Happy New Year … Not!
With the New Year comes a new class of malicious attack that can impact IT systems. This time, the attack is hardware based, affecting mostly Intel based systems, and to some extent, AMD systems as well.
Here is a list of resources that highlight what it is all about and how to mitigate against this new threat. In the words of Microsoft, “Don’t panic.”
- What is Meltdown and Spectre? https://meltdownattack.com/
- Summary paper and Mitigation Steps for Organisations
https://www.docdroid.net/3Dw8WFD/meltdown-and-spectre-mitigation-for-organisations.pdf - Updated AntiVirus vendor compatibility chart
https://docs.google.com/spreadsheets/d/184wcDt9I9TUNFFbsAVLpzAtckQxYiuirADzf3cL42FQ/htmlview?usp=sharing&sle=true - Summary of Microsoft information in one place
http://www.essential.exchange/2018/01/04/windows-speculative-execution-client-server-patches-mitigations-detection-summary/ - GRC InSpectre. Test and enable protection against Spectre and Meltdown. https://www.grc.com/inspectre.htm