The tech world has been abuzz with news of a new set of critical exploits, dubbed Meltdown and Spectre, that, between them, impact nearly every modern processor in some manner. Following the disclosure of the exploits, Microsoft was quick to launch an emergency patch for Windows users and its cloud services. Now, Microsoft has explained how it has also worked to counter this class of attacks in Internet Explorer and Microsoft Edge.
The vulnerabilities, Microsoft says, can be exploited by techniques known as speculative execution side-channel attacks. Through these techniques, attackers can use JavaScript code in a browser to potentially read memory on a user's machine. To mitigate the attacks in its browsers, Microsoft is has made a couple of changes to both Edge and Internet Explorer:
Initially, we are removing support for SharedArrayBuffer from Microsoft Edge (originally introduced in the Windows 10 Fall Creators Update), and reducing the resolution of performance.now() in Microsoft Edge and Internet Explorer from 5 microseconds to 20 microseconds, with variable jitter of up to an additional 20 microseconds. These two changes substantially increase the difficulty of successfully inferring the content of the CPU cache from a browser process.
These fixes are part of security updates Microsoft has already issued in response to the exploits' disclosure. Microsoft says that it will continue to keep an eye on the impact of these vulnerabilities and launch more mitigations it deems necessary.
We may earn a commission for purchases using our links. Learn more.

Review: CalDigit's USB-C Pro Dock is a well-built and versatile tool
Most docking stations make you choose whether you want to connect with USB-A, USB-C, or Thunderbolt 3, but CalDigit's USB-C Pro Dock gives you the versatility of being compatible with all three. We tested it out to see if it's worth a buy.

Windows 10 build 19035 rolls out to Fast and Slow ring Insiders
Another new Windows 10 preview build is headed out to Insiders today. Both Slow and Fast ring Insiders can download build 19035, which brings another batch of fixes and improvements, but no new features.

Microsoft 365 for consumers could arrive in Spring 2020
Microsoft might release a subscription called "Microsoft 365 Life" in 2020 according to a new report.

Here's what you can use to block ads on Edge
Ad blockers are a wonderful thing. They do exactly what they're supposed to: block ads when browsing the web. Here's the best for Microsoft Edge.