefox
          https://addons.mozilla.org/en-US/firefox/addon/widegithub

          theme is Light high contrast in the github settings

    • 4 weeks ago
      Anonymous

      >This work was partially supported by (...) the Defense Advanced Research Projects Agency (DARPA) under contract numbers W912CG-23-C-0022 and HR00112390029
      Cool, even the feds want Tim cuck and iToddlers to die.

    • 4 weeks ago
      Anonymous

      >only one white person
      *yawn* who cares
      also why do they always try and make le funny name that has literally nothing to do with the actual attack vector? what's wrong with a cve? is this about achieving recognition with normies?

      • 4 weeks ago
        Anonymous

        >is this about achieving recognitiion with normies
        yes, they are extremely egotistic people

        t. work with daniel genkin

  2. 4 weeks ago
    Anonymous

    when will toddlers learn

  3. 4 weeks ago
    Anonymous

    they will go running crying screaming crawling and shitting themselves right back to intel in no time

    • 4 weeks ago
      Anonymous

      Like they are any better.

    • 4 weeks ago
      Anonymous

      Intels new chips are impacted too moron

    • 4 weeks ago
      Anonymous

      >implying these aren't just among the normal government issued backdoors

  4. 4 weeks ago
    Anonymous

    so, Linux on Apple M iPads when?

  5. 4 weeks ago
    Anonymous

    [...]

    > low iq monkey doesn't know how to use a computer
    > thinks magic tricks provided by israelites is the answer
    > could just block via md5 hash as it's always the same images
    > no, i will cry like a Black person on IQfy
    no amount of memeshit tech peddled by israelites will ever give you any intelligence or talent.

    • 4 weeks ago
      Anonymous

      >could just block via md5 hash as it's always the same images
      impressively moronic

  6. 4 weeks ago
    Anonymous

    Also impacts Intel's Raptor Lake, and “ The vulnerability can be exploited when the targeted cryptographic operation and the malicious application with normal user system privileges run on the same CPU”

    It’s a nothing burger

    • 4 weeks ago
      Anonymous

      >It’s a nothing burger
      leaking your keys isn't a nothing burger, coping ijeet.

      • 4 weeks ago
        Anonymous

        Also impacts Intel's Raptor Lake, and “ The vulnerability can be exploited when the targeted cryptographic operation and the malicious application with normal user system privileges run on the same CPU”

        It’s a nothing burger

        >running malware on your computer causes your data to be stolen
        I hate Crapple but this is a nothing burger just like all the spectre meltdown and other bullshit CPU "bugs" they've "found". There's a reason no one exploits this shit in the wild. All the skiddies just go for a basic b***h crypto locker that doesn't even require admin permissions.

        • 4 weeks ago
          Anonymous

          [...]

          > noooo not my fruit company and memeshit1!1
          ABSOLUTELY BTFO FOR ALL TIME. only on IQfy will you experience the greatest apple marketing team defending a literal backdoor to steal keys. the absolute state of iBlack folk.

        • 4 weeks ago
          Anonymous

          Spectre and Meltdown were terrible and we’re still dealing with the outcome. CPU manufacturers have been cheating to make performance numbers go up for years and there needs to be push back. CPUs from 3-4 generations ago are plenty fast, we need to get the security right now

          • 4 weeks ago
            Anonymous

            Running malware causes your data to get stolen, actual news at 11

          • 4 weeks ago
            Anonymous

            >terrible
            >zero attacks in the wild
            They are terrible for servers, they are meaningless for end users.

          • 4 weeks ago
            Anonymous

            >CPUs from 3-4 generations ago are plenty fast, we need to get the security right now
            Nah, I don't care about security. Make it faster.

          • 4 weeks ago
            Anonymous

            Hacker Black folk ruined technology, death to criminal scum
            Hacking should be a death sentence

        • 4 weeks ago
          Anonymous

          >Nothing burger like meltdown and spectre
          so its going to lower CPU performance, and make AMD top CPU choice in Servers and home computers?

        • 4 weeks ago
          Anonymous

          >Run hosting provider
          >spectre then meltdown released
          >suddenly you have 35% less capacity in order to provide a "secure" environment for your customers
          well frick my ass

      • 4 weeks ago
        Anonymous

        Ironic
        You will never own an IPhone pro max poorgay

    • 4 weeks ago
      Anonymous

      Good morning sir

    • 4 weeks ago
      Anonymous

      It does not effect raptor lake and if it did this is just whataboutism.

    • 4 weeks ago
      Anonymous

      > Finally, we found that Intel's 13th Gen Raptor Lake microarchitecture also features a DMP. However, its activation criteria are more restrictive, making it robust to our attacks.
      Lying homosexual. Intel likely only uses this when the provenance of the pointer is extremely clear.

  7. 4 weeks ago
    Anonymous

    >itoddles

    • 4 weeks ago
      Anonymous

      That seed came from my balls after long hours of baby making unprotected veganal sex with her

  8. 4 weeks ago
    Anonymous

    You gays sure got told

    • 4 weeks ago
      Anonymous

      I miss that site, don't know how it is still up without new content, did the guy got ninja'd by apple but paid 10 years hosting in advance or something?

