It's not just #Spectre and #Meltdown β€” dozens of similar CPU bugs have been discovered since 2018, and they're still being found:

en.wikipedia.org/wiki/Transien

The foundations of modern computing are ricketier than we like to imagine.

In the past, I've always bought a decent computer and held on to it for years and years: it saves money and it's the green thing you do. My main machine right now is seven years old and still going strong. Updating the OS and apps is no problem β€” I run #Linux. But #CPU bugs make me wonder whether I should replace computers more often for security reasons. I really hope not.

en.wikipedia.orgTransient execution CPU vulnerability - Wikipedia
Jul 5, 2026, 18:09 UTCen

Replying to @CppGuy@infosec.space

@CppGuy There is another route that may not be as simple as deciding to to it. But I thought I mention it because it works well for me: Redefine acceptable. I still like my Core2 Duo laptop. Everything is up to date and LUKS works fine, too. I'll probably switch to a second generation Core i5 soon. And I will love the speed and wonder how I managed to get by before for sure. But so far I'm still happy with it the old one.
Edit: I should mention that I already use the i5 sometimes when I need the extra RAM, e.g. for compiling some things. @millihertz

Replying to @steeph@queerchen.de

@steeph

Have I told you about my FiL's burglary? The thieves opened up his computer and removed the hard drive. That's all they took.

It wasn't until years later that it dawned on my why they'd done it. He used to run the mailing list for a local sailing club. That hard drive gave the criminals a list of affluent people and days when they were likely to be away from home. Of course, he ran consumer-grade #Windows and #MicrosoftWorks, so nothing was encrypted. I hate to think how much misery and loss that caused.

You can be a target without even realising it. I still don't think FiL knows to this day why he was burgled. And he still doesn't use #encryption. 😟

@millihertz

Replying to @CppGuy@infosec.space

@CppGuy
CPU vulnerabilities are better dealt with through hygiene ("know your code") than more complex CPUs.

Are you actually a target / have something worth stealing on your computer?

Are you actively working with malware?

Are you running nightlies rather than Stable?

If you answered "no", these 'flaws' are probably not going to affect you.

Right now, I'm more concerned with one of my SSD or hard drives failing, because it would currently cost ~4X to replace them.

I had a DDR stick develop a fault, and fortunately was able to replace it before the RAMpocalypse was beginning to crest. My two-years-out-of-support machine also didn't require bleeding-edge memory.

Replying to @CppGuy@infosec.space

@CppGuy it’s good news and bad news. The good news: CISC architecture CPUs run their own firmware/microcode to implement a lot of that complexity, and some vulnerabilities can be patched. The bad news: RISC architectures tend not to, thus any chip-level vulnerabilities need a hardware fix.
As an engineer, I tend to the view that the more complex a system or component is, the more failure modes it’s got. Give me RISC any day. To be even more specific, give me ARM 😎