CSE is aware of recent reports about computer processor flaws, known as Meltdown and Spectre, that could be exploited to access protected memory, putting sensitive information, such as passwords or encryption keys at risk.
CSE is actively working with Shared Services Canada and our other Government of Canada partners to ensure that Government of Canada networks and equipment are protected. CSE would like to remind all Canadians and organizations that following CSE’s Top 10 IT security actions and applying patches as they become available is the best defence against flaws such as Meltdown and Spectre.
As the situation develops, we will continue to work with our domestic and international partners to address any new developments. In addition, we will ensure all relevant information and guidance that is available to CSE is provided to our partners at Public Safety Canada to disseminate more broadly, as appropriate.