GhostToken – Exploiting GCP application infrastructure to create invisible, unremovable trojan app on Google accounts

The Astrix Research Group revealed a 0-day flaw in Google’s Cloud Platform (GCP) which affects all Google users. Our new research blog covers this vulnerability in detail. In it, we deep dive into everything from how it works to what makes it so severe and how it was eventually mitigated.