As many Tanium customers are aware, Meltdown and Spectre exploit critical vulnerabilities in modern processors. These vulnerabilities can be used to extract data from running programs on the same physical machine. These hardware vulnerabilities can potentially impact machines that run Tanium software.
To help our customers understand exposure, Tanium has published a blog post to help you identify at risk devices on your network, [Blog].
Tanium has engineered Labs content to manage vulnerabilities. Instructions for accessing the Labs content can be found [here].
Finally, additional discussion and FAQs exist on Tanium Community [link].
With regard to the impact on the Tanium Platform, the risk is connected to the risk in the underlying systems on which it is running. Tanium can run on a variety of physical and virtual environments, there are several factors to consider.
1. Ensuring that the underlying hardware is patched per vendor specifications. To follow appropriate procedures please contact your hardware vendor to locate the relevant patches. Here are some helpful links for common hardware vendors with Meltdown and Spectre content:
2. Ensuring appropriate operating system patches have been applied. To follow appropriate procedures, please contact your OS vendor to locate the relevant patches. Here are some helpful links for common OS vendors with Meltdown and Spectre content:
3. Identifying your virtualization platform and ensuring the appropriate patches have been applied. To follow appropriate procedures contact your virtualization vendor for relevant guidance. Here are some helpful links for common virtualization vendors with Meltdown and Spectre content:
If there are further questions, please reach out to your TAM or email@example.com.
Tanium Comply 1.4.2
Tanium has released an update to Comply to add full IAVM file upload and mapping support, improve management workflow through cloning of engine deployments and custom profiles, add support for Joval 6.0.1 and CIS-CAT 3.0.44, and address numerous miscellaneous bug fixes and enhancements.
For a full list of changes, please refer to the 1.4.2 Release Notes.
Tanium Detect 3.1.0
Tanium has released an update to Detect to add alert throttling capabilities for both endpoint and service throttling which can be monitored via a new system notifications page, add interactive API documentation into the workbench, enhance label management, and address miscellaneous bug fixes and improvements.
For a full list of changes, please refer to the 3.1.0 Release Notes.
Tanium IR Gatherer 3.6.0
Tanium has released an update to IR Gatherer to update to the latest Tanium utility binaries.
For a full list of changes, please refer to the 3.6.0 Release Notes.
Tanium Managed Applications 2.3.2
Tanium has released an update to Managed Applications to consolidate dat files into a single zip file for download and distribution, add support for Adobe Shockwave, and remove deprecated separate links for Google Chrome Personal and Corporate.
For a full list of changes, please refer to the 2.3.2 Release Notes.
Tanium Protect 1.4.1
Tanium has released an update to Protect to address an issue that would prevent definition downloads for Windows Defender and SCEP from working when using automatic update mode.
For a full list of changes, please refer to the 1.4.1 Release Notes.
Tanium Labs Meltdown/Spectre Vulnerability Management 1.0.1
Tanium Labs has released an update to Meltdown/Spectre Vulnerability Management to support the latest tests supplied by Microsoft, add a utility tool package that will distribute supporting files, update to use 64-bit PowerShell on 64-bit endpoints, and address miscellaneous bug fixes.
For a full list of changes, please refer to the 1.0.1 Release Notes.
Contact your Technical Account Manager if you have additional questions.