• POLITICS
  • SCIENCE
    • Astronomy
    • Physics
    • Biology
    • Geology
    • Environment
    • Medicine and Health
    • Sociology
    • Psychology
  • MOVIES & TV SHOWS
  • TECHNOLOGY
    • Artificial Intelligence
    • Virtual Reality
    • Bionics
    • Nanotechnology
    • Engineering
    • Robotics
    • Space Exploration
    • Transport
    • Industry and Service
  • GADGETS
    • Mobile Devices
    • Wearables
    • Consoles
    • Hi-Tech
  • GEEK CULTURE
    • Gaming
    • Comics
    • Thingamajigs
  • MUSIC
  • SOFTWARE
    • APPS
      • Android
      • iOS
      • Windows
  • HARDWARE
  • CARS
  • REVIEWS
  • Advertise
  • Geek Reply Jobs
  • Contact Us
Geek Reply
  • HOME
  • Editorials
  • Geek Squad
  • GeekReply Jobs
  • Contact Us
  • Facebook

  • Twitter

  • Google+

  • LinkedIn

  • RSS

Industry and Service

Amazon Claims Their Cloud Services Dodged the Venom Security Flaw

Amazon Claims Their Cloud Services Dodged the Venom Security Flaw
Ryan Martinez
May 14, 2015

Amazon has made a bold & cryptic claim that their cloud services were not bitten by the venom flaw

Last year’s discovery of the heartbleed bug, which infected the very backbone of the internet, sent shock waves across the web. Leaving hundreds of thousands of everyday users wondering how safe they and their data really were online. Now the Heartbleed scare has died down only to be replaced by the discovery of a new and more terrifying security flaw called Venom. Security researchers announced the discovery of Venom only this morning, stating that it infected cloud-hosted networks from the inside. Venom allows hackers to move freely from one virtual machine to another free to nab data as they go.

Specifically Venom attacks a piece of technology known as a hypervisor which coordinates the virtual machines running on any system. Fortunately the Venom bug only affects the open source hyper visor known as Quick Emulator (QEMU). Still, the Venom bug leaves millions of potential users data open to attack. Prompting swift repsonses from major companies such as Amazon which has put out cryptic yet forceful statement that their cloud services are unaffected by the flaw.

“We are aware of the QEMU security issue assigned CVE-2015-3456, also known as “VENOM,” which impacts various virtualized platforms. There is no risk to AWS customer data or instances.”

It’s a bold statement for Amazon to make when it’s known that their cloud services run on Xen Hypervisors and are among those affected by Venom flaw. Since the company has declined to comment on how their cloud services remained unaffected we can only assume it is because they run on a variant of Xen that was unaffected. Several other major cloud service providers were not as fortunate as Amazon in dodging this latest security flaw.

Rackspace has stated that they’re currently working with customers to find a solution, though how fast they will be able to do so is hard to say. The IBM SoftLayer cloud, hit by the Xen vulnerabilities that affected Amazon and Rackspace last year, might also be affected; although IBM has yet to make a statement. Red Hat has put out a list of their products that were hit by the Venom flaw including Linux versions 5, 6, and 7 as well as Red Hat OpenStack Platforms. They have put out a detailed list of advisories and patches for all of the products that were affected.

Joynet was also forced to put out an advisory detailing the updates being brought to their systems to eliminate the risk and that the affected code has been isolated. Oracle on the other hand has been much less talkative about the problem refusing to say if their systems were affected or not. Security researchers, however, have cited the Oracle Virtual Box among the products that were affected. All users can do at the moment is keep an eye out for messages from their cloud service providers and CrowdStrike, who discovered the flaw, on how to protect themselves.

Source: [highlight]Fortune[/highlight]

Post Views: 28
W3Schools
Related ItemsAmazonHeartbleedIBM SoftLayerJoynetRackspaceRed HatvenomVenom cloud computing flaw
Industry and Service
May 14, 2015
Ryan Martinez

Just like most other people are here, Ryan is very passionate about gaming and technology. When he's not writing about video games, you'll likely find him talking about the latest gadgets.

