Google’s security princess talks cybersecurity
Parisa Tabriz, manages Google’s Chrome security engineering teams, and gave a keynote at PyCon US this year. Her talk was even-keeled, informative, and included strong FOSS messaging about everyone’s vested interest in internet security and privacy. After the talk was done, I watched her take audience questions (long enough for me to take a short […] more…Google Increases Android Bug Bounty Payouts
After paying out more than half a million dollars, Google has decided to increase the rewards offered to researchers who report vulnerabilities through the company’s Android bug bounty program. read more more…Google Nearby: location-aware popup ads for location-aware apps
Forget drive-by installs! Here comes the “walk-by”… more…Google, Facebook, Yahoo, rights groups oppose FBI expansion of surveillance powers
Google, Facebook, Yahoo and industry and civil rights groups have opposed legislation that would extend the categories of Internet records that the U.S. government can collect without court approval through administrative orders known as National Security Letters. The companies and groups have pointed out in a letter to senators that the new provisions would expand […] more…Now you can Google yourself into better privacy and data protection
Vanity searches will soon pull up a card that shows how deeply Google’s been digging into your digital life more…“Google stole Java”: Oracle loses again, case closed – for now
Shades of déjà vu all over again. Oracle loses its claim for copyright control over the Java API; Google wins; appeal planned. more…Can Google replace passwords by tracking you more thoroughly?
What if we combine lots of mobile device data to build a “Trust Score” so your phone can judge you in real time? more…Google Misses an Enterprise Opportunity with Allo
Think of Microsoft and you think of Satya Nadella. Think of Google and you think of, well, who? While Microsoft has a single guiding vision for the future, Google does not. Microsoft intends to dominate the corporate cloud, and everything it does is based on that intention. Google, however, seems to have lost its way. […] more…Google’s Trust API pushes password-free login capability for Android apps
Project Abacus uses machine intelligence to verify your identity based on your unique usage patterns. more…Google Optimizes Safe Browsing API for Mobile
Google on Friday announced a new version of its Safe Browsing API and a focus on maximizing protection for both mobile and desktop users. read more more…Google Chrome provokes browser backspace security controversy
Who’d have thought that [Backspace] had its own fan club? more…Google’s Android N strengthens security core
Google continues to hone Android’s security capabilities, with features in the Android N upgrade due this fall prefaced by the Android for Work security apparatus and other security updates in last year’s Android Marshmallow release. Speaking at the Google I/O developer conference on Thursday, Adrian Ludwig, head of the Android security team at Google, noted three […] more…Yet more bad news for Flash as Google Chrome says goodbye (sort of)
As HTML5 is set to become the default experience in Chrome, Adobe Flash takes another meaningful step towards well-earned extinction. more…Google to shutter SSLv3, RC4 from SMTP servers, Gmail
Mark your calendars: Google will disable support for the RC4 stream cipher and the SSLv3 protocol on its SMTP servers and Gmail servers on June 16. After the deadline, Google’s SMTP servers will no longer exchange mail with servers sending messages via SSLv3 and RC4. Users still using older and insecure mail clients won’t be […] more…Google Cloud Platform Flaw Earns Researcher $5,000
Google has paid out $5,000 to a bug bounty hunter who discovered a serious vulnerability in the Google Cloud Platform. Germany-based researcher Patrik Fehrenbach discovered that the Google Cloud Platform Console was plagued by a stored cross-site scripting (XSS) flaw. read more more…Google to Soon Kill SSLv3, RC4 Support in Gmail
Starting on June 16, 2016, the old SSLv3 and RC4 security protocols will no longer be supported on Google’s SMTP servers and on Gmail’s web servers. read more more…More information
- Industry Reactions to Trump Firing CISA Director Chris Krebs: Feedback Friday
- Phish or legit – Can you tell the difference?
- Sierra Wireless Rugged Gateways Targeted by Mirai Malware
- Hackers Are Hijacking Phone Numbers And Breaking Into Email, Bank Accounts
- Redhat Satellite upgrade
- Panasonic Patches Flaws in PLC Programming Software
- How to report a computer crime: malware by email
- 2014 Neustar Annual DDoS Attacks and Impact Report: A Neustar High-Tech Brief
- Critical Code Execution Vulnerabilities Patched in VMware vCenter Server
- Leaked programming manual may help criminals develop more ATM malware