  9. 4 weeks ago
    Anonymous

    thats why you run linux
    and use
    mitigations=off

    • 4 weeks ago
      Anonymous

      is there a difference for compilation times? what about windows, can they be disabled and how much does that improve gaming?

      • 4 weeks ago
        Anonymous

        >what about windows, can they be disabled
        nope
        not as easily as that one line in linux
        for windows, you gotta download some closed source app can which partially disables some patches

        • 4 weeks ago
          Anonymous

          pffftt hahaha oh no no no....... winKEKs are more cucked than i thought

      • 4 weeks ago
        Anonymous

        >gaming
        lmao, unless your game is doing cryptographic stuff on the cpu, the performance probably won't change.

  10. 4 weeks ago
    Anonymous

    [...]

    everyone knows you're only 1 step away from doing flips and shit off the top off your Indian office block/slum. make sure to get sandeep to record it for us.

  11. 4 weeks ago
    Anonymous

    [...]

    >seething at anime girls
    You do realize you're on an anime website, right?
    You can simply stop coming to this website.
    AI won't save you, nothing can.

    • 4 weeks ago
      Anonymous

      Unlike you degenerates, some of us aren't pedos and don't deserve the woodchipper

    • 4 weeks ago
      Anonymous

      Anime is for castrated manchildren.

    • 4 weeks ago
      Anonymous

      [...]
      > low iq monkey doesn't know how to use a computer
      > thinks magic tricks provided by israelites is the answer
      > could just block via md5 hash as it's always the same images
      > no, i will cry like a Black person on IQfy
      no amount of memeshit tech peddled by israelites will ever give you any intelligence or talent.

      Stop getting mad about having to dilate and focus on the topic. This apple security is looking pretty bad as many experts are saying it can't truly be fixed without totally new silicon and that new design will cripple its performance.

    • 4 weeks ago
      Anonymous

      [...]
      >come to IQfy
      >waaah why is there japanese stuff
      have a nice day

      technology board

      • 4 weeks ago
        Anonymous

        The technology board on IQfy

  12. 4 weeks ago
    Anonymous

    This issue probably stems from using an obsolete language like C to write code for modern processors. How many more billions is this prehistoric language going to cost us?

    • 4 weeks ago
      Anonymous

      moron, you think CPUs are written in C? The absolute state of IQfy

      • 4 weeks ago
        Anonymous

        I meant the programs that run on the processor. You see, little homosexual, modern processors have these things called multiple execution units and cache, which are completely obscure to C, which thinks that the CPU executes code sequentially in a single thread, and doesn't know shit about memory hierarchy.

        • 4 weeks ago
          Anonymous

          Typical rusty nail. You did not read a word of that article. It is a HARDWARE vulnerability, meaning bad design in the physical silicon. The DMP units in the M1 will prefetch anything that looks like a pointer, and since you're dealing with random data that is unavoidable in any programming language.

          • 4 weeks ago
            Anonymous

            LOL, I wrote a bunch of ackshually true but irrelevant statements just to troll.

          • 4 weeks ago
            Anonymous

            >i wAS JuSt prETEnDiNG!1!1

    • 4 weeks ago
      Anonymous

      have a nice day troon, you will never be a cyber professional

    • 4 weeks ago
      Anonymous

      It's Applel so it's actually written in Objective-C

      • 4 weeks ago
        Anonymous

        its "safe" Swift. Apple have been shilling it for 10 years already

  13. 4 weeks ago
    Anonymous

    this is not a good/responsible way to disclose security vulnerabilities. there's a certain etiquette in the field, mostly by necessity.

    • 4 weeks ago
      Anonymous
      • 4 weeks ago
        Anonymous

        ok thanks. i see. in this case it's either that they couldn't agree or it's a nothing burger that apple didn't even respond to.

        • 4 weeks ago
          Anonymous

          >this amount of mental copenastics.
          They didn't say shit because it can't be fixed. Read up on this more before coping.

    • 4 weeks ago
      Anonymous

      Responsible way to disclose is to disclose to everyone. Even disclosing to the manufacturer only is going to leak it to the state actor glowies, in case they weren't aware of it beforehand.

      • 4 weeks ago
        Anonymous

        This project was openly funded by glowies anyway lol

        • 4 weeks ago
          Anonymous

          Not even malice, just incompetence.

  14. 4 weeks ago
    Anonymous

    Literally the only question that matters is can this be exploited remotely or not.
    Nobody Apple's meme CPU for servers anyway so unless you can get owned by just browsing the web this isn't relevant for 99% of the people

  15. 4 weeks ago
    Anonymous

    what the frick do i do with this pos now?
    no it doesn't get b***hes wet and im a 8/10 chad btw

    • 4 weeks ago
      Anonymous

      This will never be exploited in the wild just like Spectre, Meltdown and all the other meme hardware vulnerabilities that are only really an issue for servers and high priority targets

    • 4 weeks ago
      baritone

      >3000$ computer
      >8GB

      • 4 weeks ago
        Anonymous

        >2023
        >3k$ hardware
        >8gb ram
        ???????????????????????

