A new privilege escalation technique in Google Cloud Platform (GCP) leverages IAM Conditions and tagBindings, allowing users with low-risk roles to gain elevated access by attaching specific tags to resources. This method exploits the oversight of tag permissions, which are often not considered sensitive, leading to unauthorized access without modifying IAM policies directly. The article highlights the risks associated with misconfigured trust boundaries in GCP's IAM setup.