Related ItemsAmazonHeartbleedIBM SoftLayerJoynetRackspaceRed HatvenomVenom cloud computing flaw

More in Industry and Service

Google misleading Australian consumers

Google Accused Of Misleading Users Over Data Privacy

John CusackJuly 27, 2020
Read More
apple-watch-sales-revenue-report-awesome-number

Apple Stock Prices Hit New All-Time High

Mike GuarinoJune 5, 2020
Read More
Google+

Google+ Suffers Yet Another Data Breach, Will Shut Down in April 2019

Ule LopezDecember 11, 2018
Read More
Steam

Various Game Developers Are Leaving Steam for the Epic Games Store

Ule LopezDecember 11, 2018
Read More
Gambling

Twitch is Under Investigation Regarding Ads for Illegal Gambling Sites

Ule LopezDecember 6, 2018
Read More
Store

Epic Games Will Launch a Store to Compete With Steam

Ule LopezDecember 4, 2018
Read More
Tumblr

Tumblr is Going to Ban All Adult Content Come December 17

Ule LopezDecember 3, 2018
Read More
Data

Facebook (Only Now) Admits to Have Been Sharing User Data with Companies

Ule LopezJuly 2, 2018
Read More
Nutella

Nutella Provides the Worst Advice Ever in World Password Day

Ule LopezMay 4, 2018
Read More
Scroll for more
Tap

Game Deals

EwinRacing Champion Series Gaming Chairs
  • Popular

  • Latest

  • Comments

  • The Future of Work and How Gaming Can Impact Your Productivity
    GamingMarch 9, 2022
  • Geek Chic: Key Fashion Pieces for Gamer Girls
    Opinion PiecesMarch 8, 2022
  • FIND BEST SPORTSBOOK FOR FOOTBALL
    Opinion PiecesMarch 7, 2022
  • Choosing the Right Provider for Cloud Migration
    Opinion PiecesMarch 24, 2022
  • iPhone 14 – 10 LEAKED Features!
    GadgetsJanuary 20, 2022
  • Stellar Data Recovery Professional for Mac
    Stellar Data Recovery Professional for Mac- It can surely save the day
    ReviewsSeptember 26, 2019
  • Fun Video Game Titles for the Entire Family
    Opinion PiecesMarch 31, 2022
  • Three Major Steps To Follow To Obtain CompTIA Security+ Certification
    Opinion PiecesMarch 30, 2022
  • Keep yourself safe: While playing online
    Opinion PiecesMarch 24, 2022
  • Choosing the Right Provider for Cloud Migration
    Opinion PiecesMarch 24, 2022
  • Just 10% Of iPhone X Users Want Apple To Remove The Notch, Survey Says – My WordPress Website says:

    […] There are lots of requests that Apple users are…

  • The 9 most plausible rumors in regards to the new iPhones – Mark Swarrts says:

    […] Just 10% Of iPhone X Users Want Apple To…

  • Onimusha: Warlords HD PS4/Xbox One Box Art Revealed - GameSinners says:

    […] mean for the series, as its success could result…

  • 5 Essential Tips to Setup a Web Hosting Business | Your Own Website says:

    […] Source link […]

Geek Reply

Greetings techies! We are Geek Reply, a website whose main goal is to bring you all the latest news and updates from within the industry and beyond. What can you expect to find here?

Professional journalism coupled with expository writing for the most part, but we also give our honest opinion or throw in a pinch of humor for good measure when we deem it necessary. Our team is comprised of enthusiasts from across a wide variety of fields ranging from smartphone junkies to camera nerds, and everything in between. But perhaps you were looking for your daily dose of science news or hoping to read about the latest apps. If that’s the case, don’t worry, you came to the right place.

GeekReply Secured with GeekReply Scured
Nintendo Switch GeekReply

Copyright © 2020 GeekReply - Webdesign & Marketing - iPublicitate

Google Blames Human Drivers for Self-Driving Cars Accidents
Alibaba Sued Over Sales Of Counterfeit Goods