Critical Xen hypervisor flaw endangers virtualized environments

| April 12, 2017

article image
A critical vulnerability in the widely used Xen hypervisor allows attackers to break out of a guest operating system running inside a virtual machine and access the host system's entire memory.This is a serious violation of the security barrier enforced by the hypervisor and poses a particular threat to multi-tenant data centers where the customers' virtualized servers share the same underlying hardware.The open-source Xen hypervisor is used by cloud computing providers and virtual private server hosting companies, as well as by security-oriented operating systems like Qubes OS.

Spotlight

Zerone Consulting

We are an agile software development company based out of Kochi, India. We create innovative software applications and products that enable our customers to compete and win in their marketplace. All our processes are optimized to foster customer delight.

OTHER ARTICLES

Security that’s Designed for the Modern Data Center

Article | February 26, 2020

The last 12 months have been incredibly exciting for the security business at VMware. Last year at RSA Conference 2019, VMware CEO Pat Gelsinger outlined our Intrinsic Security strategy in his keynote presentation, “3 Things the Security Industry Isn’t Talking About”. We also announced the VMware Service-defined Firewall, a stateful Layer 7 data center firewall. As pioneers of micro-segmentation, the Service-defined Firewall extended our leadership in protecting east-west traffic in the data center. Later in the year, we announced two major acquisitions –Avi Networks and Carbon Black. The acquisition of Carbon Black brought to VMware an industry-leading endpoint security platform, and made the entire industry take notice of VMware’s intentions to transform security. With Avi Networks, we acquired a software-defined, elastic, and high-performance load balancer that comes equipped with a full-featured web application firewall (WAF). Maintaining the momentum in building out our security portfolio for the digital enterprise, we announced the VMware NSX Distributed Intrusion Detection and Prevention System which will bring advanced threat controls to the Service-defined Firewall.

Read More

VMware embraces Kubernetes with vSphere 7

Article | March 10, 2020

VMware has added Kubernetes support to run containers and virtual machines simultaneously in the new vSphere release. The virtualization giant can now also offer a single management domain that covers containers and VMs in the hybrid cloud. vSphere 7, launched today, represents the first fruits of the company’s Project Pacific. Project Pacific is in turn a component of VMware parent Dell’s wider Tanzu initiative to enable its overall product set to build, run, manage, connect and protect containerised workloads alongside virtual machine workloads. (Read more about Tanzu deliverables, in a Dell blog.) Deepak Patil, SVP and GM for cloud platforms and solutions at Dell Technologies, provided a quote: “As organisations look to solve for managing their private clouds seamlessly with multiple public clouds, we’re now able to extend our capabilities to both VMs and containers with a single hybrid cloud platform.

Read More

Is Your On-Premises Existence Under Scrutiny? VMware Cloud on Dell EMC Offers a Solution

Article | February 26, 2020

For many IT teams and organizations, maintaining an on-premises infrastructure has become an increasing challenge. The introduction of the public cloud, along with the wholesale perception that running workloads in the public cloud is less expensive and provides an equivalent environment for previously on-premises workloads have captured significant attention. While the popularity of the public cloud is an undeniable force, without considering the disadvantages of relocating applications from on-premises data centers to the public cloud organizations are unable to make a balanced business decision. From the finance perspective, the traditional process of accounting for expensive capital-funded on-premises infrastructure updates creates extra work accounting for the infrastructure assets across the life span of the equipment. For accounting teams – the main allure of moving to the public cloud is that it eliminates the significant capital spend necessary to refresh the infrastructure every few years, replacing that cost with a more manageable monthly bill from the public cloud provider.

Read More

IT modernisation series – Rancher Labs: Kubernetes is a catalyst

Article | March 17, 2020

In this series of articles we investigate how organisations are approaching the modernisation, replatforming and migration of legacy applications and related data services. We look at the tools and technologies available encompassing aspects of change management and the use of APIs and containerisation (and more) to make legacy functionality and data available to cloud-native applications. This post is written by Olivier Maes, VP EMEA for Rancher Labs – the company is known for its work in operating-system-level virtualization tools. IT modernisation can be intimidating, but it’s a necessity. Businesses that continue to rely on legacy technologies risk being left behind, while those that embrace digitalisation gain a competitive advantage.

Read More

Spotlight

Zerone Consulting

We are an agile software development company based out of Kochi, India. We create innovative software applications and products that enable our customers to compete and win in their marketplace. All our processes are optimized to foster customer delight.

Events