Spectre and Meltdown computer chip vulnerability
You may have read about the computer chip vulnerability affecting nearly all (modern) computing devices and operating systems which was in the news at the end of last week.
Should you be worried, and what should you do?
Firstly, don’t panic. Although a flaw has been identified, there doesn’t appear to have been any attacks resulting from it.
We are more worried about the social engineering risk – e.g. scammers calling people to convince them they are in danger and extracting payment or password information.
So, if someone calls or emails you telling you to take some specific actions, especially around clicking links to install software, or passing over any personal details or passwords, it’s probably a scam. Delete the email or put the phone down. If you’re in any doubt, call or email us.
Leading manufacturers have been working on mitigating these vulnerabilities and Google, Microsoft and Apple have already released several updates to and taken action to secure their cloud services. Further updates can be expected in the coming weeks.
Anti-virus vendors are also updating their systems and our chosen vendor ESET, can stop malware that uses Spectre and Meltdown vulnerabilities
Beyond applying updates and being wary of potential fraud, there is nothing more proactive you can do: we all simply have to wait for patches to be released by the manufacturers.
For EJC clients, we will update your systems as patches become available. If you also have systems or computers at home or not managed by EJC, taking advantage of automatic updates from Microsoft and Apple, and make sure that any other software you have installed is kept up-to-date. Updates should either be automatic or available from the manufacturer’s website. Don’t just click on any link in an email promising you a software update – even if it looks genuine, it’s safer to go directly to the manufacturer’s website via your browser.
As ever, do get in touch if you have any further questions – otherwise please just carry on as normal, remaining vigilant.
EJC understand the issues that we face as lawyers and offer proven real world solutions. I have been impressed with their professionalism, honesty and most of all their commitment to achieve the best result for their clients. I have no hesitation to recommend EJC as a strong IT partner for legal businesses.
EJC have helped us meet the challenges that we face as a growing professional service firm. Our firm relies on the consistent performance and availability of key systems so that our fee earners can be as productive as possible. Therefore we need to work with an IT partner like EJC, who can engage directly with our suppliers. I highly recommend EJC as a trusted IT partner for professional service firms.
The Anslow Partnership
Druces was experiencing recurring performance issues and service interruptions with its [hosted] systems. We asked EJC to conduct a detailed audit to allow us to identify where the issues were occurring and who we needed to work with to resolve them. Their approach was expert, professional and thorough. The insight it gave Druces allowed us to plan and act with confidence. I would recommend EJC to law firms looking to improve their technology service, delivery and benefits.
The quality of IT is vital to Fisher Meredith’s success and the Infrastructure Assessment by EJC has given the firm a clear roadmap and budget to deliver a secure platform that will support our continued growth…. Since we began working with EJC, they have delivered real improvements to the reliability and performance of our systems. Critically, they work successfully with our internal team, providing expertise and resource that extends and complements our own capabilities.
EJC work with a number of our clients and in my dealings with them I have always found them to be knowledgeable and to offer straightforward advice. I would recommend EJC to anyone that is looking for a professional organisation to help them get the most out of their IT.
2 Leman Street
2 Leman Street