9:[["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"TechArticle\",\"headline\":\"The names of Event Threat Detection\\nrules pertaining to AI control\\nplane\\nhave changed.\",\"description\":\"GCP has updated the names of Event Threat Detection rules related to AI control plane. This change is important to ensure clarity and alignment with…\",\"url\":\"https://cloudscoop.io/updates/gcp-2026-03-16-security-command-center-change-the-names-of-event-\",\"datePublished\":\"2026-03-16\",\"author\":{\"@type\":\"Organization\",\"name\":\"GCP\"},\"publisher\":{\"@type\":\"Organization\",\"name\":\"CloudScoop\",\"url\":\"https://cloudscoop.io\"},\"about\":[{\"@type\":\"Thing\",\"name\":\"GCP\"},{\"@type\":\"Thing\",\"name\":\"Security Command Center\"}]}"}}],["$","$L11",null,{"update":{"id":"gcp-2026-03-16-security-command-center-change-the-names-of-event-","vendor":"GCP","service":"Security Command Center","title":"Change: The names of Event Threat Detection\nrules pertaining to AI control\nplane\nhave changed.","summary":"The names of Event Threat Detection\nrules pertaining to AI control\nplane\nhave changed.\n\nThe Cloud Run Threat Detection rule\nPrivilege Escalation: Fileless Execution in /dev/shm has been shut\ndown.","date":"2026-03-16","tags":["Change","Security","AI"],"url":"https://docs.cloud.google.com/release-notes#March_16_2026","created_at":"2026-03-16T22:12:05.083793+00:00","updated_at":"2026-03-28T18:33:52.392149+00:00","summary_preview":"The names of Event Threat Detection\nrules pertaining to AI control\nplane\nhave changed.","classified_at":null},"insights":{"sections":[{"title":"Overview","blocks":[{"type":"text","content":"GCP has updated the names of Event Threat Detection rules related to AI control plane. This change is important to ensure clarity and alignment with current terminology."}]},{"title":"Key Differences","blocks":[{"type":"text","content":"The new names reflect improved descriptions, making it easier to understand the specific threats. Additionally, the Cloud Run Threat Detection rule for Privilege Escalation has been shut down."}]},{"title":"Implementation","blocks":[{"type":"text","content":"All teams using Event Threat Detection should review the new rule names and update any automated processes accordingly. Ensure compliance with the latest terminology."},{"code":"# List all Event Threat Detection detectors to see updated AI control plane rule names\ngcloud alpha scc detectors list --project=\n\n# List findings from Event Threat Detection sources with updated rule names\ngcloud scc findings list \\\n --source= \\\n --filter='category:\"AI_CONTROL_PLANE\"'\n\n# Example: Query findings with specific updated AI control plane rule names\ngcloud scc findings list \\\n --source= \\\n --filter='ruleName:*AI*' \\\n --format=json","type":"code","title":"gcloud CLI","language":"bash"},{"code":"$12","type":"code","title":"Python (google-cloud)","language":"python"},{"code":"$13","type":"code","title":"Terraform","language":"hcl"}]},{"title":"Recommendation","blocks":[{"type":"text","content":"Act now to review the changes and update your configurations. Keeping up with these changes will enhance security and operational clarity."}]}],"impact_level":"medium","action":"recommended"},"related":[{"id":"gcp-2026-05-19-security-command-center-change-vulnerability-asses","title":"Change: Vulnerability Assessment for Google Cloud\nsupports scanning XFS and NTFS disk partition types.","date":"2026-05-19","service":"Security Command Center","vendor":"GCP"},{"id":"gcp-2026-05-15-security-command-center-change-vulnerability-asses","title":"Change: Vulnerability Assessment for Google Cloud\nsupports scanning GKE clusters that have\nImage streaming enabled.","date":"2026-05-15","service":"Security Command Center","vendor":"GCP"},{"id":"gcp-2026-05-11-security-command-center-change-compliance-manager-","title":"Change: Compliance Manager can be enabled for a single project.","date":"2026-05-11","service":"Security Command Center","vendor":"GCP"},{"id":"gcp-2026-05-11-security-command-center-change-new-standard-tier-a","title":"Change: New Standard tier activations at the organization level support the enhanced\nStandard tier features.","date":"2026-05-11","service":"Security Command Center","vendor":"GCP"}]}]]

The names of Event Threat Detection rules pertaining to AI control plane have changed.

More from Security Command Center