Dark Reading

Google's Vertex AI Is Over-Privileged. That's a Problem

The AI agents many organizations have begun deploying to automate complex business and operational workflows can be quietly turned against them if not properly configured with the right permissions.
Hosted on MSN

Vertex AI 'double agent' flaw exposes customer data and Google's internal code

Unit 42 reveals misconfigured Vertex AI agents in Google Cloud can be hijacked into “double agents” Excessive default permissions let attackers pivot, access Cloud Storage, and expose proprietary ...