Connectria is aware of and monitoring the activities surrounding the Meltdown and Spectre vulnerabilities. Our senior engineers are actively working with all of our vendors and customers to identify the correct method of mitigation that does not inject negative result and will take appropriate actions.
As a global managed hosting and cloud service provider, protecting our customer assets is always a top priority at Connectria. As updates are available, we will communicate these to customers along with recommendations and possible impacts to the environments.
What are the Meltdown and Spectre Vulnerabilities?
On January 3, 2018, The National Cybersecurity and Communications Integration Center (NCCIC) was made aware of security vulnerabilities (Meltdown and Spectre) that affect some computer processors. Security researchers found vulnerabilities in chips made by Intel and other companies that, if exploited, could potentially leave sensitive data exposed.
Both Spectre and Meltdown take advantage of the ability to extract information from instructions that have executed on a CPU using the CPU cache as a side-channel. Exploitation of these vulnerabilities could potentially allow an attacker to obtain access to sensitive information.
These processor vulnerabilities are impacting computers, servers, cloud services, and smartphones. More specifically, all modern processors capable of keeping many instructions in flight are potentially vulnerable. Security experts are urging users to applying software updates to all operating systems, browsers and devices.