Virtualization Security Issues and Threats
- September 04, 2019
Security researchers discovered BMC vulnerabilities -- dubbed USBAnywhere -- in Supermicro servers that could put systems at risk of remote attacks via virtualized USB drives.
- August 23, 2019
VMWare announced an agreement to acquire endpoint security vendor Carbon Black in an effort to boost its cloud security offerings; the all-cash deal is valued at $2.1 billion.
- August 08, 2019
Check Point revealed research at Black Hat that showed a previously disclosed vulnerability in Microsoft's remote desktop protocol affects the company's virtualization platform.
- August 17, 2018
News roundup: Intel disclosed L1TF vulnerabilities with similarities to Spectre, but with a focus on data. Plus, the NIST Small Business Cybersecurity Act is now a law, and more.
- May 11, 2018
A hardware debug bug, apparently caused by unclear Intel hardware architecture documentation, infested almost all major OSes, as well as leading virtualization software.
- May 04, 2018
The timeline for the AMD patches promised to fix chipset flaws disclosed in March is being criticized, but AMD said the patches are being tested by partners and are still on track.
- March 23, 2018
AMD patches are in the works for the Ryzen and EPYC chip flaws announced without the normal disclosure, but CTS Labs continues to stress the severity of the issues.
- November 29, 2017
VMware's Tom Corn discusses the looming threats to the virtualization layer of enterprise data centers and explains why simplifying environments and security controls can help.
- February 10, 2017
News roundup: F5 virtual server flaw, dubbed Ticketbleed, is similar to Heartbleed. Plus, DHS is considering requiring social media passwords on visa applications, and more.
- June 03, 2016
Roundup: The new SandJacking attack technique allows attackers with physical access to iOS devices to install rogue apps. Plus, more on medical software security and Privacy Shield obstacles.
- August 25, 2015
A new report makes controversial claims about the costs of breaches in virtualized environments, strongly suggesting IT pros may not understand the challenges of virtualization security.
- June 02, 2015
Researchers estimate that 70% of organizations will have implemented virtual servers by the end of 2015, representing a tipping point in enterprises’ adoption of virtualization. Virtual machines (VMs) must be protected from malware like other ...
- November 01, 2013
If software security keeps you up at night -- and it should -- you are in good company.
- May 25, 2011
Firms reassessing their virtualized infrastructure should apply the same security best practices they’ve been using to secure their physical systems.
- May 25, 2011
SearchSecurity.com's "Eye On" series examines a security topic each month. In May, the series explores virtualization security and the technologies and methodologies available to reduce vulnerabilities and improve virtualization processes.
- February 15, 2011
LynuxWorks demonstrated its enterprise platform for secure virtualization running on multiple devices and using ValidEdge Network Malware Security (NMS) LynxSecure.
- February 10, 2011
Security vendors at RSA Conference 2011 need to be more specific about the security technologies they are aiming at the cloud, industry analysts say.
- December 06, 2010
Juniper Networks acquired Altor Networks in a $95 million deal to sell its virtualization security technologies alongside security appliances that protect physical systems.
- September 23, 2010
New software called HyperSentry stealthily detects malware in the hypervisor running virtual environments and alerts administrators to respond to a compromise.
- September 15, 2009
Virtual desktops control endpoints and cut costs for an Atlanta-based financial company. The setup helps IT control core essentials and enforce acceptable use policy.
- April 23, 2009
Future virtualization platforms and features could cause confusion when managing who owns virtual machines within an organization and how network traffic can be monitored.
- April 01, 2009
A new organization will address the security concerns inherent with cloud computing.
- February 18, 2009
Security researchers Joanna Rutkowska and colleague Rafal Wojtczuk, discovered new Intel bugs that would allow attackers to bypass Intel Trusted Execution Technology.
- February 17, 2009
Virtualization platform vendors such as VMware and Citrix gear up to enhance security, as mainstream security companies slowly adapt.
- February 17, 2009
Despite some misgivings, IT security pros are finding virtual environments help centralize data, deploy patches more efficiently and thwart attackers.
- September 15, 2008
Sourcefire announces virtual machine coverage and virtualization developments, which will extend network analysis, access control and vulnerability assessment.
- July 23, 2008
It could be costly for companies to sort out the new governance, oversight and manageability issues being introduced by virtualized environments.
- June 05, 2008
Hardening VMware's ESX Server has been a difficult job, but a new tool developed by VMware and partner Tripwire aims to ease the pain.
- March 26, 2008
Montego Networks says its HyperSwitch will integrate virtual network policy enforcement and access control into security products from Blue Lane, Catbird, and StillSecure.
- March 24, 2008
With virtualization complexities looming, new software and appliance vendors are emerging to address growing security concerns.
- February 27, 2008
VMware plans to release application program interfaces as part of VMsafe so security vendors could design software interoperable with its virtualization technology.
- February 27, 2008
IT shops are looking at virtualization as a way to improve data security and make patch deployments more efficient. But IT pros and analysts say there are security risks as well.
- February 25, 2008
A file sharing flaw in VMware can be exploited by an attacker to execute code and access sensitive files.
- February 01, 2008
Windows Server 2008, expected to release Feb. 27, is first server product built from scratch since the advent Trustworthy Computing at Microsoft. Bill Laing, general manager of the Windows Server Division at Microsoft, says security in this product ...
- November 13, 2007
One company is driving virtualization down into the BIOS and believes its technology could make computing more secure.
- August 17, 2007
VMware, the leader in virtualization software, has acquired Determina, a provider of host IPS technology.
- June 30, 2006
This week in Security Blog Log: A researcher creates fake reality for Windows Vista's anti-malware sensors. Not all bloggers are impressed.
- February 15, 2006
In his keynote, CEO John Chambers touted product enhancements that advance his push for networks that can defend themselves without human intervention.