India

Google Rewards 2 Indian Hackers; Know Why

By
OB Bureau

New York: New York: Google has rewarded two Indian hackers for reporting vulnerabilities in four Google Cloud Platform (GCP) projects.

Google gave Sreeram KL and Sivanesh Ashok $22,000 (around Rs 18 lakh) as bug bounty, which is given by tech giants to individuals who detect an error or vulnerability in their computer programme or system.

The hacker duo’s biggest bounty was machine learning training and deployment platform Vertex AI, which earned them a pair of $5,000 payouts for a server-side request forgery (SSRF) bug and patch bypass, The Daily Swig reported.

Sivanesh explained the bug and how they came across vulnerabilities in GCP in his personal blog ‘Geeky Cat’.

“A write-up about how Sreeram KL and I found a bug in Google Cloud that allowed us to take over a victim’s compute engine VM,” Sivanesh wrote on Twitter.

“The flaw resided in Vertex AI’s workbench feature, which enables the creation of Jupyter notebook-based development environments on the cloud,” Sreeram said in his blog.

What Is SSRF Bug?

SSRF is a web security vulnerability which allows an attacker to induce the server-side application make requests to an unintended location.

The attacker may cause the server to make a connection to internal-only services within the organisation’s infrastructure. The attacker may also be able to force the server to connect to arbitrary external systems, potentially leaking sensitive data such as authorization credentials.

OB Bureau

Recent Posts

Hina Khan Shares Warm Post For ‘Humble And Kind’ Salman Khan

Mumbai: Television actress Hina Khan, who is battling breast cancer, recently met host Salman Khan…

November 23, 2024

AR Rahman Sends Legal Notice To Defamers Over Link-Up Rumours With Mohini Dey

 Mumbai: Following reports of his alleged link-up with bassist Mohini Dey, renowned music composer AR…

November 23, 2024

Tamannah Bhatia & Vijay Varma Go House Hunting; Is Marriage On Cards?

Mumbai: The love story of actors Tamannaah Bhatia and Vijay Varma has not been clandestine.…

November 23, 2024

Puri Jagannath Temple Admn Receives Ratna Bhandar GPR-GPS Survey Report; Asks ASI To Start Repair Work

Puri: Shree Jagannath Temple Administration (SJTA) has received the report of the Ratna Bhandar’s GPR-GPS…

November 23, 2024

Book Review: A Redemptive Tale Of Losing And Finding

With his debut novel ‘The Other Side of the Rainbow’ published recently, Niranjan Nayak, an…

November 23, 2024

Santosh Trophy: Odisha Seal Spot In Final Round With 2 Big Wins

Bhubaneswar: Odisha outplayed Chhattisgarh 4-1 on Saturday to seal a berth in the final round…

November 23, 2024

Diljit Dosanjh Asks States To Go Dry; ‘I Will Then Stop Singing Songs On Alcohol’

Mumbai: The Telangana government’s notice barring him from singing songs promoting alcohol and drugs at…

November 23, 2024

PM Modi To Participate In ‘Odisha Parba 2024’ In Delhi Tomorrow

Bhubaneswar: Prime Minister Narendra Modi will participate in the ‘Odisha Parba 2024’ programme on Sunday…

November 23, 2024