# Protecting your enterprise against Meltdown and Spectre processor bugs ![Protecting your enterprise against Meltdown and Spectre processor bugs](https://www.manageengine.com/products/desktop-central/images/melt-banner.jpg) Security professionals had a hectic start to 2018 with the discovery of two critical processor bugs—Meltdown and Spectre. Without diving too far into the details, these bugs can be described as a family of vulnerabilities that allow processes to access data that is normally inaccessible to them.* Theoretically, hackers can leverage these flaws to access confidential data, including passwords, email IDs, cryptographic keys, and more. See what industry experts have to say with respect to Meltdown and Spectre, [Download ManageEngine Experts Digest](https://download.manageengine.com/products/desktop-central/experts-whitepaper.pdf) and get a vendor neutral approach towards these CPU bugs. ## So why are Meltdown and Spectre such a big deal? These vulnerabilities have put computers and mobile devices using Intel processors and some AMD and ARM processors (i.e. most systems) at risk of data leaks. Luckily, operating system vendors have released patches that can help protect endpoints from both Meltdown and Spectre. ## How to protect your data against Meltdown and Spectre? The only true fix for these bugs is to replace the affected processors but this is a tall and unrealistic order for enterprises. Leading operating system vendors including Microsoft, Apple, and Google have already released updates to fix Meltdown, but Spectre has proven more difficult to patch and will continue to cause issues until further security updates are released from these vendors. ## List of security updates from vendor's to these bugs ### Apple ![ ](https://www.manageengine.com/products/desktop-central/images/melt-vendor-icon-3.png) Apple has already [handled](https://support.apple.com/en-us/HT208394) this exploit in iOS 11.2.2, macOS 10.13.2, and tvOS 11.2. However Apple has not yet released an update for Safari or macOS Server. ### Mozilla ![ ](https://www.manageengine.com/products/desktop-central/images/melt-vendor-icon-4.png) Mozilla has released a [security update](https://www.mozilla.org/en-US/security/advisories/mfsa2018-01/index.html) for its browser Firefox to mitigate both Meltdown and Spectre attacks. ### Linux ![ ](https://www.manageengine.com/products/desktop-central/images/melt-vendor-icon-5.png) Linux has also already released patches for the kernel in versions 4.14.11 and 4.9.74. The complete list of versions and their updates can be found [here](https://www.kernel.org/). Cloud vendors like [VMware](https://www.vmware.com/us/security/advisories/VMSA-2018-0002.html), [AWS](https://aws.amazon.com/de/security/security-bulletins/AWS-2018-013/index.html), [Citrix](https://support.citrix.com/article/CTX231399), and [Azure](https://azure.microsoft.com/en-us/blog/securing-azure-customers-from-cpu-vulnerability/index.html) have also released fixes. ### Microsoft ![ ](https://www.manageengine.com/products/desktop-central/images/melt-vendor-icon-1.png) Microsoft was the first to respond releasing an emergency security update for Windows 10. Note: You shouldn't install this security update if your computer is running incompatible antivirus software. [Read more](https://support.microsoft.com/en-gb/help/4072699/important-january-3-2018-windows-security-updates-and-antivirus-softwa) ### Google ![ ](https://www.manageengine.com/products/desktop-central/images/melt-vendor-icon-2.png) According to Google, mobile devices that are running the latest version of [Android](https://source.android.com/security/bulletin/2018-01-01), released January 5th as a part of Android's January security patch, are safe from this exploit. So users with Google-branded phones running the latest version of Android safe. However, Android users on other devices will have to wait until device manufacturers roll out their own patches. In the case of Chrome, patches for Meltdown and Spectre will be released on January 23, 2018, with Chrome 64. This update will help protect users from both desktop and mobile-based web attacks. ## Trouble handling Meltdown and Spectre? We can help. Our patch management solutions can automate security updates for you, simplifying the process of patching multiple operating systems and programs. Download either our [exclusive patch management](https://www.manageengine.com/patch-management/) or [endpoint management solution](https://www.manageengine.com/products/desktop-central/) to resolve these exploits automatically. ### Already using our patch management tools? Follow the steps below to patch both Meltdown and Spectre. 1. Navigate to the **Patch Mgmt** tab. 2. On the bottom-left corner of the page, click **Update Now** under Update Vulnerability DB. 3. Under Views, select **Scan Systems** to identify missing patches in your network. ![](https://www.manageengine.com/products/desktop-central/images/melt-step-3.png) 4. From the table of all missing patches, search for the keywords **Meltdown** or **Spectre** under Patch Description. 5. Select all the **missing patches** related to Meltdown or Spectre and click **Install Patch** to deploy them. 6. Verify their installation statuses after deployment. ![](https://www.manageengine.com/products/desktop-central/images/melt-step-5.png) Do you still have questions? Check the FAQ's on Meltdown and Spectre. [FAQ's](https://www.manageengine.com/products/desktop-central/faqs-on-meltdown-and-spectre.html?meltdown_spectre_Wpage) \*Here's a full description on [Meltdown](https://meltdownattack.com/meltdown.pdf) and [Spectre](https://spectreattack.com/spectre.pdf) from the experts.