Google Vertex AI 'Double Agent' Flaw Exposed Customer Data and Google's Internal Code
Security researchers at Unit 42, Palo Alto Networks’ threat intelligence division, have disclosed a critical vulnerability in Google Cloud’s Vertex AI Agent Engine that allowed a misconfigured agent to operate as a “double agent” — appearing to perform its intended function while simultaneously exfiltrating customer data and Google’s own internal source code. The flaw was confirmed across multiple independent security sources and represents one of the most tangible examples yet of what happens when least-privilege principles are abandoned in the rush to deploy agentic AI infrastructure. ...