Browse Definitions :
Definition

hypervisor attack

A hypervisor attack is an exploit in which an intruder takes advantage of vulnerabilities in the program used to allow multiple operating systems to share a single hardware processor.

Most often, the attacker uses hypervisor services such as create/delete, clone and migrate to execute and extend a threat. Rootkits are another potential means of hypervisor attack, although that method is less common.

A compromised hypervisor can allow the hacker to attack each virtual machine (VM) on a virtual host. One possible result is an increase in the resource usage of a VM that causes a denial of service across the host or even across a collection of servers. If multiple virtual servers are involved, the problem is made that much worse.

Larger software stacks and greater numbers of APIs, along with a lower degree of security assurance in the code, increase the risk. Larger software stacks and APIs for third-party applications present a larger attack surface because the larger the amount of code, the more coding errors it is likely to contain.

SolarWinds Inc., VMware, and HyTrust Inc. are among the vendors of monitoring products that can detect and prevent hypervisor attacks.

This was last updated in March 2015

Continue Reading About hypervisor attack

SearchCompliance
  • pure risk

    Pure risk refers to risks that are beyond human control and result in a loss or no loss with no possibility of financial gain.

  • risk reporting

    Risk reporting is a method of identifying risks tied to or potentially impacting an organization's business processes.

  • risk profile

    A risk profile is a quantitative analysis of the types of threats an organization, asset, project or individual faces.

SearchSecurity
  • payload (computing)

    In computing, a payload is the carrying capacity of a packet or other transmission data unit.

  • script kiddie

    Script kiddie is a derogative term that computer hackers coined to refer to immature, but often just as dangerous, exploiters of ...

  • cipher

    In cryptography, a cipher is an algorithm for encrypting and decrypting data.

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • fault-tolerant

    Fault-tolerant technology is a capability of a computer system, electronic system or network to deliver uninterrupted service, ...

  • synchronous replication

    Synchronous replication is the process of copying data over a storage area network, local area network or wide area network so ...

SearchStorage
  • object storage

    Object storage, also called object-based storage, is an approach to addressing and manipulating data storage as discrete units, ...

  • gigabyte (GB)

    A gigabyte (GB) -- pronounced with two hard Gs -- is a unit of data storage capacity that is roughly equivalent to 1 billion ...

  • MRAM (magnetoresistive random access memory)

    MRAM (magnetoresistive random access memory) is a method of storing data bits using magnetic states instead of the electrical ...

Close