India, March 12 -- Security researchers at Tenable have identified a series of vulnerabilities in Google Looker Studio that could allow attackers to run arbitrary SQL queries on victims' databases and exfiltrate sensitive information from organisations' Google Cloud environments. The issues, collectively referred to as "LeakyLooker", highlight risks related to cross-tenant access in cloud-based business intelligence tools.

According to Tenable's research, nine previously unknown cross-tenant vulnerabilities were discovered. These flaws could expose sensitive data across cloud environments and potentially affect organisations using data sources such as Google Sheets, Google BigQuery, Google Cloud Spanner, PostgreSQL, MySQL and Google Clou...