April 10, 2024   03:52 PM   1 Google has announced a new version of its browser for organizations, Chrome Enterprise Premium, which comes with extended security controls for a monthly fee per user. The product is a step up from Chrome Enterprise, now demoted to Chrome Enterprise Core, and provides threat and data protection, increased control options, and reporting capabilities. Extra security at a cost Google’s new security-enhanced alternative for...

April 3, 2024   10:47 AM   1 Google has fixed two Google Pixel zero-days exploited by forensic firms to unlock phones without a PIN and gain access to the data stored within them. Although Pixels run Android, they receive separate updates from the standard monthly patches distributed to all Android device OEMs. This is due to their unique hardware platform, over which Google has direct control, and the exclusive features and capabilities. While the April...

April 3, 2024   12:39 PM   0 Google has fixed another zero-day vulnerability in the Chrome browser, which was exploited by security researchers during the Pwn2Own hacking contest last month. Tracked as CVE-2024-3159, this high-severity security flaw is caused by an out-of-bounds read weakness in the Chrome V8 JavaScript engine. Remote attackers can exploit the vulnerability using crafted HTML pages to gain access to data beyond the memory buffer via...

April 2, 2024   01:07 PM   0 Google has agreed to delete billions of data records collected from 136 million Chrome users in the United States, as part of a lawsuit settlement regarding alleged undisclosed browser data collection while in Incognito mode. The case concerns a class-action lawsuit filed in June 2020 against Google, targeting the inadequate disclosure of data collection practices and lack of privacy controls in Chrome's Incognito mode. The...

April 2, 2024   02:08 PM   2 Google announced a new Chrome security feature called 'Device Bound Session Credentials' that ties cookies to a specific device, blocking hackers from stealing and using them to hijack users' accounts. Cookies are files that websites use to remember your browsing information and preferences and automatically log you into a service or website. These cookies are created after you log into a service and verify multi-factor...

March 29, 2024   11:03 AM   0 U.S. users have just a few more days to make the transition from Google Podcasts as the company moves forward with the process of discontinuing the service globally. Google is currently sending in-app notifications to users in the U.S. that starting April 2nd they will no longer be able to use Google Podcasts and is recommending to export subscriptions to YouTube Music. The Google Podcasts streaming service launched...

March 25, 2024   07:32 AM   1 Google's new AI-powered 'Search Generative Experience' algorithms recommend scam sites that redirect visitors to unwanted Chrome extensions, fake iPhone giveaways, browser spam subscriptions, and tech support scams. Earlier this month, Google began rolling out a new feature called Google Search Generative Experience (SGE) in its search results, which provides AI-generated quick summaries for search queries,...

March 7, 2024   09:56 AM   0 The U.S. Department of Justice (DoJ) has announced the unsealing of an indictment against Linwei (Leon) Ding, 38, a former software engineer at Google, suspected of stealing Google AI trade secrets for Chinese companies. The charges allege that Ding stole proprietary information about Google's artificial intelligence (AI) technologies and transferred it to two companies based in China, where he secretly worked. The...

February 23, 2024   01:46 PM   0 Google is retiring the standalone Pay app in the United States. Users have until June 4 to transfer the balance to bank accounts. Google Pay is a secure mobile wallet that lets users send money to businesses or friends, make online purchases, pay bills, and earn rewards that translate to cash-backs or discounts. The app has over a billion downloads on Google Play and is used by people across 180 countries on various...

February 21, 2024   04:07 PM   0 Security researchers are warning of hackers abusing the Google Cloud Run service to distribute massive volumes of banking trojans like Astaroth, Mekotio, and Ousaban. Google Cloud Run is lets users deploy frontend and backend services, websites or applications, handle workloads without the effort of managing an infrastructure or scaling. Cisco Talos researchers observed a massive uptick in the misuse of...

February 19, 2024   08:34 AM   1 The Anatsa banking trojan has been targeting users in Europe by infecting Android devices through malware droppers hosted on Google Play. Over the past four months, security researchers noticed five campaigns tailored to deliver the malware to users in the UK, Germany, Spain, Slovakia, Slovenia, and the Czech Republic. Researchers at fraud detection company ThreatFabric noticed an increase of Anatsa activity since November,...

February 17, 2024   10:07 AM   1 Google is testing a new feature to prevent malicious public websites from pivoting through a user's browser to attack devices and services on internal, private networks. More simply, Google plans to prevent bad websites on the internet from attacking a visitor's devices (like printers or routers) in your home or on your computer. People usually consider these devices safe as they're not directly connected to the internet and are...

February 7, 2024   01:57 PM   2 Google has launched a new pilot program to fight financial fraud by blocking the sideloading of Android APK files that request access to risky permissions. An APK (Android Package) is a file format used to distribute Android apps for installation in the operating system. These files are commonly distributed through third-party sites, allowing you to install apps outside of Google Play. However, as these external sites do not...

February 8, 2024   06:33 AM   0 Google is on the brink of refreshing its sign-in pages, including Gmail, with a sleek, modern makeover. BleepingComputer spotted a  ew pop-up message hinting, "A new look is coming soon. Google is improving its sign-in page with a more modern look and feel." We noticed the pop-up when signing into the Gmail account. Google's new sign-in teasedSource: BleepingComputer This update is expected to embrace...

February 8, 2024   01:34 PM   0 A new version of the XLoader Android malware was discovered that automatically executes on devices it infects, requiring no user interaction to launch. XLoader, aka MoqHao, is an Android malware operated and likely created by a financially motivated threat actor named 'Roaming Mantis,' previously seen targeting users in the U.S., U.K., Germany, France, Japan, South Korea, and Taiwan. Attackers primarily distribute the...