        >8gb

        holy shit, the absolute abysmal state of applegays ahahahaha

        This is just Apple optimizing profits from their userbase:
        > Insist 8GB = 16 GB due to some specious argument about speed rather than capacity: https://appleinsider.com/articles/23/11/08/apple-insists-8gb-unified-memory-equals-16gb-regular-ram
        > Set a large swap space on the SSD to compensate.
        > Profit when users burn out their non-replaceable SSDs due to the above: https://itnerd.blog/2021/03/12/apple-m1-mac-ssd-swap-issues-should-you-be-concerned/

        • 4 weeks ago
          Anonymous

          Holy frick Apple users are more chucked than I thought

    • 4 weeks ago
      Anonymous

      Your brain is already hacked, bro. They're in your head reading your thoughts.

    • 4 weeks ago
      Anonymous

      >2023
      >3k$ hardware
      >8gb ram
      ???????????????????????

    • 4 weeks ago
      Anonymous

      >8gb

      holy shit, the absolute abysmal state of applegays ahahahaha

    • 4 weeks ago
      Anonymous

      >3000$ computer
      >8GB

      >2023
      >3k$ hardware
      >8gb ram
      ???????????????????????

      >8gb

      holy shit, the absolute abysmal state of applegays ahahahaha

      If you can't afford to upgrade the ram, don't buy it.

      • 4 weeks ago
        Anonymous

        >this guy paid $800 for $50 in ram chips
        jesus christ we must truly live in hell when seemingly smart people are still massively moronic

        • 4 weeks ago
          Anonymous

          stupid people will do anything to avoid looking poor
          especially on IQfy

          [...]
          [...]
          This is just Apple optimizing profits from their userbase:
          > Insist 8GB = 16 GB due to some specious argument about speed rather than capacity: https://appleinsider.com/articles/23/11/08/apple-insists-8gb-unified-memory-equals-16gb-regular-ram
          > Set a large swap space on the SSD to compensate.
          > Profit when users burn out their non-replaceable SSDs due to the above: https://itnerd.blog/2021/03/12/apple-m1-mac-ssd-swap-issues-should-you-be-concerned/

          the fact that its unified makes even less sense to have less ram, basically an xbox one at that point

      • 4 weeks ago
        Anonymous

        Imagine being proud of being fricked in the ass by Apple

      • 4 weeks ago
        Anonymous

        >air
        >24 gb
        why the frick would you do that?

        • 4 weeks ago
          Anonymous

          me too, say something nice

          • 4 weeks ago
            Anonymous

            what do you use it for and how is the performance?

          • 4 weeks ago
            Anonymous

            nothing that a tablet couldn’t accomplish. just web, video and word documents stuff. performance and battery is great just don’t throw a heavy task at it and not expect it to thermal to thermal throttle in 2mins

            [...]
            >these idiots bought the 30 WATT tinfoil-cooled laptop
            >these idiots even spent $1000 on RAM upgrades for what is realistically a Chromebook with an apple logo

            true, I only bought it because a guy at work was selling it for $1,300 and he paid $2,400 since it’s a 2tb model and it was only 8 months old

            if you get a MacBook M series get a 16gb ram and 512gb storage. I only use 12-13 ram throwing everything I use at it

          • 4 weeks ago
            Anonymous

            >if you get a MacBook M series get a 16gb ram and 512gb storage
            best computer I've ever used. I used to be apple hater. Just don't buy an iphone and fall into the 'walled garden' meme like me. mac is goated though

          • 4 weeks ago
            Anonymous

            Do you need to have an Apple account to use it? Like would I have functionalities gimped because my laptop is not connected to their services? That's the only thing blocking me from getting one.

          • 4 weeks ago
            Anonymous

            I’m 90% sure you do, but if you don’t then you cant download apps thru the App Store (doesn’t matter you can download direct from source), you won’t be able to use findmy app or iTunes
            so yeah, you sorta need it. you might not for a macbook (probably do) but you definitely do with a iphone or iPad

          • 4 weeks ago
            Anonymous

            Ok, thanks. Sad, though.

      • 4 weeks ago
        Anonymous

        me too, say something nice

        >these idiots bought the 30 WATT tinfoil-cooled laptop
        >these idiots even spent $1000 on RAM upgrades for what is realistically a Chromebook with an apple logo

      • 4 weeks ago
        Anonymous

        Even in non-US, a Crucial 32 GiB memory kit for my laptop, cost me an $125.
        Imagine, being proud of being a whale and getting milked.

      • 4 weeks ago
        Anonymous

        Daddy Tim, please take me from behind. I love you soo much.

    • 4 weeks ago
      Anonymous

      >8GiB
      You paid it on installments didn't you anon

    • 4 weeks ago
      Anonymous

      >8GB
      That's what the cheapest chink android cellphones and shitty Chromebooks come with these days. For how any years has it been the base spec on macbooks?

