Meltdown and Spectre exploit critical vulnerabilities in modern processors. These hardware bugs allow programs to steal data which is currently processed on the computer. While programs are typically not permitted to read data from other programs, a malicious program can exploit Meltdown and Spectre to get hold of secrets stored in the memory of other running programs. This might include your passwords stored in a password manager or browser, your personal photos, emails, instant messages and even business-critical documents.
Meltdown and Spectre work on personal computers, mobile devices, and in the cloud. Depending on the cloud provider's infrastructure, it might be possible to steal data from other customers.
Despite heavy changes to the Azure and AWS infrastructure, no disruption or noticeable degradation of service has been observed or raised by customers.
At this time, the residual risk on our solutions generated by these vulnerabilities is low with no known active exploit and a vastly patched infrastructure.
For AWS, although a specific status request has been made, only the general bulletin from Amazon is available for now which you can read here: https://aws.amazon.com/security/security-bulletins/AWS-2018-013/
© 2019 Quest Software Inc. ALL RIGHTS RESERVED. Feedback 使用条款 隐私