Potential CPU Security Issue

Google has announced a widespread CPU architectural issue potentially impacting system security. More information can be found in Google’s disclosure http://ift.tt/2lOp7aO

Our engineering teams are working to determine resolutions to any potential impact. Our services and security organizations are assisting clients in planning and updating potentially impacted systems and devices regardless of manufacturer.

Additional information will be provided through normal IBM communications channels, including IBM Security Bulletins. Please actively monitor both your IBM Support Portal and the IBM PSIRT Blog.

The most immediate action clients can take to protect themselves is to prevent execution of unauthorized software on any system that handles sensitive data, including adjacent virtual machines. It also is suggested that an inventory be taken of what machine type-model numbers clients have from various manufacturers and that the workload of each machine is known so they can act more quickly as action is required.

We will continue to update this blog to include additional information as appropriate.

The post Potential CPU Security Issue appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2CCymEK