Cloud Security

5 posts

/configconfusion-google-no-bounty/configconfusion-google-no-bounty.png

Google Told the Researcher Nice Catch Then Refused to Pay and Never Fixed It

June 23, 2026

Google told a security researcher his bug was a nice catch, lined up his payout, then eleven days later called it harmless and refused to pay a cent. The flaw …

/google-api-key-23-minutes/featured-image.png

Google API Keys Keep Working for 23 Minutes After You Delete Them

May 23, 2026

Google tells you the key is gone. It keeps working for 23 more minutes. When you delete a Google API key, a dialog appears that says the following: “Once …

/bing-rce-cve-2026-33819/featured-image.png

Microsoft Bing CVSS 10.0: CVE-2026-33819 Remote Code Execution Explained

April 25, 2026

Bing had a CVSS 10.0 vulnerability in its backend infrastructure, the same infrastructure that powers Edge, Windows Search, and Copilot integrations across …

VoidLink: 88,000 Lines of AI-Built Malware in 6 Days

January 21, 2026

One developer just built 88,000 lines of advanced malware in six days using AI. A single person with an AI coding assistant created a framework sophisticated …

/aws-supply-chain-vulnerability/featured-image.png

Two Missing Characters Nearly Compromised the AWS Supply Chain

January 17, 2026

Netflix. Twitch. iCloud. The servers of the CIA and NSA. 30% of all cloud infrastructure worldwide runs on Amazon Web Services. Two missing characters in a …