Also, some hypervisors are vulnerable to malware attacks because of the platform they run on. Microsoft Hyper-V, VirtualPC and certain versions of VMware, run on top of Windows, and other hypervisors run on top of Linux-based systems. The Linux or Windows server components could be attacked to compromise the security of the virtual infrastructure.
A new method that can be used to prevent malware from infecting a hypervisor was discussed in a recent technical report by researchers at North Carolina State University and IBM, but some other best practices can be taken. These could include isolating the management interfaces of, and connections to the hypervisor to only the systems that need access, not running un-trusted code on the hypervisor , such as software not provided by the hypervisor vendor and keeping the hypervisor software up to date. This excludes any security measures that should be taken on the guest OSes on the virtual infrastructure to ensure the guests cannot be used to attack the hypervisor.
This was first published in October 2010