Lucene search
K

7 matches found

Wiz blog
Wiz blog
added 2026/06/17 2:33 p.m.15 views

The Red Agent POV: How it Reasoned its Way to SSRF

Part 1: How the Red Agent uncovered a multi-step attack chain allowing SSRF-to-Local-File-Read on a GCP Cloud Run API...

5.2AI score
Exploits0
Wiz blog
Wiz blog
added 2026/05/19 1:17 p.m.28 views

Introducing Runtime Threat Detection for Google Cloud Run

Wiz Runtime Sensor support for Google Cloud Run Containers is now generally available, giving teams real-time threat detection and response for their serverless container workloads...

5.8AI score
Exploits0
The Hacker News
The Hacker News
added 2025/04/02 1:48 p.m.23 views

Google Fixed Cloud Run Vulnerability Allowing Unauthorized Image Access via IAM Misuse

Cybersecurity researchers have disclosed details of a now-patched privilege escalation vulnerability in Google Cloud Platform GCP Cloud Run that could have allowed a malicious actor to access container images and even inject malicious code. "The vulnerability could have allowed such an identity t...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2024/02/26 9:51 a.m.22 views

Banking Trojans Target Latin America and Europe Through Google Cloud Run

Cybersecurity researchers are warning about a spike in email phishing campaigns that are weaponizing the Google Cloud Run service to deliver various banking trojans such as Astaroth aka Guildma, Mekotio, and Ousaban aka Javali to targets across Latin America LATAM and Europe. "The infection chain...

6.7AI score
Exploits0
Talos Blog
Talos Blog
added 2024/02/22 7:0 p.m.21 views

TikTok’s latest actions to combat misinformation shows it’s not just a U.S. problem

When we talk about the term "fake news," most people likely picture a certain person who made the term infamous. And when we talk about misinformation and disinformation, many will remember the "Russian troll farms" that popped up during the 2016 U.S. presidential election and were unmasked and...

6.9AI score
Exploits0
Talos Blog
Talos Blog
added 2024/02/20 1:0 p.m.21 views

Astaroth, Mekotio & Ousaban abusing Google Cloud Run in LATAM-focused malware campaigns

Google Cloud Run is currently being abused in high-volume malware distribution campaigns, spreading several banking trojans such as Astaroth aka Guildma, Mekotio and Ousaban to targets across Latin America and Europe. The volume of emails associated with these campaigns has significantly increase...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/06/07 2:0 a.m.16 views

Facebook clickbait leads to money scam for users

Online criminals are notorious for lurking on social media sites and tricking users into visiting malicious links. We recently observed a scheme where Facebook users are clicking on posts that lead to external websites set up for the sole purpose of scamming them out of hundreds of dollars via fa...

6.9AI score
Exploits0
Rows per page
Query Builder