Meltdown and Spectre bugs

We are receiving questions from our clients about the latest security issues found in CPUs.

Please be asured we are constantly monitoring all security announcements issued by our OS vendor (i.e. https://www.debian.org/security/) and we receive all updates to our email and we apply the changes within 24 hours as part our service.

We can confirm that all our servers are now safe from both the bugs.

Our PCI compliant server customers can are also protected by extra security measures which includes:

1. It’s a dedicated host fully under our control. No one else can make changes to the operation system. The Meltdown and Spectre bugs are most dangerous in Cloud servers environment, where multiple OS are running on one physical hardware (host), which gives an opportunity to a client OS owner to read information from another OS. This is not possible on this server as there is only one OS, which is under our control.
2. Hosted websites don’t have FTP/SFTP service available to our customers. No one else can upload a server side executable code (e.g. PHP file), exploring the discovered processor vulnerabilities. 

All other customers are running in a Cloud environment and the OS was fixed by our supplier, see https://forum.bytemark.co.uk/t/meltdown-specture-vulnerabilities-what-were-doing-about-them/2784