IDC Online Recommends about Foreshadow vulnerability

Monday, August 27, 2018

Dear Customer!

First of all, IDC Online sincerely thank you for trust in  our services.

As advised by our technical department, there is a vulnerability named Foreshadown (or other name “L1 Terminal Fault) of  (CPU) Core® and Xeon® of Intel. Foreshadow has two versions: first attack type gets data from safe region of Software Guard Extensions (SGX) and the second attact type is Foreshadow NG (Next Generation) gets data from cache memory L1, then catch sensitive data of system.

The list of affected Inter CPU:

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html

Thus, IDC Online recommends Customers to consider the impact of vulnerability and  patch the corresponding operating systems are as follows (if necessary):

-         Windows OS: Run Windowns Update feature or install patch manually. Information of patch version:

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018

-         Red Hat Enterprise Linux and CentOS: run command “yum update” to update and restart OS. Detail information:

https://access.redhat.com/errata/RHSA-2018:2384

-         Ubuntu OS: run command “sudo apt-get update” and “sudo apt-get dist-upgrade” then restart OS. Detail information: https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/L1TF

 Please contact to IDC Online, if you need more information

-         Hotline: 19006452

-         Email: support@idconline.vn

By this email, IDC Online would like you to know and handle to ensure better quality of service.

Special thanks.