Security researchers and cofounders of Detectify have discovered security holes in Google that allowed them to access internal servers. Google has rewarded the researchers with $10,000 for discovering and reporting XXE vulnerability.