SecurityWeek

Researchers Earn $150,000 for L1TF Exploit Leaking Data From Public Cloud

L1TF Reloaded is a vulnerability combining the old L1TF and half-Spectre hardware flaws to bypass deployed software ...
The Hacker News

ShadowV2 Botnet Exploits Misconfigured AWS Docker Containers for DDoS-for-Hire Service

ShadowV2 botnet exploits AWS Docker flaws using Python C2 and Go RAT, enabling sophisticated DDoS-for-hire attacks.
9to5Google

OnePlus devices have a big SMS vulnerability, but a patch is finally on the way

A long-standing vulnerability surrounding SMS and MMS has been discovered on OnePlus devices, but the company is finally working on a fix.

As many as 2 million Cisco devices affected by actively exploited 0-day

As many as 2 million Cisco devices are susceptible to an actively exploited zero-day that can remotely crash or execute code on vulnerable systems.
WeLiveSecurity

Roblox executors: It’s all fun and games until someone gets hacked

For starters, Roblox executors, even the “reputable” (not malicious) ones, violate Roblox’s Terms of Use. The platform’s anti-cheat safeguards, plus community reporting, keep tabs on suspicious ...