Malicious actors could plant firmware backdoors on bare metal cloud servers and use them to disrupt applications, steal data, and launch ransomware attacks, firmware security company
Bare metal cloud services provide organizations the hardware needed to run their applications, without providing a hypervisor. Unlike in the case of other types of cloud services, where a server can have multiple tenants, bare metal services provide exclusive access to the entire physical server. Once a customer no longer needs the server, the hardware is reassigned to another customer.
Researchers at Eclypsium discovered that hackers could plant firmware backdoors on these servers that can later be leveraged against the device’s next customer. The attack method has been dubbed “Cloudborne.”