      • 4 weeks ago
        Anonymous

        macOS doesn't hog RAM tho

        • 4 weeks ago
          Anonymous

          It just swap-rapes your SSD to death instead

    • 4 weeks ago
      Anonymous
    • 4 weeks ago
      Anonymous

      >what the frick do i do with this pos now?
      is it in warranty? run a 1 hour video render to get a new one then sell that shit
      >no it doesn't get b***hes wet and im a 8/10 chad btw
      HAHAHAHAHAHAHAHA

      • 4 weeks ago
        Anonymous

        remember
        >CPU reaches 110c in seconds at full load
        >the keyboard heats up to 50c not long after
        >PBT plastic begins to warp at 60c

        • 4 weeks ago
          Anonymous

          50c is less than 60c

      • 4 weeks ago
        Anonymous

        I was hoping for the N I G E and R keys to be worn out.

    • 4 weeks ago
      Anonymous

      >8gb memory
      My dude, I got 32gb and have maxed it out a couple of times.
      It was a piece of shit before the vulnerability was discovered.

  16. 4 weeks ago
    Anonymous

    should I still get the new 13 inch Macbook Air?

  17. 4 weeks ago
    Anonymous

    I never trusted any kind of "secure enclaves" whether theyre called TPM, Titan or whatever. Look up Chris Tarnovsky's speeches on YouTube.

  18. 4 weeks ago
    Anonymous

    just in time to launch the M4

  19. 4 weeks ago
    Anonymous

    >This work was partially supported by the Air Force Office of Scientific Research (AFOSR) under award number FA9550-20-1-0425; the Defense Advanced Research Projects Agency (DARPA) under contract numbers W912CG-23-C-0022 and HR00112390029; the National Science Foundation (NSF) under grant numbers 1954712, 1954521, 2154183, 2153388, and 1942888; the Alfred P. Sloan Research Fellowship; and gifts from Intel, Qualcomm, and Cisco.

    glowBlack folk are attacking apple

    • 4 weeks ago
      Anonymous

      weird, what did tim cook do?

    • 4 weeks ago
      Anonymous

      wtf I love glowBlack folk now

    • 4 weeks ago
      Anonymous

      This plus the lawsuit, Apple users are being attacked by the glowBlack folk

    • 4 weeks ago
      Anonymous

      wtf I love apple now

    • 4 weeks ago
      Anonymous

      Did they partially support it once it was found so they can make it look less like backdoor?
      I will never trust the glowies

    • 4 weeks ago
      Anonymous

      for once they did something useful

  20. 4 weeks ago
    Anonymous

    Typical side channel CPU attack (cache, branch prediction, etc).
    >hurr it's apple itoddler btfo'd
    No CPU is immune to these. Spectre was never even fully mitigated. Full mitigation would turn your fancy CPU into a MOS 6502. Yes, that's including Intel. They even mention Intel in the articles. Know what else was never actually fully mitigated? Row hammer. It's more difficult now, but not impossible.

    At this rate we're going to need computers with separate SoC's for the OS and for userland. Perhaps multiple SoC's for userland so that a critical app can get one entirely to itself. But only some OS functions can run completely separately, so each SoC would need it's own mini-OS. It's a cluster frick.

    • 4 weeks ago
      Anonymous

      >It's a cluster frick
      Security Black folk should understand that security should only apply between computers. There's no real way to effectively "sandbox" apps running on the same computer from each other and they should stop fricking trying because all they're doing is making everything slower.
      STOP running malware on your computer and you WON'T have any of these problems.

      • 4 weeks ago
        Anonymous

        You are downloading and executing untrusted code on your computer just by posting your comments on IQfy dot org.

        • 4 weeks ago
          Anonymous

          >untrusted
          Except it isn't.
          If I were visiting live-sex-porno-3d-cams-free.ru and clicking on everything I see, then it would be untrusted.

          • 4 weeks ago
            Anonymous

            Implying
            >IQfy
            >trust
            Do nigg*rs, really?

          • 4 weeks ago
            Anonymous

            If you thought IQfy is going to run malicious code on your computer then you wouldn't be here.

          • 4 weeks ago
            Anonymous

            I didn't post anything suspicious and my OS is patched.
            The probability to fell under glowies is low. You probably are one since shill for "no security".

          • 4 weeks ago
            Anonymous

            >gb's of code on a modern computer
            >before even counting websites
            >it's all trusted bro
            >just trust it lol
            Do you want to know how easy it is to get a cert and sign a Windows app? No, you really don't.

          • 4 weeks ago
            Anonymous

            >onions non-answer
            get a life schizo
            if it's so easy to randomly teleport "malware" onto my computer then why don't you hurry up and do it to prove you're right
            i'm running windows 7 so according to security schizos it's as easy as just clicking a button and now my computer will be full of malware and you can steal my bank passwords.

          • 4 weeks ago
            Anonymous

            It wasn't a non-answer you troon. You have no fricking idea what's running on your machine. Code to take advantage of an exploit like this would probably slip by even full app store scans.

