Skip to main content
  1. Home
  2. Computing
  3. News

Intel warned Chinese tech firms of security flaws before telling U.S. government

Add as a preferred source on Google
top tech stories intel
Image used with permission by copyright holder

Intel warned certain customers, including Chinese tech firms, of the Spectre and Meltdown security flaws before notifying the United States government, the Wall Street Journal reportedThe flaws were first discovered by Google’s Project Zero team in June 2017. Intel held off on disclosing the issue while it worked on possible fixes. The company planned to make the announcement on January 9, but The Register broke the story on January 2. Intel then confirmed the news the next day.

Intel did notify several major tech firms in an effort to limit the potential damage and help work on fixes. A representative from the Department of Homeland Security said that the department did not learn of the flaws until the news was broken, however. Homeland Security is often notified of such issues before the public, and often acts as a source of guidance for how to address them.

Recommended Videos

In response to questions from Rep. Greg Walden (R-Ore.), Intel has since revealed the reason it didn’t disclose the flaws to government agencies and officials. It claimed that since there was “no indication that any of these vulnerabilities had been exploited by malicious actors,” it didn’t see the need, according to Reuters. It also revealed that it didn’t think the flaw would be capable of harming critical infrastructure because it didn’t believe it could affect industrial control systems.

Alphabet, a department of which discovered the Meltdown and Spectre flaws, had extended its typical 90-day grace period before revealing the bug to the public twice, to January 3 and then January 9.

The NSA was one of those agencies left in the dark about the problem. Rob Joyce, the White House’s top official on matters of cybersecurity, sent out a tweet saying that the NSA was unaware of the vulnerabilities.

Intel refused to name any of the companies it warned prior to the scheduled January 9 announcement, though several of the companies had been identified, including Microsoft, Amazon, Chinese computer manufacturer Lenovo, and Chinese cloud-computing firm Alibaba Group Holding. A representative from Intel said that it had planned to brief others, including the U.S. government, prior to the January 9 announcement, but the company said that it was unable to do so because the story was reported sooner than expected.

Recent correspondence to representatives from Microsoft stated that it did inform several antivirus makers about the flaws a number of weeks before the public reveal.

Jake Williams, a former employee of the National Security Agency and current president of Rendition Infosec LLC, told the Wall Street Journal that the Spectre and Meltdown vulnerabilities would have been of great interest to any intelligence organization.

Williams also warned that it is a “near certainty” that the Chinese government was aware of Spectre and Meltdown before the U.S., given that the Communist Party closely monitors such communications.

Representatives from the Chinese government did not comment on this story. In the past, however, the country’s foreign ministry has said that it is “resolutely opposed” to all forms of hacking.

Updated on February 23: Updated information on Intel revelations.

Eric Brackett
Former Digital Trends Contributor
Brave’s new Container feature is a lifesaver for anyone juggling multiple accounts
With this feature, you won't need to open three different browsers
Brave browser 3D logo

Brave has added Containers to its desktop browser, giving users a built-in way to keep different accounts, sessions, and browsing activity separate. The feature is available in Brave 1.92 for Windows, macOS, and Linux, and is rolling out in phases over the next few days.

Containers have been a highly requested feature, especially for users who regularly switch between work, personal, developer, or creator accounts. Once enabled, they let users open tabs in separate spaces where cookies and site storage are not shared outside that container.

Read more
Intel may bring back older desktop CPUs because DDR5 is getting too expensive
Older Intel Core CPUs from 10th to 14th Gen may get a second life
Intel Core i5-12400F box sitting in front of a gaming PC.

Intel may be preparing an unusual response to the ongoing memory crunch. According to Chinese outlet ITHome, citing ChannelGate, the company’s latest production plan includes restarting production of 13th-gen and 14th-gen Core processors.

The move is expected to increase supply across Intel’s 10th, 12th, 13th, and 14th Gen CPU families, especially in mainland China. For DIY PC builders, the timing is important. DDR5 memory prices have climbed sharply, making newer platforms harder to justify for anyone trying to build an affordable gaming PC.

Read more
Amazon wants to design in-house chips for Kindles, Fire TV, and Echo speakers
Apple did it first. Amazon is doing it now, starting with 40 million chips a year and a partner most people have never heard of.
Amazon Kindle Scribe dark mode featured image.

Apple's decision to design its own chips reshaped the consumer electronics industry. Amazon may be about to make the same call, just about two decades later.

Supply chain analyst Ming-Chi Kuo reports that Amazon is preparing to shift away from externally sourced processors for its consumer electronics lineup, marking what he describes as the company's first major processor procurement change in 20 years. The transition is expected to begin in 2027.

Read more