alt Hacker NewsSince some people seem to not be familiar with Joanna, she is a massively influential security researcher. IMO most famous for her "Blue pill" attacks on Vista and Xen: https://blackhat.com/presentations/bh-usa-06/BH-US-06-Rutkow..., https://invisiblethingslab.com/resources/bh08/part3.pdf. Her work demonstrated that hardware virtualization is not in fact the security panacea we wish it was, but that it too is vulnerable to attack just like any other layer of the stack. This revelation resulted in significant changes in the security world.
She is also famous for the Qubes OS project and coining the term "evil maid attack".
> "Blue pill" attacks on Vista and Xen [...] Her work demonstrated that hardware virtualization is not in fact the security panacea we wish it was, but that it too is vulnerable to attack just like any other layer of the stack.
Blue-pilling is a method for malware to hide from the OS by virtualizing it, not an attack on VMs. That's why it's called "blue pilling". I do agree though that VMs are not airtight and VM escapes have been demonstrated.