all InfoSec news
Expiry times for user-managed service account keys
May 12, 2023, 10:15 a.m. | Chimbu Chinnadurai
System Weakness - Medium systemweakness.com
In Google Cloud Platform (GCP), service account keys are used to provide Google Cloud API access to applications running outside of Google Cloud.
The problem with the service account keys is that they do not come with an expiry date, and They can become a security risk if not managed carefully. The main threats related to service account keys are:
- Credential leakage
- Privilege escalation
- Information Disclosure
- Non-repudiation
Google Cloud recently introduced expiry time support for user-managed service …
More from systemweakness.com / System Weakness - Medium
Web Pen testing Automation
1 day, 7 hours ago |
systemweakness.com
Advance XSS payload List
1 day, 7 hours ago |
systemweakness.com
Static Malware Analysis: Techniques & Challenges
1 day, 7 hours ago |
systemweakness.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineer - Vulnerability Management
@ Starling Bank | Southampton, England, United Kingdom
Manager Cybersecurity
@ Sia Partners | Rotterdam, Netherlands
Compliance Analyst
@ SiteMinder | Manila
Information System Security Engineer (ISSE)-Level 3, OS&CI Job #447
@ Allen Integrated Solutions | Chantilly, Virginia, United States
Enterprise Cyber Security Analyst – Advisory and Consulting
@ Ford Motor Company | Mexico City, MEX, Mexico