Palo Alto Networks Unit 42 disclosed ModeLeak, a security issue in Google Cloud Vertex AI that allowed an attacker to escalate privileges and exfiltrate hosted large language models. The report indicates the flaw affected the trust boundaries around managed AI services, creating a path from lower-privileged access to unauthorized retrieval of proprietary model assets stored or served through Vertex AI.
The finding highlights a high-impact cloud AI risk: organizations using managed model platforms could face theft of valuable intellectual property if identity, access controls, and service permissions are misconfigured or insufficiently isolated. The disclosure underscores the need for defenders to review IAM roles, service account permissions, and model access paths in Vertex AI environments to prevent unauthorized access to hosted models and related AI resources.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
1 event from the most recent confirmed update back to the earliest known activity.
Palo Alto Networks Unit 42 publicly disclosed research titled "ModeLeak: Privilege Escalation to LLM Model Exfiltration in Vertex AI," describing a privilege-escalation path leading to LLM model exfiltration in Google Vertex AI. No earlier event details are provided in the reference content.
1 reference tracked. Mallory keeps watching after this page renders.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.