top of page

News pOst

Pragmatism for Spectre and Meltdown

  • Jan 11, 2018
  • 1 min read

Disclaimer: This is general advice only and you must get your own advice for your particular situation and do your own risk assessment.

Spectre and Meltdown are obviously very real threats that could result in some very nasty outcomes. There are Wikipedia articles explaining both, along with many other articles on the web, but what can you do about it? Of course you should follow the advice of your various hardware and software vendors; particularly vendors of network devices, servers, and operating systems. However, you can also act now by updating your anti-virus/anti-malware protection. In fact, in many cases this is the first thing you should do; before applying other updates. This is because your anti-virus software could see other patches as an attack.

As of the 8th of January most major vendors of these products are supporting the fix for Microsoft OS [note that devices running Microsoft are just one group of devices affected]. Microsoft won't apply the fix unless it detects the presence of a registry key change. Antivirus vendors who already have an update available include major companies like Kaspersky, ESET, AVG, and Microsoft.

Microsoft sums up the approach for protecting Microsoft OS well in this article: https://support.microsoft.com/en-us/help/4073757/protect-your-windows-devices-against-spectre-meltdown

Importantly, they make the following note " Customers who only install the January 2018 Windows operating system security updates from Microsoft will not be fully protected against the vulnerabilities. Antivirus software updates should be installed first. Operating system and firmware updates should follow."

All major vendors are working furiously to address the Spectre and Meltdown vulnerabilities, so keep up-to-date with what your specific vendors are doing, and don't forget your antivirus!


 
 
 

Comments


Featured Posts
Recent Posts
Recent Posts
Search By Tags
Follow Us
  • Facebook Basic Square
  • Twitter Basic Square
  • Google+ Basic Square
optic.png

Optic Security Group (AUS) Head Office

34/203 Rooks Road 

Vermont, VIC 3133


Phone (Toll Free): 1300 72 98 72

Australia@opticsecuritygroup.com

  • Optic Security Group LinkedIn

Your security risks. Converged. Managed. Solved.

  • Optic Security Group LinkedIn
  • Optic Digital

Optic Security Group (Auckland)

14 Amelia Earhart Avenue

Airport Oaks, New Zealand, 2022

nz@opticsecuritygroup.com

Phone: +64 9 950 9990

After Hours: 0800 405 040

Optic Security Group (Wellington)

14 Kilbirnie Crescent, Kilbirnie

Wellington, New Zealand, 6022

csl.service@opticsecuritygroup.com

Phone: +64 4 385 6663 (24 hours)

Optic Digital

222 Lambton Quay

Wellington, New Zealand, 6011

sales@opticdigital.com

Phone: 0800 126 676

  • Optic Security Group LinkedIn
integrated_45001_14001_2015_9001_2015_HORIZONTAL.jpg

Optic Security Group acknowledge the Aboriginal and Torres Strait Islander peoples as First Peoples of Australia, and Māori as tangata whenua and Treaty of Waitangi partners in Aotearoa-New Zealand

© 2024 by Optic Security Group

Security Advisory

 

Be vigilant. There has been an increase in reports of false billing scams. If you have received an email with an invoice purporting to be from us, call your Optic Security Group contact person to confirm if it is legitimate. The Australian Competition and Consumer Commission’s National Anti-Scam Centre has reported a 25% increase in losses incurred by Australians from false billing scams in the July-September 2023 quarter compared to the same period last year. This is despite an overall 16% decrease in losses across scam categories.

 

Payment redirection scams are the most prevalent type of false billing scams. These involve scammers impersonating a business or its employees via email and requesting that money, which usually is owed to the legitimate business, is paid into a fraudulent account. For further information, visit the National Anti-Scam Centre website at https://www.scamwatch.gov.au/.   

 

Optic Security Group will never advise a change of bank details via email. If you have received an email with an invoice purporting to be from us, call your Optic Security Group contact to confirm if it is legitimate.

bottom of page