Malware often checks for the presence of certain hardware components, like CPU fans, to detect if it is running in a virtual machine. The article explains how to trick a virtual machine into believing it has a CPU fan by manipulating SMBIOS data, specifically using Xen or QEMU/KVM to set custom SMBIOS configurations. The process involves creating a binary file with the appropriate data structures to bypass these checks and facilitate malware analysis.

Modern cloud patterns have transformed infrastructure management, shifting the responsibility from local service providers to managed services as businesses increasingly prefer turnkey solutions. As virtualization evolves, traditional IaaS is being overshadowed by PaaS offerings from hyperscalers like AWS and GCP, which present challenges for local providers. The rise of containerization technologies, particularly Kubernetes, further emphasizes the need for intelligent orchestration and automation in managing workloads.

microsandbox provides a secure and efficient way to execute untrusted code using microVMs, offering hardware-level isolation and instant startup times under 200ms. It allows developers to create tailored sandbox environments for various programming languages and supports integration with AI tools for rapid development and deployment of applications. With features like project-based management and temporary sandboxes, microsandbox enhances productivity while ensuring code safety.

AWS has announced the general availability of Amazon Elastic VMware Service (Amazon EVS), enabling users to run VMware Cloud Foundation directly within their Amazon Virtual Private Cloud. The service offers flexibility, control, and the ability to retain familiar VCF software while leveraging AWS's infrastructure and services, including various consumption models for cost optimization. Amazon EVS is now available in six AWS Regions and supports VCF version 5.2.1.

Red Hat OpenShift Virtualization, combined with HashiCorp Vault, addresses the secret zero problem in virtualized infrastructures by establishing machine identities for VMs. The article explores how to implement secure introductions and leverage Kubernetes-native patterns to enhance security and streamline operations for virtual machines.

Google Cloud has launched the M4 VMs, a new memory-optimized machine series designed for memory-intensive workloads like SAP HANA and SQL Server, offering up to 66% better price-performance compared to previous models. The M4 instances, powered by Intel's 5th generation Xeon processors, feature enhanced capabilities with up to 6TB of memory and enterprise-grade reliability, catering to demanding business-critical applications. Additionally, these VMs utilize advanced technologies like Titanium for low-latency performance and Hyperdisk for superior storage capabilities.

Firecracker, an open-source software developed by AWS, enables the creation and management of lightweight virtual machines that enhance the performance and security of serverless applications like AWS Lambda. The article discusses its applications in Amazon Bedrock AgentCore for AI agents and the Aurora DSQL serverless relational database, highlighting the benefits of session isolation, fast VM cloning, and efficient memory management.

Cloud Hypervisor has implemented a No AI code policy to decline contributions that may involve AI-generated content, aiming to mitigate legal risks and ensure compliance with licensing. Despite this precaution, concerns have been raised about the effectiveness of this policy, as contributors may still inadvertently incorporate AI assistance in their code. The latest version also expands the support for virtual CPUs and includes enhancements for running Windows 11 guests.

The guide provides instructions on running Windows inside a Docker container using the dockurr/windows image, detailing configuration options for the installation process, storage, resource allocation, and network settings. Users can customize their setup, including selecting different Windows versions, adjusting hardware resources, and managing shared folders, all while ensuring compatibility with various Docker environments.

Flintlock is a community-driven service for creating and managing microVMs on host machines, supporting Cloud Hypervisor and Firecracker VMMs. Initially developed by Weaveworks for Kubernetes clusters, it is now useful for a variety of lightweight virtualization needs, with features for lifecycle management and metrics exposure. Contributions and feedback are encouraged from the community.

Container is a Swift-based tool designed for creating and running lightweight Linux containers on Mac with Apple silicon, supporting OCI-compatible images. It requires macOS 26 or later and provides features for building, running, and publishing container images, alongside detailed documentation for users and developers. Contributions to the project are encouraged as it continues to evolve towards a stable release.

The Containerization package enables applications to utilize Linux containers on Apple silicon, leveraging Swift and the Virtualization.framework. It offers APIs for managing OCI images, creating optimized Linux kernels, and facilitating lightweight virtual machines with fast boot times, while allowing interaction with remote registries and containerized processes. Users can build the package from source and contribute to its ongoing development.

Google is developing a Linux Terminal app for Android that allows on-device app development and the potential to run graphical Linux applications and games. This initiative aims to transform Android into a competitive desktop platform, addressing previous limitations in app development directly on the OS. There are ongoing improvements in performance and functionality, with future possibilities including gaming support.

NovaHypervisor is a defensive x64 Intel hypervisor designed to protect against kernel-based attacks by safeguarding memory structures and defense products on Windows 10 and later. Written in C++ and Assembly, it is in early development, not yet suitable for production, and includes instructions for setup, memory protection commands, and logging. Users must enable specific virtualization features to run the hypervisor effectively.

The article provides an in-depth guide to understanding Linux control groups (cgroups), particularly focusing on cgroup v2 introduced in kernel 4.5. It discusses how to create cgroups to manage resource allocations for processes and demonstrates practical examples of applying memory and CPU limits using a NixOS virtual machine. The author emphasizes the Unix philosophy of treating everything as a file to interact with the Linux kernel effectively.

Cirrus Labs has successfully enforced its Fair Source License after settling a dispute with another company that exceeded the license's free-use limits by using the Tart Virtualization Toolset to create a competing product. The settlement, which remains confidential, reaffirms Cirrus Labs' commitment to protecting its licensing strategy while supporting its community of users.

The article discusses User Mode Linux (UML), a method for running a Linux kernel as a userspace application without needing traditional virtualization software or root privileges. It explains how UML operates as a paravirtualized kernel, leveraging existing kernel functionalities to create a nested Linux environment, and provides guidance on building a UML kernel specifically for x86 platforms.

The article presents Katakate's k7, a self-hosted infrastructure designed for creating lightweight virtual machine (VM) sandboxes to safely execute untrusted code. It supports a command-line interface, API, and Python SDK, leveraging technologies like Kubernetes, Kata, and Firecracker for efficient VM management. Currently in beta, it offers features for serverless applications, CI/CD runners, and blockchain execution, while being open-source under the Apache-2.0 license.

The article presents a detailed diagram of the entire Linux Network Stack, covering various components such as virtualization, network sockets, the upper and lower layers of the network stack, and network functions accelerated by NIC. It also includes tips for optimizations and statistics for each section. This resource is part of the book "Operativni sustavi i računalne mreže - Linux u primjeni."

The article provides an update on TinyKVM, which has recently been open-sourced and now includes limited support for running unmodified executables in addition to its original computation focus. The author describes innovations in system call emulation and hybrid per-request isolation that enhance performance, especially in running complex runtimes like Deno with lower latency compared to native execution. Additionally, a new remote procedure call mechanism is introduced, allowing for efficient intercommunication between loaded binaries.