ConfusedFunction Vulnerability in GCP
Researchers have uncovered a privilege escalation vulnerability in the Cloud Functions service on the Google Cloud Platform, that could allow an attacker to gain unauthorized access to other services and…
GhostToken Exposes GCP
Researchers have detailed on a zero-day vulnerability called GhostToken that could let threat actors gain unremovable access to a victim's Google account by converting an authorized third-party app into a…
Google Cloud Security and Orchestration Enhancement
Google Cloud has introduced new features that will enable companies to secure and manage their cloud environments more easily. The first feature is the Workforce Identity Federation, which is rolling…
Cross Site Scripting Vulnerability found in Google Cloud and Play
Vulnerabilities existed in Google Cloud, DevSite, and Google Play could have allowed attackers to achieve cross-site scripting attacks, opening the door to account hijacks. These discoveries made researcher to earn…
Google Advanced API Security Management
Google Cloud has announced a preview of Advanced API Security built on Apigee – an application programming interface management platform for detecting and fixing API misconfigurations and thwarting malicious bots.…