          • 4 weeks ago
            Anonymous

            >You have no fricking idea what's running on your machine
            Ah yes, no answer so you just spread some FUD. "But there *might* be a virus, you just can't see it."
            Reminds me of the same kind of schizos during covid. "You have covid, but you're just asymptomatic!" KLek

          • 4 weeks ago
            Anonymous

            >gives answer
            >HURR NO ANSWER
            Are you moronic? How many GBs of code are on your machine? You couldn't possibly review, understand, and certify as safe even 1/1,000th of it. Worse, as the other anon pointed out, just visiting a web site means you are running untrusted/unknown code. Every web site. Not just "muh pr0n sites!" If it were possible to only run "trusted" code on a machine then we wouldn't even need kernel/user modes and memory protection. Nor would web browsers need to sandbox their own windows/threads.

            Apps from something like Apple's app store are machine scanned for known exploits. But the keyword there is "known." If someone knew about this hardware flaw 6 months ago, they could have gotten an app published in the app store that exploited it. Hell, maybe it can be exploited from JavaScript.

            This all started when you insisted that the code on your machine is trusted because "hurr i'm not on .ru porn site."

            >untrusted
            Except it isn't.
            If I were visiting live-sex-porno-3d-cams-free.ru and clicking on everything I see, then it would be untrusted.

            You are unbelievably ignorant and naive if you think that.

          • 4 weeks ago
            Anonymous

            >How many GBs of code are on your machine? You couldn't possibly review, understand, and certify as safe even 1/1,000th of it.
            I don't need to review or "certify" any of the code. All I need to do is trust the developer and publisher.
            >Worse, as the other anon pointed out, just visiting a web site means you are running untrusted/unknown code. Every web site
            As I said, trust the web site. If you don't trust the web site, don't visit it.
            >If it were possible to only run "trusted" code on a machine then we wouldn't even need kernel/user modes and memory protection
            You still need all that shit because programs can accidentally corrupt memory and crash. The separation of kernel and user mode exists only to prevent buggy apps from crashing your whole computer like in windows 95.
            >You are unbelievably ignorant and naive if you think that
            Meds now

          • 4 weeks ago
            Anonymous

            >I don't need to review or "certify" any of the code. All I need to do is trust the developer and publisher.
            You don't know the developers/publishers for all the code on your machine, much less all the code you encounter while browsing the web. Protip: they don't even know all the developers/publishers with code in the stacks they depend on. Especially with today's meme frameworks, NuGet pkgs, etc.

            >As I said, trust the web site. If you don't trust the web site, don't visit it.
            As I said, you are unbelievably naive.
            https://qz.com/646467/how-one-programmer-broke-the-internet-by-deleting-a-tiny-piece-of-code
            That's just one example. What if that programmer had decided to change his code to take advantage of an exploit? How do you know that hasn't happened in some library that one of your apps or favorite web sites depends upon? You don't. You can't. The developers/publishers themselves can't.

            >>If it were possible to only run "trusted" code on a machine then we wouldn't even need kernel/user modes and memory protection
            >You still need all that shit because programs can accidentally corrupt memory and crash.
            Nope, not the programs on my machine, they're trusted! Good developers, they never make mistakes like that. I know, I trust them!

          • 4 weeks ago
            Anonymous

            >Especially with today's meme frameworks, NuGet pkgs
            Good thing I didn't install any Electron shitware on my computer then.

          • 4 weeks ago
            Anonymous

            NTA. you're missing the point, moron. redditors and zoomers spamming updoot memes because they cannot define what an attack vector is, doesn't change the fact the web and modern electronshit applications break a cardinal sin of home computing - don't run shit you do not trust. worse, the web and these self-updooting remote-code-executing web engines couldn't give less of a frick about the constant streaming of various type foreign resources, including literal scripts that with enough autism could lead to side channel memory exploitation.

          • 4 weeks ago
            Anonymous

            If you thought IQfy is going to run malicious code on your computer then you wouldn't be here.

            >onions non-answer
            get a life schizo
            if it's so easy to randomly teleport "malware" onto my computer then why don't you hurry up and do it to prove you're right
            i'm running windows 7 so according to security schizos it's as easy as just clicking a button and now my computer will be full of malware and you can steal my bank passwords.

            >How many GBs of code are on your machine? You couldn't possibly review, understand, and certify as safe even 1/1,000th of it.
            I don't need to review or "certify" any of the code. All I need to do is trust the developer and publisher.
            >Worse, as the other anon pointed out, just visiting a web site means you are running untrusted/unknown code. Every web site
            As I said, trust the web site. If you don't trust the web site, don't visit it.
            >If it were possible to only run "trusted" code on a machine then we wouldn't even need kernel/user modes and memory protection
            You still need all that shit because programs can accidentally corrupt memory and crash. The separation of kernel and user mode exists only to prevent buggy apps from crashing your whole computer like in windows 95.
            >You are unbelievably ignorant and naive if you think that
            Meds now

            >Especially with today's meme frameworks, NuGet pkgs
            Good thing I didn't install any Electron shitware on my computer then.

