Home Security
PC Matic
PC Matic VPN
More Products
Support Unlimited
Identity Theft Protection
PC Magnum
Threat Awareness
How PC Matic Protects You
SuperShield Whitelist
Compare PC Matic
Norton
McAfee
Avast
AVG
Business Protection
PC Matic Pro
PC Matic MSP
Solutions
Allowlisting
Script Enforcement
Device Control
Patch Management
Remote Tools
Integrations
Server Security
Learn More
Resellers
Affiliates
Resources
Case Studies
Compare PC Matic Pro
ThreatLocker
Airlock Digital
VMware Carbon Black
AppLocker
For Federal
Partner Programs
Managed Service Providers
Channel Partners
Affiliate Partners
OEM Partners
Resource Center
All Resources
Case Studies
Data Sheets
User Guides
White Papers
Blog Resources
PC Matic Blog
Business Security
Home Security
Cyber News
Scam Alerts
Customer Service
Home Support
Business Support
Learn More
Getting Started
Knowledgebase
Tech Support Scams
Fake Virus Scams
Tools & More
Ransomware Center
Internet Speed Test
PC Matic
About
Careers
Learn More
Industry Recognition
Leadership
Commercials
Stay Up-to-Date
Newsroom
Blog
Events
TechTalk Podcast
Home Customers
My Account
PC Matic App
Add a Device
Renew Subscription
Business Customers
Business Login
Business Support
Search

Hackers Exploit Meltdown/Spectre Vulnerabilities with Malicious “Patches”

Cyber Criminals Use Processor Vulnerabilities to Spread Malware

Once security issues go global, cyber criminals tend to exploit them for their own gain.  It happened with the global ransomware treats, NotPetya, BadRabbit and WannaCry.  Hackers used fraudulent decryption keys to spread malware.  Now, they’re using malicious Meltdown/Spectre “patches” to spread malware.  According to Tech Republic, the malicious patches have been targeting Germany; however, it won’t be long until they’re spread globally.

The malicious patch is being sent via phishing scams, claiming that the installation of the patch is critical.  Within the email, users are asked to go to a certain website to download the patch.  Interesting enough, the website they’re asked to go to is an https:// page.  Often times users believe clicking on https:// links are safe because the “s” stands for secure.  Although, the data transmitting from the computer to the website is secure, it does not mean the content within the page is safe and not malicious.

Avoid scams such as these by keeping two things in mind.  First, valid security patches will not be distributed to users individually.  Secondly, any email or website that is urging users to implement patches or updates are signs of red flags.  Instead patches will be launched within an automatic update.  Unless of course the user has opted out of automatic updates, in which case the patch will launch at the time the software update is manually launched, which can be done through the Settings feature within the operating systems.

**Please keep in mind, if your computer is acting bizarre after it was patched, it does not mean it was a malware attack.  Several reports have been brought to light regarding rebooting issues and BSoD errors after the legitimate patch was installed.  If you’re a PC Matic user and are experiencing any of these issues, please reach out to our helpdesk team at www.pcmatic.com/help.  Explain what is going on, as well as when it started.  Our team will do everything they can to get your computer back up and running.

Stop Responding to Threats.
Prevent Them.

Get Protected

Want to get monthly tips & tricks?

Subscribe to our newsletter to get cybersecurity tips & tricks and stay up to date with the constantly evolving world of cybersecurity.

Related Articles

Honda Hacked

Photo by Will Hough on Unsplash Honda’s Global Operations Haulted Automobile giant Honda confirmed today that they’ve been the victim of a cyberattack. The company released a statement

Read More
June 9, 2020