Summary:

A design flaw in Google Workspace's domain-wide delegation feature, named "DeleFriend," allows attackers to modify existing delegations without Super Admin privileges. This can lead to unauthorized access and potential compromise of data in Google Workspace apps. The flaw is exacerbated by the lack of expiration dates for GCP Service account keys, the easy concealment of delegation rules, and a lack of awareness and detection. Hunters has created a tool to detect misconfigurations and is working with Google on mitigation strategies.

Hashtags:

#GoogleWorkspace #DeleFriend #SecurityFlaw #PrivilegeEscalation #UnauthorizedAccess #DataCompromise #GoogleCloudPlatform #DomainWideDelegation #GCPServiceAccounts #ThreatDetection #GCPResources #HuntersTeamAxon

https://cybersecuritynews.com/design-flaw-in-domain-wide-delegation/