FastComet Blog

Category: Security

Our Action Plan for Spectre, Variant 2

Earlier this year, the tech world was buzzing about two processor vulnerabilities, Meltdown and Spectre. The vulnerabilities affect processors from multiple vendors, can allow normal users and programs running in user space access to kernel memory. This allows unprivileged users to read arbitrary data in main memory. This includes passwords, private keys, certificates and all other sensitive information.

How “We’ve got your back(up)” just got even better?

There’s nothing worse than that awful feeling you get when you realize you’ve accidentally deleted that all important business email, or wiped out a web project that you’ve been working so hard on over the past couple of weeks. It is, therefore, crucial to have handy backups of your hosting account so that unpleasant feeling doesn’t last for long.

What’s not always so cut and dry, is the process of backing up your website.…

Addressing the recent downtime and emergency maintenance on cloud infrastructure

During the past week, our clients experienced several periods of service interruption caused by server reboots, kernel updates, and unscheduled maintenances. Our community manager and customer service staff are working around the clock to keep our clients informed and updated about our maintenance schedules and to minimize the negative impact as much as possible.

As posted on our blog, we are performing multiple rounds of reboots and emergency maintenance to address the Meltdown vulnerability.…

Addressing Meltdown and Spectre

Update: February 18, 2018

Newly discovered variants of Meltdown/Spectre dubbed MeltdownPrime and SpectrePrime that exploit invalidation-based coherence protocols with 99.95% accuracy of recovering hidden data have been discovered by Princeton and Nvidia researchers. However, we can confirm that the current software-based Meltdown/Spectre mitigations rolled out on our servers are effective at confining them.

In the days following the beginning of the New Year, our team became aware of a security flaw regarding the way modern CPUs (central processing unit) predict possible future user actions and store small bits of information in their cache in order to provide near-instant interaction for the user (Speculative Execution) as well the kernel’s memory isolation which is set with the purpose of creating a closed environment for each user/process on the machine.…

BitNinja – The road to success with the new Browser Integrity Check feature

One of our biggest challenges as a hosting company is keeping our servers and customer sites secured. We take security very seriously, implementing active and passive measures to stop attacks and malicious intent in its tracks. BitNinja is one of the security solutions we have implemented a few months ago on the FastComet platform and so far we are seeing great net results in terms of malicious traffic prevention.