This week's articles
Double Agents: Exposing Security Blind Spots in GCP Vertex AI
Unit 42 researchers found that GCP Vertex AI Agent Engine's default P4SA service account has excessive permissions, enabling credential theft via the metadata service. This allows privilege escalation to read all consumer GCS buckets, access restricted Google-internal Artifact Registry container images, and expose internal source code.
New widespread EvilTokens kit: device code phishing as-a-service
EvilTokens is a Microsoft device code PhaaS (active since Feb 2026) that harvests OAuth access/refresh tokens, auto-converts them to PRTs, and supports full BEC post-exploitation (Outlook, Graph, SharePoint, Azure). Over 1,000 domains identified; campaigns globally targeting finance, HR, and logistics sectors.
Legacy Image Provider to Cloudflare Images: Traffic Estimation and Safe Rollout
Mercari migrated a legacy image pipeline to Cloudflare Images, preserving existing URLs. Key challenges addressed: S3 HTTPS access via host-header-style routing, image quality/egress cost validation (adjusting quality settings), and zero-downtime rollout using regex-based deterministic traffic ramping with cache rebuild monitoring.
|