The GCP Jenga Tower: Hacking Millions of Google's Servers With a Single Package (and more) (July 17th)
Thursday, July 17th, 2025: 1:00 PM to 2:00 PM
Cloud security is so complex that even cloud providers get it wrong sometimes - one simple faulty command argument by Google Cloud Platform (GCP) was enough to enable us to find a critical RCE vulnerability (dubbed 'CloudImposer') in GCP customers' workloads and Google's internal production servers, affecting millions of cloud servers.
Virtual
I will start the talk by sharing the thrilling process of discovering the CloudImposer vulnerability, including getting hundreds of DNS requests from internal Google servers, until a PyPI guardrail stopped us.
However, this talk is about more than just a vulnerability.
Hosted by Blackhat