Researchers exploit virtual machine memory using Raspberry Pi technology

Researchers have discovered a method to exploit memory on certain virtual machines using a Raspberry Pi. This attack targets AMD's Secure Encrypted Virtualization-Secure Nested Paging (SEV-SNP) technology, which is designed to protect data in cloud computing environments. The technique involves using a Raspberry Pi Pico to manipulate memory settings, potentially allowing unauthorized access to sensitive data. While the equipment is inexpensive and accessible, attackers would typically need physical access to the machines to execute the attack. AMD has acknowledged the issue, rating it as a medium severity problem. The company recommends using memory modules that lock specific settings and adhering to physical security measures to prevent unauthorized access.