It’s been a wild week in the security world. Two major vulnerabilities were announced and sent the world scrambling to fix it. Meltdown and Spectre are vulnerabilities that impact the hardware level, specifically the brains of a computer, the processor. These are particularly scary that it doesn’t matter how secure the installed operating system and applications are, a little bit of code could get the processor to get the software to leak secrets and data without any knowledge from the software. Meltdown is easily patched but Spectre is more complicated and patching may not be effective. In fact, CERT released a recommendation that if you want to be 100% protected from these the only solution is to replace the hardware. They have since walked back from that recommendation but it’s still a powerful message.

Meltdown and Spectre have one thing going for it that’s a good thing to all of us. These are not remotely exploitable. That means that the computers need to have malware on the machine to exploit these processor vulnerabilities. That means for us protecting ourselves is maintaining good Internet security practices. Be careful of emails you get, websites you visit, software you install and attachments you receive. The same practices you follow to keep ransomware off your computers, same exactly practices will help protect you from these. That and patch early and often.

 

Shifting gears back to the podcast, here are the episodes for the week ending 1/12/18 –







Here are the episodes for next week –

Episode 152
How To Help Your Security Program To Be Accepted
Jan. 15, 2018
Episode 153
IoT Strikes Again – VTech Pays Up For Children’s Privacy Violations
Jan. 16, 2018
Episode 154
Five Simple Ways To Keep You Protected From Hackers
Jan. 17, 2018
Episode 155
Why Your Should Conduct Phishing Campaigns Against Your Employees
Jan. 18, 2018
Episode 156
Tools, Tips and Tricks – Exploit Database
Jan. 19, 2018

Be aware, be safe.

End of line.

 

Binary Blogger has spent 20 years in the Information Security space currently with Magenic providing security solutions and evangelism to clients. From early web application programming, system administration, senior management to enterprise consulting I provide practical security analysis and solutions to help companies and individuals figure out HOW to be secure everyday.

Subscribe
Facebook Page
Follow Me On Twitter
contactme@binaryblogger.com