            look at this dumbass and laugh. he thinks he can trust random websites. ever looked at the SSL cert or the whois for the IP behind this website? it says "cloudflare", right there. IQfy doesn't even control what you are downloading when your browser makes an HTTP request to boards.IQfy. and then your ISPs has a local cache servers for that stuff, so even that could get hacked and modified by random attackers:
            https://www.cloudflare.com/en-gb/partners/peering-portal/
            here you can read about HTTP desync attacks for cache poisoning:
            https://portswigger.net/research/http-desync-attacks-request-smuggling-reborn#:~:text=its%20HSTS%20cache.-,Web%20Cache%20Poisoning,-A%20few%20hours

            you are a fricking moron if you think this shit could not happen to you. LMAOing @ your ignorance.

          • 4 weeks ago
            Anonymous

            >you are a fricking moron if you think this shit could not happen to you. LMAOing @ your ignorance.
            So, tell me how many times any of your schizo theories have happened to actual people.
            Scammers have an easier time just calling up random numbers of old people and asking for gift cards.

  21. 4 weeks ago
    Anonymous

    what exactly is the issue here? i'm not a pederast so i don't encrypt my drives. how is the average joe affected by this?

    • 4 weeks ago
      Anonymous

      Just browsing and edit some documents?
      Not your problem

      Important data from clients and yours?
      Concerns

      You're a VIP, journalist from a shithole or politician?
      You might be fricked

    • 4 weeks ago
      Anonymous

      >i don't encrypt my drives
      you are moronic. there are people who go to pawn shops to get stolen laptops just for the data.

  22. 4 weeks ago
    Anonymous

    [...]

    I'll just use Nightshade on my anime pictures.

  23. 4 weeks ago
    Anonymous

    [...]

    Hello newfriend; welcome to IQfy dot org.
    I do hope you enjoy your time here, we all strive to keep it as fun and entertaining as possible.
    If you stick around for just 15 short years you may even get to be called an "oldfriend" someday (:
    Cheers,
    oldfriend

    • 4 weeks ago
      Anonymous

      >those colors
      Thanks doc

      • 4 weeks ago
        Anonymous

        are those colorblind friendly or something?

        • 4 weeks ago
          Anonymous

          >he doesn't know about Dr. Piccolo and his daily dose

  24. 4 weeks ago
    Anonymous

    how likely is it that someone out in the wild physically removes my macbook's plates and accesses the SoC directly while im not looking?

  25. 4 weeks ago
    Anonymous

    Head:
    >UNPATCHABLE
    Subtext:
    >it can actually be patched, with performance penalties
    I hate journalism
    I also dislike Apple
    But what I hate most, are the apple fanboys. Those should just take a dive in a shitfilled ditch

    • 4 weeks ago
      Anonymous

      Software mitigations are not patches.

    • 4 weeks ago
      Anonymous

      I like my shitfilled ditch.

  26. 4 weeks ago
    Anonymous

    first Intel now their own chips. are we sure apples specs weren't behind meltdown?

  27. 4 weeks ago
    Anonymous

    >vulnerability

  28. 4 weeks ago
    Anonymous

    This is also affect the new snapdragon chip. They basically hired the same developers and designer to make it.
    Prove me wrong.

    • 4 weeks ago
      Anonymous

      ARM makes the designs I believe “in coordination” with clients. But from what I’ve understand, ARM has a big say in designs.
      >pajeets strike again

      • 4 weeks ago
        Anonymous

        https://www.tomsguide.com/news/ex-apple-engineers-are-helping-qualcomm-build-new-chip-to-rival-m1
        fricking moron

        • 4 weeks ago
          Anonymous

          He was right, seethe more pajeet

          • 4 weeks ago
            Anonymous

            right about what Black person

  29. 4 weeks ago
    Anonymous

    >MacBooks are cheap!
    >+8 GB ram $200
    >+256GB storage $200
    >Look how fa— ACKK

    • 4 weeks ago
      Anonymous

      >vulnerability

      Woodchipper

    • 4 weeks ago
      Anonymous

      Still in the closet, eh?

  30. 4 weeks ago
    Anonymous

    >secure
    >by
    >design

    • 4 weeks ago
      Anonymous

      more like itodds are insecure by design

  31. 4 weeks ago
    Anonymous

    If CPU manufacturers could stop riddling their products with vulnerabilities to fudge benchmarks that'd be swell

  32. 4 weeks ago
    Anonymous

    thank god nobody is using those $3000 laptops for any sensitive work

  33. 4 weeks ago
    Anonymous

    why does apple live rent free on IQfys head? you claim to hate apple, yet you cant miss a chance to talk about it. countless threads about apple, so annoying.

    also lmao @ this news? because unless you morons have been sleeping under a rock, you cant trust ANY cpu in the market. period. how many vulns were found in amd and intel cpus in the last 2 decades? lost count.
    not to mention the backdoora built into all cpus in the market.
    dont trust any cpu guys, you should know that by now.

