Voice&Data

Tenable uncovers ‘LeakyLooker’ flaws in Google Looker Studio

Research: Google has patched 9 Looker Studio flaws identified by Tenable that exposed cross-tenant data risks and enabled potential SQL injection and data exfiltration.
The Hacker News

New "LeakyLooker" Flaws in Google Looker Studio Could Enable Cross-Tenant SQL Queries

Nine “LeakyLooker” flaws in Google Looker Studio allowed cross-tenant SQL access across GCP services before being patched.

"LeakyLooker" Discovery Reveals Nine Vulnerabilities in Google Looker Studio, Exposing Sensitive Cloud Data

Tenable Research has uncovered a series of security vulnerabilities in Google Looker Studio, dubbed "LeakyLooker," that allowed attackers to run arbitrary SQL queries on victims’ databases and ...
Dark Reading

Google Looker Bugs Allow Cross-Tenant RCE, Data Exfil

Researchers have identified two five-alarm security issues in a popular Google data service, either of which could allow attackers access to sensitive secrets useful for rampant lateral movement.