CVE 2019 14899 – VPNs are being found theoretically vulnerable –
in brief make sure you do not use compression for VPN or SSL. No actual attacks yet, but we need to keep an eye on this. (see link
) – only UNIX systems.
SPECTRE 1″05 –
bit of an update & overview, We go deep into the SPECTRE vulnerability, which has been out for at least a year now, and affects every CPU ever made, just about. There is a case for single tenant hosting if you are worried about security. Its not a casual attack, but would require a focussed long term attack, and we think its more likely to affect multi-tenanted cloud services and high value targets (like large law firms) Further reading here