◈ AI Security Intelligence ← All terms
Attack  ·  Glossary

Bucket Squatting (Cloud Storage Hijacking)

Definition
An attacker preemptively creates a cloud storage bucket with a predictable name (often derived from a victim's project ID or region) before the legitimate user attempts to upload data to it. When the legitimate process attempts the upload, files go into the attacker's bucket instead, enabling model poisoning, credential theft, or code injection.
Why it matters
In machine learning pipelines, bucket squatting enables cross-tenant compromise without requiring access to the victim's account. An attacker can poison a model before it reaches production, causing it to behave maliciously when deployed—silently and without any sign of compromise.
Demonstrated by recent findings
Google Cloud Vertex AI SDK Bucket Squatting Enables Model Hijacking and RCE (June 16, 2026)
References
Palo Alto Networks Unit 42: Hijacking Vertex AI Model Uploads for Cross-Tenant RCE
Track this in the live feed See how this plays out in real AI security and governance developments.
Open the feed →