• POLITICS
  • SCIENCE
    • Astronomy
    • Physics
    • Biology
    • Geology
    • Environment
    • Medicine and Health
    • Sociology
    • Psychology
  • MOVIES & TV SHOWS
  • TECHNOLOGY
    • Artificial Intelligence
    • Virtual Reality
    • Bionics
    • Nanotechnology
    • Engineering
    • Robotics
    • Space Exploration
    • Transport
    • Industry and Service
  • GADGETS
    • Mobile Devices
    • Wearables
    • Consoles
    • Hi-Tech
  • GEEK CULTURE
    • Gaming
    • Comics
    • Thingamajigs
  • MUSIC
  • SOFTWARE
    • APPS
      • Android
      • iOS
      • Windows
  • HARDWARE
  • CARS
  • REVIEWS
  • Advertise
  • Geek Reply Jobs
  • Contact Us
Geek Reply
  • HOME
  • Editorials
  • Geek Squad
  • GeekReply Jobs
  • Contact Us
  • Facebook

  • Twitter

  • Google+

  • LinkedIn

  • RSS

Industry and Service

Amazon Claims Their Cloud Services Dodged the Venom Security Flaw

Amazon Claims Their Cloud Services Dodged the Venom Security Flaw
Ryan Martinez
May 14, 2015

Amazon has made a bold & cryptic claim that their cloud services were not bitten by the venom flaw

Last year’s discovery of the heartbleed bug, which infected the very backbone of the internet, sent shock waves across the web. Leaving hundreds of thousands of everyday users wondering how safe they and their data really were online. Now the Heartbleed scare has died down only to be replaced by the discovery of a new and more terrifying security flaw called Venom. Security researchers announced the discovery of Venom only this morning, stating that it infected cloud-hosted networks from the inside. Venom allows hackers to move freely from one virtual machine to another free to nab data as they go.

Specifically Venom attacks a piece of technology known as a hypervisor which coordinates the virtual machines running on any system. Fortunately the Venom bug only affects the open source hyper visor known as Quick Emulator (QEMU). Still, the Venom bug leaves millions of potential users data open to attack. Prompting swift repsonses from major companies such as Amazon which has put out cryptic yet forceful statement that their cloud services are unaffected by the flaw.

“We are aware of the QEMU security issue assigned CVE-2015-3456, also known as “VENOM,” which impacts various virtualized platforms. There is no risk to AWS customer data or instances.”

It’s a bold statement for Amazon to make when it’s known that their cloud services run on Xen Hypervisors and are among those affected by Venom flaw. Since the company has declined to comment on how their cloud services remained unaffected we can only assume it is because they run on a variant of Xen that was unaffected. Several other major cloud service providers were not as fortunate as Amazon in dodging this latest security flaw.

Rackspace has stated that they’re currently working with customers to find a solution, though how fast they will be able to do so is hard to say. The IBM SoftLayer cloud, hit by the Xen vulnerabilities that affected Amazon and Rackspace last year, might also be affected; although IBM has yet to make a statement. Red Hat has put out a list of their products that were hit by the Venom flaw including Linux versions 5, 6, and 7 as well as Red Hat OpenStack Platforms. They have put out a detailed list of advisories and patches for all of the products that were affected.

Joynet was also forced to put out an advisory detailing the updates being brought to their systems to eliminate the risk and that the affected code has been isolated. Oracle on the other hand has been much less talkative about the problem refusing to say if their systems were affected or not. Security researchers, however, have cited the Oracle Virtual Box among the products that were affected. All users can do at the moment is keep an eye out for messages from their cloud service providers and CrowdStrike, who discovered the flaw, on how to protect themselves.

Source: [highlight]Fortune[/highlight]

Post Views: 419
W3Schools
Related ItemsAmazonHeartbleedIBM SoftLayerJoynetRackspaceRed HatvenomVenom cloud computing flaw
Industry and Service
May 14, 2015
Ryan Martinez

Just like most other people are here, Ryan is very passionate about gaming and technology. When he's not writing about video games, you'll likely find him talking about the latest gadgets.

