Protect business endpoints from Meltdown and Spectre vulnerabilities

Document created by asmith Employee on Jan 16, 2018Last modified by asmith Employee on Jan 25, 2018
Version 1Show Document
  • View in full screen mode

On January 3, 2018, the Google Project Zero team reported they had discovered three variants of a hardware bug with important ramifications.  You can read their blogpost, Reading privileged memory with a side-channel.

 

The three variants are:

 

Microsoft has released security updates to help mitigate Meltdown and Spectre vulnerabilities.

 

Prepare for security updates

To confirm Microsoft's security updates are compatible with your environment, Microsoft needs a registry key from your antivirus.  To allow Microsoft's security updates on your endpoints, see the instructions for your product.

 

Malwarebytes Endpoint Protection

Register your endpoints with the Windows Action Center, then install the latest Malwarebytes for Windows updates on your endpoints.

 

Your endpoints must have at least Malwarebytes for Windows v3.1.8.1830, database update v1.0.3624.

 

  1. Log in to your Malwarebytes cloud account.

  2. Click Settings > Policies.


  3. Click any policy.


  4. Click Endpoint Protection, then scroll down to Windows Action Center.


  5. Click Let Malwarebytes apply the best Windows Action Center settings based on your system (recommended).


  6. Repeat steps 3 - 5 for each additional policy you want to register with the Windows Action Center.

  7. Click the Endpoints tab.


  8. Click the checkboxes to select endpoints you wish to update.


  9. Click Actions > Check for Protection Updates.

 

Malwarebytes Endpoint Security 

Malwarebytes Endpoint Security does not register with the Windows Action Center.  As a result, Malwarebytes Endpoint Security cannot create or change the registry key Microsoft uses to verify your anti-virus is compatible.  However, you can create or change the registry key manually or use a Microsoft antivirus to retrieve a registry key for this update.  Refer to Microsoft's article, Windows security updates released January 3, 2018, and antivirus software.

 

Install security updates

Install the latest security updates from Microsoft on each endpoint.  Your endpoints can check for updates automatically using your Group Policy or registry.  Refer to Microsoft's article How to configure automatic updates by using Group Policy or registry settings.

 

Additional information

Attachments

    Outcomes