Enable hardened VirtualBox, which ensures that only the binaries in the system path get access to the devices exposed by the kernel modules instead of all users in the vboxusers group. Disabling this can put your system’s security at risk, as local users in the vboxusers group can tamper with the VirtualBox device files.

true