Google has awarded its inaugural annual top prize for the Google Cloud Platform (GCP) for vulnerabilities found in the Cloud Shell. The find a container escape that leads to host root access and the ability to use privileged containers has earned $100,000 for Dutch researcher Wouter ter Maat. Google also announced that it would be expanding the scope of payouts for annual GCP prizes. It will offer six prizes in total for the top vulnerability reports submitted in 2020, for a collective $313,337 in winnings.
Source: https://threatpost.com/100k-google-cloud-shell-root-compromise/153665/