Security News

VirtualBox 7.1: This is a major update, here’s what’s new
2024-09-12 07:47

VirtualBox is a full virtualizer for x86 hardware designed for servers, desktops, and embedded systems. VirtualBox 7.1 introduces an enhanced user interface, cloud VM management, ARM support,...

Microsoft Teams, Virtualbox, Tesla zero-days exploited at Pwn2Own
2023-03-23 23:33

Competitors successfully exploited zero-day bugs in multiple products during the second day of Pwn2Own Vancouver 2023, including the Tesla Model 3, Microsoft's Teams communication platform, the Oracle VirtualBox virtualization platform, and the Ubuntu Desktop operating system. Team Viettel hacked also Microsoft Teams via a 2-bug chain to earn $78,000 and Oracle's VirtualBox using a Use-After-Free bug and an uninitialized variable for $40,000.

Microsoft removes Windows 11 update block for VirtualBox users
2022-03-14 15:14

Microsoft has removed the last Windows 11 safeguard hold after Oracle addressed a known VirtualBox issue causing errors and virtual machine start failures when Hyper-V or the Windows Hypervisor were installed. Safeguard holds prevent users from upgrading to Windows 11 to protect their systems against potential upgrade issues, in this case, software instability caused by compatibility issues between Windows and VirtualBox.

Researchers Detail Privilege Escalation Bugs Reported in Oracle VirtualBox
2021-11-23 22:54

A now-patched vulnerability affecting Oracle VM VirtualBox could be potentially exploited by an adversary to compromise the hypervisor and cause a denial-of-service condition. "Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox," the advisory reads.

Microsoft confirms Windows 11 issues with VirtualBox, Intel Killer
2021-10-05 08:56

Right after officially releasing Windows 11, Microsoft has added three know issues to the Windows 11 12H2 release health dashboard. Microsoft has released Windows 11 worldwide yesterday and is now rolling it out via Windows Update to new Windows 10 devices and those pre-loaded with Windows 11.

Windows 11 is no longer compatible with Oracle VirtualBox VMs
2021-09-18 17:59

Windows 11 is no longer compatible with the immensely popular Oracle VirtualBox virtualization platform after Microsoft changed its hardware requirement policies for virtual machines. "Microsoft recognizes that the user experience when running the Windows 11 in virtualized environments may vary from the experience when running non-virtualized. So, while Microsoft recommends that all virtualized instances of the Windows 11 follow the same minimum hardware requirements as described in Section 1.2, the Windows 11 does not apply the hardware-compliance check for virtualized instances either during setup or upgrade," explains Microsoft in their Windows 11 minimum hardware requirements document.

Create a VirtualBox virtual machine backup on a Linux host for security
2021-07-30 19:58

Jack Wallen teaches you how to use simple bash scripts to automate backing up your VirtualBox VMs.

AcidBox Malware Uncovered Using Repurposed VirtualBox Exploit
2020-06-17 22:12

In a report released Wednesday, Palo Alto Networks' Unit 42 sheds new light onto attacks against the popular open-source virtualization software VirtualBox that used the AcidBox malware. The Turla Group malware, researchers said, also targeted a second DSE vulnerability tied to a signed VirtualBox driver using what would later be identified as AcidBox malware.

Oracle VirtualBox, Adobe Reader, Windows Hacked at Pwn2Own 2020
2020-03-20 05:12

On the second day of the Pwn2Own 2020 hacking competition, participants earned a total of $90,000 for exploits targeting Oracle VirtualBox, Adobe Reader and Windows. Amat Cama and Richard Zhu of team Fluoroacetate earned $50,000 for demonstrating that they could hijack a system by exploiting use-after-free vulnerabilities in Adobe Reader and the Windows kernel.

Week in review: VirtualBox 0day, GPU side channel attacks, vulnerable self-encrypting SSDs
2018-11-11 18:41

Here’s an overview of some of last week’s most interesting news and articles: Five key considerations when developing a Security Operations Center Organizations should start with the following...