Without a firmware update, the software updates that Microsoft has supplied are only half the protection needed for its Surface devices. Microsoft promised last week that it would delivery firmware soon, but has now began the task of delivering them to Surface customers. Microsoft is not supporting each and every Surface device it has ever made, only those listed here: Surface Devices that Microsoft Will Cover for the Spectre and Meltdown Vulnerabilities.
Additionally, Microsoft has provided guidance and given information about other security vulnerabilities covered in this round of firmware. Make sure to check that out here: Updates for Surface Devices (09 January 2018).
Its particularly important to pay attention to the warning section of the supplied information for guidance on the following scenarios:
- Your device is configured for BitLocker Drive Encryption, and is configured to have a platform validation profile that uses Platform Configuration Register (PCR) values that differ from the default and recommended configuration of PCR 7 and PCR 11.
- Your device is configured for BitLocker Drive Encryption and has Secure Boot disabled.
Looking for an awesome, no-nonsense technical conference for IT Pros, Developers, and DevOps? IT/Dev Connections kicks off in Dallas, Texas in 2018!