topic New CacheWarp AMD CPU attack lets hackers gain root in Linux VMs in Threats https://community.isc2.org/t5/Threats/New-CacheWarp-AMD-CPU-attack-lets-hackers-gain-root-in-Linux-VMs/m-p/64669#M975 <P>HI All</P><P>&nbsp;</P><P>Now exploiting Linux Virtual Machines:&nbsp;</P><P>&nbsp;</P><P>A new software-based fault injection attack, CacheWarp, can let threat actors hack into AMD SEV-protected virtual machines by targeting memory writes to escalate privileges and gain remote code execution.</P><P>This new attack exploits flaws in AMD's Secure Encrypted Virtualization-Encrypted State (SEV-ES) and Secure Encrypted Virtualization-Secure Nested Paging (SEV-SNP) tech designed to protect against malicious hypervisors and reduce the attack surface of VMs by encrypting VM data and blocking attempts to alter it in any way.</P><P>&nbsp;</P><P><A href="https://www.bleepingcomputer.com/news/security/new-cachewarp-amd-cpu-attack-lets-hackers-gain-root-in-linux-vms/" target="_blank">https://www.bleepingcomputer.com/news/security/new-cachewarp-amd-cpu-attack-lets-hackers-gain-root-in-linux-vms/</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P><P>&nbsp;</P><P>&nbsp;</P> Sat, 18 Nov 2023 06:20:50 GMT Caute_cautim 2023-11-18T06:20:50Z New CacheWarp AMD CPU attack lets hackers gain root in Linux VMs https://community.isc2.org/t5/Threats/New-CacheWarp-AMD-CPU-attack-lets-hackers-gain-root-in-Linux-VMs/m-p/64669#M975 <P>HI All</P><P>&nbsp;</P><P>Now exploiting Linux Virtual Machines:&nbsp;</P><P>&nbsp;</P><P>A new software-based fault injection attack, CacheWarp, can let threat actors hack into AMD SEV-protected virtual machines by targeting memory writes to escalate privileges and gain remote code execution.</P><P>This new attack exploits flaws in AMD's Secure Encrypted Virtualization-Encrypted State (SEV-ES) and Secure Encrypted Virtualization-Secure Nested Paging (SEV-SNP) tech designed to protect against malicious hypervisors and reduce the attack surface of VMs by encrypting VM data and blocking attempts to alter it in any way.</P><P>&nbsp;</P><P><A href="https://www.bleepingcomputer.com/news/security/new-cachewarp-amd-cpu-attack-lets-hackers-gain-root-in-linux-vms/" target="_blank">https://www.bleepingcomputer.com/news/security/new-cachewarp-amd-cpu-attack-lets-hackers-gain-root-in-linux-vms/</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P><P>&nbsp;</P><P>&nbsp;</P> Sat, 18 Nov 2023 06:20:50 GMT https://community.isc2.org/t5/Threats/New-CacheWarp-AMD-CPU-attack-lets-hackers-gain-root-in-Linux-VMs/m-p/64669#M975 Caute_cautim 2023-11-18T06:20:50Z