UPDATE: Vulnerability Management Program Ready to Handle New Meltdown/Spectre Threats
When news broke about the Meltdown and Spectre security vulnerabilities a few months ago, US Signal sprang into action. Patches and other maintenance were immediately performed to eradicate threats to its infrastructure. The company has now moved into long-term threat mitigation and will continue to monitor new developments with Meltdown and Spectre, as well as other emerging threats.
At the heart of US Signal’s efforts is its Vulnerability Management Program (VMP), which employs standard, repeatable processes to:
- Identify published threats
- Evaluate threats to US Signal infrastructure
- Understand the urgency of the threats
- Implement necessary patches or controls to mitigate identified threats
US Signal’s VMP ensures that all technical teams within the organization understand the flow, process and urgency of any vulnerabilities published for remediation, and are ready to act immediately and efficiently.
As vulnerabilities are exposed in more IoT devices and attackers evolve their tactics, exploits of the Meltdown and Spectre flaws are expected to continue. It will likely take years for them to be fully remediated, if ever, before being made obsolete by equipment turnover. Strict adherence to its VMP processes will help protect US Signal—and its customers — from these future threats.