Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

With zero-click exploits that we certainly do not know of, Qubes OS offers some peace of mind.


Unless there's a zero day in Xen in which case the entire security model falls apart. With all these cloud providers using Xen, I have no doubt that there's already one out there.


This is true. But the code base of Xen is significantly smaller than that of a full operating system running bare metal, so the likeliness of a zero-day comprising Qubes is less likely (but possible).


If there is a zero day in Xen, your attackers are probably also going to be having a very, very bad day.


> Unless there's a zero day in Xen

Most of the time, zero days in Xen do not affect Qubes: https://www.qubes-os.org/security/xsa/#statistics




Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: