Shortly after the New Year, news broke world wide of potential weaknesses in the hardware that drives nearly every device on the planet from computers to smart phones. “Update everything now” dominated the news cycles for several days.
Now that the conversation has calmed a bit, facilities managers may be wondering, “What exactly was that all about, and how might it impact my integrated systems?” Here’s a high level explanation:
Last summer, researchers with Google and several universities discovered a new way hackers might be able to work their way around modern processors to gain access passwords and other sensitive information. One type of exploit was patchable, and patches were quickly developed and deployed.
The other approach is not so easily patchable, and will require a redesign of processors themselves. That will require years of research and work.
So, where does that leave the rest of the world? The situation may not be quite as dire or threatening as it seems. Keep in mind, these exploits were discovered by researchers. They are extremely novel approaches and will require a high level of expertise to develop attacks. To date, there’s no evidence that any attacks have been made using these weaknesses. Make no mistake, however, hackers are likely hard at work trying to figure out how to exploit these vulnerabilities, but right now security experts remain one step ahead with patches and other fixes.
Patches have already been pushed out, and longer term fixes will likely be ready by mid-year.
So what should you do in the meantime? The best thing to do is to make sure to implement all system updates in a timely fashion.
For our part, we have been vigorously researching the problem to determine if our customers’ integrated building systems will be impacted. Our goal is to bring you solid information and solutions that securely function and provide value. We currently have no indication that these exploits have been used to obtain customer data, and we will continue to closely follow this situation.
ECT Services is dedicated to the safety and security of our customers. As more information becomes available, we will continue to provide updates. In the meantime, if you have any questions or would like further information, please contact us at (800) 567-1180. Thank you.Tags: Office Security, processor chip, Security, Small Business, vulnerability