Skip to main content

Rackspace resolves 'dirty disk' vulnerability

posted onApril 27, 2012
by l33tdawg

Cloud provider Rackspace has closed a data separation vulnerability that could allow third parties to access fragments of other customers' data. 

The vulnerability was identified by consultants from Context Security who were able to access fragments of databases and elements of system information that was left on other users' "dirty disks".

Context Security said the vulnerability affected cloud providers including VPS.NET and Rackspace and stemmed from how some providers automatically provisioned new virtual servers, initialised operating systems and allocated new storage space. Security measures to provide separation between different nodes on a multi-user platform sometimes were not implemented, for performance reasons or due to errors, the researchers found.

Source

Tags

Security Industry News cloud

You May Also Like

Recent News

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th