» Tag
cloud-security
5 postsContaining Financial Blast Radius from Bedrock and Marketplace Cloud Spend
A compromised AWS credential can turn into a major financial incident within hours via Bedrock and Marketplace. A DevOps governance model to limit blast radius before detection catches up.
awscloud-securitydevopsfinopsWriteOut Flaw in Writer AI Enabled Cross-Tenant Account Takeover
A critical flaw dubbed WriteOut let attackers hijack any Writer AI account by leaking session cookies through the platform's sandbox. Writer has since patched it.
ai-securitywriter-aisandboxvulnerability-disclosureJanuscape: 16-Year-Old Critical Linux KVM Escape, PoC Public
CVE-2026-53359 (Januscape) is a critical Linux KVM guest-to-host escape in the shadow MMU, present since 2010; a public PoC causes host kernel panic.
linuxkvmvirtualizationkernel-exploitGoogle Denies Bounty for a Critical GCP Bug It Still Hasn't Fixed
Researcher Justin O'Leary found a critical Google Cloud IAM bypass in Config Connector; Google first praised it, then denied the bounty and left it unfixed.
google-cloudkubernetesbug-bountyiamJanuscape: KVM/x86 Guest-to-Host Escape Flaw (CVE-2026-53359)
Januscape (CVE-2026-53359) is a critical KVM/x86 guest-to-host escape flaw in the shadow MMU, dormant for 16 years and exploitable on both Intel and AMD.
kvmvirtualizationlinux-kernelcve