    • 4 weeks ago
      Anonymous

      Checked and it's mostly kids aping their fathers' biases so they can feel grownup. Adult technologists have machines running windows, osx, a couple Linux distros and an os/2 box they keep for nostalgia.
      That or they're such infants this is all really about phones.

  34. 4 weeks ago
    Anonymous

    [...]

    DUUUUUDE I'm waiting for the same thing!!! I can't stand that art style

  35. 4 weeks ago
    Anonymous

    Can this be used to extract L1 widevine keys? There's no way in hell widevine is going to blacklist applel, and if it can't be patched it means applel created the perfect device to rip drm content.

    • 4 weeks ago
      Anonymous

      PirateBros, did we just win?

      • 4 weeks ago
        Anonymous

        I believe we just did. It also kills the ~~*web integrity*~~ bullshit they're trying to push because now everything is a stock macbook running the latest version of macos

        Can this be used to extract L1 widevine keys? There's no way in hell widevine is going to blacklist applel, and if it can't be patched it means applel created the perfect device to rip drm content.

        If the keys are stored in the processor somewhere it sounds like it. Best part is they can't even switch to another vendor because it's a problem inherent to the hardware. The jeetworks at applel have unironically done more to save computing freedom than every one that isn't named richard stallman

        • 4 weeks ago
          Anonymous

          Where were you when apple saved piracy?

    • 4 weeks ago
      Anonymous

      >apple chads win even when they lose

  36. 4 weeks ago
    Anonymous

    oof

  37. 4 weeks ago
    Anonymous

    iTODDLERS BTFO

    • 4 weeks ago
      Anonymous

      bassed

    • 4 weeks ago
      Anonymous

      rent free

  38. 4 weeks ago
    Anonymous

    so can I keep downloading pieners on my iphone or what

    • 4 weeks ago
      Anonymous

      It's fricking over m chips not a chips

  39. 4 weeks ago
    Anonymous

    This will have literally zero practical implications.

    • 4 weeks ago
      Anonymous

      see

      Can this be used to extract L1 widevine keys? There's no way in hell widevine is going to blacklist applel, and if it can't be patched it means applel created the perfect device to rip drm content.

      >exploit requires running malware for hours

      Poorgays coping again

      >hours
      in some cases it's minutes. see pic related.
      also, you clearly don't understand the context in which this attack could be used.

  40. 4 weeks ago
    Anonymous

    [...]

    >come to IQfy
    >waaah why is there japanese stuff
    have a nice day

  41. 4 weeks ago
    Anonymous

    SATANICHIA BROS WHERE U AT

  42. 4 weeks ago
    Anonymous

    >apple leakes vulnerability for M chip
    >presenting the new and even safer N chip right after, we urge you to upgrade 🙂
    >all itoddlers rush to buy it to feel safe
    >apple stock up 500%
    Its like covid for itoddlers.

  43. 4 weeks ago
    Anonymous

    Everything on the Internet has a backdoor into it.

  44. 4 weeks ago
    Anonymous

    I love and hate Apple.
    I really love that they're getting the frick sued out of them, by the US government.
    It's about time.

  45. 4 weeks ago
    Anonymous

    >In order to use this unpatchable vulnerability in one of their attacks, a hacker would first need to trick an unsuspecting Mac user into installing a malicious app on their computer.
    Apple toddlers got tricked into buying an overpriced underpowered piece of shit. They're fricked.

    • 4 weeks ago
      Anonymous

      [...]

  46. 4 weeks ago
    Anonymous

    I wonder if these "flaws" are by design, in order to allow US spy agencies easier access any machine? And these flaws are "unfixable", so there is permanent access unlike software flaws that can be patched.

    • 4 weeks ago
      Anonymous

      In this case, while possible, it should be noted that certain US agencies (Air Force & Darpa) were funding the research team that found the vulnerabilities. Granted, it is also possible that a different US agency forced Apple into having this issue and their are some interservice rivalries going on, or a simple case of one hand not knowing what the other is doing.

      • 4 weeks ago
        Anonymous

        Or maybe they published an unintended vulnerability to distract from one of their own backdoors. Either way, I would not be surprised if a backdoor has been found and used by criminals.

  47. 4 weeks ago
    Anonymous

    BTFO

  48. 4 weeks ago
    Anonymous

    [...]

    based

    [...]
    > low iq monkey doesn't know how to use a computer
    > thinks magic tricks provided by israelites is the answer
    > could just block via md5 hash as it's always the same images
    > no, i will cry like a Black person on IQfy
    no amount of memeshit tech peddled by israelites will ever give you any intelligence or talent.

    [...]
    >seething at anime girls
    You do realize you're on an anime website, right?
    You can simply stop coming to this website.
    AI won't save you, nothing can.

    [...]
    >come to IQfy
    >waaah why is there japanese stuff
    have a nice day

    pretty sure if you rounded up all the people posting anime to IQfy you could solve pedophilia overnight

  49. 4 weeks ago
    Anonymous

    [...]

