Posted on 4.1.2018

Information regarding the Intel CPU vulnerabilities (Meltdown)

Intel CPU vulnerabilities uncovered

Yesterday, on January 3rd, 2018, Intel confirmed information regarding independent research findings that have uncovered security vulnerabilities in their processors. Further research has shown that this affects all modern processors, including models used by UpCloud and other cloud service providers. The CPU vulnerabilities may allow an attacker to escape the confinement of the Virtual Machine guest operating system’s memory and allow attackers to gather sensitive data from the underlying computing device.

Since a key component in virtualized environments is the ability to isolate access to the guest operating systems only, patching this vulnerability is of major importance. Our engineers have been actively investigating and researching the vulnerability since it was discovered.

We have been preparing to roll-out global security updates at an accelerated pace to our underlying cloud infrastructure environment in the coming days. The emergency maintenance window will be further communicated on our status page. (Please subscribe to the status page to receive notifications of future updates!)

These updates will, unfortunately, affect a portion of our users’ cloud servers in the manner of scheduled reboots, but we aim to resolve this as seamless and disruption-free as possible for all our users.

In the meantime, we recommend all users to often and regularly check for security updates to their cloud servers operating system and install any recommended updates. And should you have any further questions, please don’t hesitate to contact our support staff.

Further reading:

Jonathan Gabor

  1. […] to the Spectre and Meltdown vulnerabilities, users should also upgrade the operating systems on their cloud servers as the fixes become […]

Leave a Reply

Your email address will not be published. Required fields are marked *

ZombieLoad, RIDL, and Fallout – Microarchitectural Data Sampling vulnerabilities

Intel published this Tuesday on 14th of May a new class of vulnerabilities which are related to the already year-old speculative execution attacks. The newly-disclosed Microarchitectural Data Sampling (MDS) hardware vulnerabilities were found independently by multiple teams and are affecting most modern Intel CPUs. Microarchitectural Data Sampling (MDS) vulnerabilities Currently reported vulnerabilities called ZombieLoad, RIDL, […]

Announcements

Bigger Is Not Necessary Better: AWS vs. UpCloud

One of the most common questions our customers ask us is that how we can compete with the likes of Amazon Web Services (AWS) on price as they have economies of scale on their side.

Comparisons

The Seemingly Straightforward Issue of Cloud Server Pricing

We want to stay competitive with regards to the pricing of our services. It is one of our main values along redundancy, performance and privacy.

Comparisons

Back to top