Out of the Box Solutions Blog

ALERT: Meltdown/Spectre Vulnerability Can Affect Your Business’ Critical Infrastructure

ALERT: Meltdown/Spectre Vulnerability Can Affect Your Business’ Critical Infrastructure

Intel has had publicity problems in the past, but now things are getting critical. An issue was reported that could potentially cause the processing power of their chips to diminish. What are being known as the Meltdown or Spectre vulnerabilities, have businesses scrambling around looking for ways to protect their data and infrastructure from what is seemingly an oversight that affects most of today’s CPU architectures; namely those that rely on virtual memory.

This means that a bug has been discovered that alters the way that different programs communicate with the CPU. Typically, a CPU has two modes: kernel and user. “Kernel” provides users access to the computer and “user” which is typically thought of as the safe mode. The vulnerability that the user who goes by the moniker Python Sweetness discovered was one that allowed users working in user mode, to access kernel mode. This presents a number of potential problems, including creating a gateway for malicious action to be taken against your network.

Fortunately for users a patch has been developed that won’t seriously hinder system performance, a fear shared by some security professionals. In fact, the fix will only cause a minimal dip of around 2 percent. Initially, there were concerns that systems would come out of this much slower as entire processes would effectively be altered between user mode and kernel mode.

For PCs with Windows 10 installed and an antivirus that supports the patch, the fix should already be in place. However, to confirm this, go to Settings > Update & Security to see if there are any updates waiting to be installed. If not, check your update history for Security Update for Windows (KB4056892) or check with your antivirus provider to find out when it will be supported, the patch will not install until it sees that the antivirus has been updated to a version that the vendor verifies supports this patch.

Two days later, an update for Android devices was pushed out to users. Most mobile platforms running Android, should now be protected. To be sure, check regularly. Google Chrome is scheduled to be updated on January 23. In the meantime, consider asking your IT administrator to help you achieve Site Isolation to assist in keeping your network secure.

Other devices (like NAS devices, smart appliances, networking equipment, media equipment, etc.) may also be at risk, as they are using similar hardware. It’s really important for business owners to have their entire infrastructure reviewed and audited.

If you don’t have a comprehensive IT administrator, chances are you are on your own. By having a company like Out of the Box Solutions looking out for you, you will be able to benefit from having conscientious IT professionals helping you keep your computing infrastructure, network, and data secure, no matter what is thrown at it.
To find out how Out of the Box Solutions can help your organization with network security, call us at 800-750-4OBS (4627).

Tip of the Week: Five Ways to Use Your Android Pho...
Improperly Disposing of a Hard Drive Can Threaten ...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Friday, August 17 2018

Captcha Image

Mobile? Grab this Article!

Qr Code

Tag Cloud

Tip of the Week Security Best Practices Technology Business Computing Tech Term Privacy Network Security Cybersecurity Hardware Smartphones Malware Internet Managed IT services Microsoft Ransomware Android Communications Communication Backup Saving Money Social Media Data Business Management Network Email Employer-Employee Relationship Passwords Business Intelligence Small Business Blockchain IT Support Wi-Fi Cloud Applications Mobile Devices Cost Management Compliance Business Tech Terms Managed IT Service Save Money Outsourced IT Wireless Collaboration Remote Computing Hosted Solutions Automation Patch Management Data Backup Google Computer Productivity Artificial Intelligence Virtual Assistant BDR Analytics Wireless Charging Cortana Innovation Information Efficiency Data recovery Internet of Things Virtualization Windows 10 Networking Browser Gmail VoIp VPN Software User Tips Data Management IT Services Computers Managing Stress Tablet Bandwidth Ink Antivirus Users IT budget Business Technology Router Document Management Telecommute Conferencing Twitter Proactive IT Database Voice over Internet Protocol Hard Drive Streaming Media Holiday Physical Security Managed IT Services Environment Lead Generation Network Attached Storage Government Excel PowerPoint Staff Battery Websites Internet Explorer Paperless Office Smartphone Office Inventory Remote Monitoring and Management Unified Communications Telecommuting Cybercrime Processors Backup and Disaster Recovery Downloads eCommerce Laptop Tip of the week e-waste Reporting G Suite Password Knowledge Office 365 Sports Cloud Computing Safety Phishing Threat Digital Data loss Content Filtering Data Protection Microsoft Office RAM Tactics Vulnerability Machine Learning Comparison Hard Drives Amazon Trends Online Shopping User Tip disposal Medical IT Bring Your Own Device Telephony IT Management Data Breach Printing Spam Mobile Security Analysis Microsoft Teams Workers Spyware Specifications SSD Workplace Tips A.I. Marketing Value SaaS Hybrid Cloud WannaCry Server Management Hackers Voice over IP Connectivity Big Data Server Sales Dongle Paper Edge Virus Operating System Managed Service Company Culture Settings Millennials Maintenance HP Facebook Plug-In Movies GDPR Cables HIPAA Technology Tips Apps Regulation Storage Dark Web Alert Error Gadgets