    I've been asking for the same thing for months, but instead of anime it's non whites and trannoids. The last would be hard, but dark skin should be easy to filter. There's even a Chrome extension that blocks haram stuff, so it is possible, but there's no programmers on IQfy

  50. 4 weeks ago
    Anonymous

    itoddlers wtf

  51. 4 weeks ago
    Anonymous

    security Black folk should get the rope, they are always fricking things up so the common folk can't get any work done.

    • 4 weeks ago
      Anonymous

      Yeah we should be free to design and print more swiss-cheese CPUs
      t. coping hardware designer

  52. 4 weeks ago
    Anonymous

    Can someone give me the ELI5 considering I'm just an itoddler?

    • 4 weeks ago
      Anonymous

      Apple M cpus have 8 cores split into efficienty cores (4) and some other name (4)
      There exists a possible side channel attack that when you are doing crypto work and the work is done on the same set of 4 cores, that crypto data can be extracted.
      This attack is possible due to how the cpu is designed--so it is only fixable by software updates aka mitigations that will slow overall cpu speed while doing crypto stuff.
      Not a nothing burger, as it will require an update from Apple to address, but IDK how much of a performance hit you will take or notice.

      • 4 weeks ago
        Anonymous

        Thanks, can't wait for Tim Apple's sales pitch for this improvement lol

  53. 4 weeks ago
    Anonymous

    You may remember Intel justing a bunch of side-channel related attacks called Spectre, Spectrev2, and their overall performance penalty was in the double digits supposedly.
    Not the end of the world for me, but if you run a giant server cluster of Intels you can imagine it being a shitty day when suddenly each cpu loses some chunk of its processing power overnight.

  54. 4 weeks ago
    Anonymous

    can someone explain to me, an iToddler what does this mean for my m1 mac book air? :3

    • 4 weeks ago
      Anonymous

      dont install malware i guess
      in reality it means very little because nobody uses apple silicon for servers

    • 4 weeks ago
      Anonymous

      it means tim cook will ass frick you in the next 10 minutes

    • 4 weeks ago
      Anonymous

      kuina cute

    • 4 weeks ago
      Anonymous

      Donut run pirated games in parallel with any security relevant app for more than 50 minutes
      40 to be extra sure

    • 4 weeks ago
      Anonymous

      If you install the patch you will have your M1/2/3 be 30% slower (I'm just guessing the number. Could be unnoticeable) and in return you get the peace of mind that probably no one is exfiltrating your data using that vulnerability.
      Or don't install it and just be cool with it knowing that you aren't a moron that juggles 100 different third parties programs all over the place and you'll be just fine with the same performance.
      Just keep an eye for the performance penalty when they release the fix and make up your mind.

  55. 4 weeks ago
    Anonymous

    >linked lists optimization
    C is the root of all evil.

  56. 4 weeks ago
    Anonymous
  57. 4 weeks ago
    Anonymous

    iTODDLERS BTFO

  58. 4 weeks ago
    Anonymous

    iTODDLERS UNPATCHABLY BTFO

    • 4 weeks ago
      Anonymous

      >In order to use this unpatchable vulnerability in one of their attacks, a hacker would first need to trick an unsuspecting Mac user into installing a malicious app on their computer.
      Apple toddlers got tricked into buying an overpriced underpowered piece of shit. They're fricked.

      iTODDLERS BTFO

  59. 4 weeks ago
    Anonymous

    Louis was right.

  60. 4 weeks ago
    Anonymous

    >greedy c**t cache architecture leaks information via side channel
    wow, this has, like, never ever happened before! meltdown spectre spectrev2.
    I refuse to believe the lack of a secure cache architecture ISNT due to spooks. Someone HAS to have made a secure cache architecture by now, right? Spooks are forcing them to add side channels.

  61. 4 weeks ago
    Anonymous

    >found one of the CIA backdoors
    oh no, now they only got 3 more

  62. 4 weeks ago
    Anonymous

    Is this gofetch shit related to why Apple broke POSIX behavior of segmentation fault handling?
    Apple really is the most incompetent vendor out there.

  63. 4 weeks ago
    Anonymous

    The hilarious thing is this has been a theoretically known problem since ~3 to 4 years ago and Apple still fricked it up.

  64. 4 weeks ago
    Anonymous

    >links to lkml threads are considered spam
    Jannies, have a nice day. Worthless homosexuals.

  65. 4 weeks ago
    Anonymous

    Why does the US DoD attack American companies? What good comes from this research?

    • 4 weeks ago
      Anonymous

      >Intel and Qualcomm funded research destroys Apple Silicon
      Absolutely based.

    • 4 weeks ago
      Anonymous

      yes lets just wait for someone else to find a zero day great idea

    • 4 weeks ago
      Anonymous

      Because they deserve it. Apple knowingly shat out this abortion, left it undocumented in older hardware and then coped and seethed about it being never guaranteed to begin with and you should have been a good goy and used Apple Cryptography instead.

      https://developer.apple.com/documentation/xcode/writing-arm64-code-for-apple-platforms#Enable-DIT-for-constant-time-cryptographic-operations

Your email address will not be published. Required fields are marked *