Researchers develop proof-of-concept attack for stealing private RSA keys from Amazon’s EC2 cloud infrastructure. Amazon says customers using current software and following security best practices are not vulnerable to the attack. The attack is reminiscent of, and builds off, work done six years ago by researchers at MIT and UC-San Diego. The WPI researchers essentially took advantage of this technique to device a new way for extracting RSA keys on a target VM. The method is based on a previously used technique called “prime and probe” involving the use of shared memory caches.”]
Source: https://www.darkreading.com/cloud/amazon-downplays-new-hack-for-stealing-crypto-keys-in-cloud