Researchers determine old vulnerabilities pose real-world threat to sensitive data in public clouds

Researchers determine old vulnerabilities pose real-world threat to sensitive data in public clouds

Using a seven-year-old vulnerability, researchers said they were able to realistically leak private data from public clouds, suggesting that a “lack of concern” about such supposedly impractical attacks is misguided, according to a presentation delivered Monday. The anonymous researchers presented their findings at a hacker conference, WHY2025, in the Netherlands, and they leaned on the kind of “transient execution” vulnerabilities that attracte…

A New Security Threat to Public Clouds From Old Vulnerabilities

Researchers at the WHY2025 hacker forum said they were able to combine the Spectre and L1TF processor vulnerabilities discovered in 2018 to create a new transient execution attack called L1TF Reloaded that allowed them to leak data from AWS and Google Cloud instances. The post A New Security Threat to Public Clouds From Old Vulnerabilities appeared first on Security Boulevard.