New “LeakyLooker” Flaws in Google Looker Studio Could Enable Cross-Tenant SQL Queries

Nine cross-tenant vulnerabilities in Google Looker Studio, collectively named LeakyLooker, could have allowed attackers to execute arbitrary SQL queries and exfiltrate sensitive data across different organizational tenants. While Google has since addressed these issues, their exploitation could have led to unauthorized access and modification of data within Google Cloud Platform environments.