Security News
Cybersecurity researchers have disclosed a privilege escalation vulnerability impacting Google Cloud Platform's Cloud Functions service that an attacker could exploit to access other services and sensitive data in an unauthorized manner. "An attacker could escalate their privileges to the Default Cloud Build Service Account and access numerous services such as Cloud Build, storage, artifact registry and container registry," the exposure management company said in a statement.
Prowler is an open-source security tool designed to assess, audit, and enhance the security of AWS, GCP, and Azure. "Easy to use from the command line with simple, understandable output, Prowler offers standard reporting formats like CSV and JSON, enabling users to thoroughly examine findings across any cloud provider, all in a uniform format. Its seamless integrations with Security Hub and S3 facilitate easy incorporation with other SIEMs, databases, and more. The ability to write custom checks and develop custom security frameworks is crucial for our expanding community," Toni de la Fuente, the creator of Prowler, told Help Net Security.
Cybersecurity researchers have disclosed details of a now-patched zero-day flaw in Google Cloud Platform that could have enabled threat actors to conceal an unremovable, malicious application inside a victim's Google account. "The vulnerability allows attackers to gain permanent and unremovable access to a victim's Google account by converting an already authorized third-party application into a malicious trojan app, leaving the victim's personal data exposed forever," Astrix said in a report.
Malicious actors can take advantage of "Insufficient" forensic visibility into Google Cloud Platform to exfiltrate sensitive data, a new research has found. "Unfortunately, GCP does not provide the level of visibility in its storage logs that is needed to allow any effective forensic investigation, making organizations blind to potential data exfiltration attacks," cloud incident response firm Mitiga said in a report.
Attackers can exfiltrate company data stored in Google Cloud Platform storage buckets without leaving obvious forensic traces of the malicious activity in GCP's storage access logs, Mitiga researchers have discovered. "In normal usage, files inside storage objects are read multiple times a day as part of day-to-day activity of the organization," Mitiga cloud incident responder Veronica Marinov noted.
Cobalt Iron announced that its Compass enterprise software-as-a-service backup platform now enables seamless management of Google Cloud Platform virtual machine snapshots. Through this new capability, Compass users are able to manage backup retentions and schedules for GCP VM snapshots using the Compass Commander GUI, the same interface with which they manage their enterprise backups.
CloudPassage announced the addition of Google Cloud Platform support for Halo Cloud Secure, the cloud security posture management service of the Halo cloud security platform. With this release, Halo Cloud Secure automatically discovers and inventories cloud assets and resources hosted on GCP, determines their security posture, alerts users to misconfigurations and exposures, and provides best-practice remediation advice.
Tufin announced that Tufin SecureCloud now supports the Google Cloud Platform, allowing customers to use SecureCloud to define and monitor compliance with security guardrails. As more organizations adopt a multi-cloud strategy, Tufin customers can now operate secured applications across the three leading cloud providers - Amazon Web Services, Microsoft Azure, and Google Cloud Platform.
ECS, a leader in advanced technology, science, and engineering solutions, announced an expansion of its services as a Google Cloud Platform partner. Through the ECS Cloud Center of Excellence, ECS delivers solutions from leading cloud service providers to deploy mission-critical workloads to some of the largest organizations in the world.
Qumulo, the leader in enterprise-proven hybrid cloud file storage, announced the availability of its file storage software in the Google Cloud Platform (GCP) Marketplace. Qumulo for GCP provides...