An attacker with access to a hostNetwork=true container with CAP_NET_RAW
capability can listen to all the traffic going through the host and inject arbitrary
traffic, allowing to tamper with most u...
Mon, Jun 15th, 2020
An RCE in Google Cloud Deployment Manager could have allowed an attacker to make
requests to internal Google services, authenticated as a privileged service account.
Thu, May 21st, 2020
GuardDuty detected CloudTrail being outright disabled, but did not detect if an attacker with the
necessary permissions filtered out all events from CloudTrail via PutEventSelectors, resulting in
Thu, Apr 23rd, 2020