Two new vulnerabilities (Meltdown and Spectre) were introduced that are in the architecture of processors in nearly every computer and other devices using CPUs. Code to exploit these vulnerabilities in some cases is now publicly available and we can expect that more capable/modular code will be released soon. During this webcast, we’ll walk through how the vulnerabilities work, what is being done to patch them, the performance impacts of patching, and probable exploit scenarios for the vulnerabilities.
Enterprise Action Plan -https://www.renditioninfosec.com/2018/01/meltdown-and-sceptre-enterprise-action-plan/
Participants will learn:
1. Understand how the Meltdown and Spectre attacks work and how they differ from one another.
2. Understand how this impacts devices that cannot be patched.
3. Understand performance impact of the patches and possible exploit cases.
Jake Williams is a SANS analyst, certified SANS instructor, course author and designer of several NetWars challenges for use in SANS’ popular, “gamified” information security training suite. Jake spent more than a decade in information security roles at several government agencies, developing specialties in offensive forensics, malware development and digital counterespionage. Jake is the founder of Rendition InfoSec, which provides penetration testing, digital forensics and incident response, expertise in cloud data exfiltration, and the tools and guidance to secure client data against sophisticated, persistent attack on-premises and in the cloud.