Ariel Kalman is a Cloud Security Researcher at Mitiga, focused on uncovering new attack vectors in cloud environments. With a background in application security, Ariel brings a sharp eye for identifying where things break — and how attackers might take advantage. He spends his days exploring the edge cases others overlook… and his nights wondering why “misconfiguration” is still such a popular attack surface.
Tag Your Way In: New Privilege Escalation Technique in GCP
GCP offers fine-grained access control using Identity and access management (IAM) Conditions, allowing organizations to restrict permissions based on context like request time, resource type and resource tags.