Related ItemsAmazonHeartbleedIBM SoftLayerJoynetRackspaceRed HatvenomVenom cloud computing flaw

More in Industry and Service

Users claim that third-party Twitter apps are having problems

Zach RileyJanuary 13, 2023
Read More

Robotics division of Alpha Layoffs are an intrinsic blow

Zach RileyJanuary 13, 2023
Read More

The Matter standard is now supported by Google’s smart home appliances

Zach RileyJanuary 6, 2023
Read More

CES 2023 :Learn the latest information from the greatest technology event of the year

Zach RileyJanuary 6, 2023
Read More

The creation of some of Spotify’s live audio shows is coming to an end

Zach RileyDecember 14, 2022
Read More

For the PS5, PS4, and Xbox One, Jeff Minter remakes the Atari Arcade Prototype Akka Arrh

Zach RileyDecember 7, 2022
Read More

Republican lawmakers and Apple CEO Tim Cook meet in Washington

Zach RileyNovember 30, 2022
Read More

The $7.99 Twitter Blue plan with verification and fewer advertisements is now available on Twitter

Zach RileyNovember 6, 2022
Read More

Twitter cut 15% of its trust and safety staff, but they say it won’t have any effect on how they moderate

Zach RileyNovember 5, 2022
Read More
Scroll for more
Tap
  • Popular

  • Latest

  • Comments

  • The Focus of More Wo Long: Fallen Dynasty Gameplay Is New Boss Fight
    GamingJanuary 11, 2023
  • What Had Little Devil Inside Done?
    GamingJanuary 11, 2023
  • The Dead Space PS5 Launch Trailer Features Isaac Clarke’s Return
    GamingJanuary 12, 2023
  • Now available on PS5, PS4, and 13 more PS Plus Extra, Premium Games
    ConsolesJanuary 17, 2023
  • iPhone 14 – 10 LEAKED Features!
    GadgetsJanuary 20, 2022
  • Stellar Data Recovery Professional for Mac
    Stellar Data Recovery Professional for Mac- It can surely save the day
    ReviewsSeptember 26, 2019
  • Producer of the Final Fantasy 7 remake claims that the narrative changes are “necessary” to keep players engaged
    ConsolesFebruary 7, 2023
  • In Company of Heroes 3, the Deutsche Afrikakorps Blitz onto the Battlefield
    GamingFebruary 7, 2023
  • Capes Attacks Turn-Based Superhero Tactics on PS5, PS4, and Xbox One
    GamingFebruary 7, 2023
  • Last of Us Due to the Super Bowl, HBO Episode 5 airs two days early
    ConsolesFebruary 7, 2023
  • Ule || TSR says:

    That is far from the intention in this article. Especially…

  • Romuska Palo Ur Laputa says:

    Most of the characters became unlikable and regressed backwards, the…

  • reversalmushroom says:

    Lauren Faust has not been part of My Little Pony…

  • reversalmushroom says:

    Like what?

Geek Reply

Greetings techies! We are Geek Reply, a website whose main goal is to bring you all the latest news and updates from within the industry and beyond. What can you expect to find here?

Professional journalism coupled with expository writing for the most part, but we also give our honest opinion or throw in a pinch of humor for good measure when we deem it necessary. Our team is comprised of enthusiasts from across a wide variety of fields ranging from smartphone junkies to camera nerds, and everything in between. But perhaps you were looking for your daily dose of science news or hoping to read about the latest apps. If that’s the case, don’t worry, you came to the right place.

GeekReply Secured with GeekReply Scured
Nintendo Switch GeekReply

Copyright © 2022 GeekReply - Webdesign & Marketing - iPublicitate

Google Blames Human Drivers for Self-Driving Cars Accidents
Alibaba Sued Over Sales Of Counterfeit Goods
wpDiscuz