April 30, 2024 at 02:35PM Google has increased rewards for reporting remote code execution vulnerabilities in select Android apps, now offering up to $450,000. The company aims to focus on flaws leading to data theft, paying $75,000 for such exploits. The changes to the Mobile Vulnerability Rewards Program also include bonuses for exceptional quality reports … Read more
April 25, 2024 at 03:01AM Google is delaying the deprecation of third-party tracking cookies in its Chrome browser to address competition concerns from U.K. regulators over its Privacy Sandbox initiative. It aims to phase out cookies early next year and is working with the U.K. Competition and Markets Authority to achieve an agreement by the … Read more
April 24, 2024 at 10:39AM Google’s original plan to eliminate third-party cookies in Chrome by the end of 2024 is delayed to 2025 due to regulatory concerns and feedback. The company aims to implement its Privacy Sandbox initiative to phase out cookies and reduce tracking while keeping content free. Some in the ad industry have … Read more
April 24, 2024 at 09:15AM Google released Chrome 124 update addressing four vulnerabilities, including a critical security hole, identified as CVE-2024-4058, allowing potential arbitrary code execution or sandbox escapes. Two members of Qrious Secure reported it and received a $16,000 bounty. The update also addresses two high-severity vulnerabilities, but no mention of CVE-2024-4058 being exploited … Read more
April 22, 2024 at 04:38AM Bill Gates, a famous tech founder, failed to fulfill his promise of eliminating spam. Google faces challenges combating AI-powered spam, risking revenue and user trust. The company’s dependence on ad revenue and content manipulation has led to a toxic web experience. A potential solution involves empowering users and content providers … Read more
March 20, 2024 at 08:57AM Google and Mozilla released web browser security updates addressing dozens of vulnerabilities, including critical and high-severity flaws. Chrome 123 fixes 12 bugs, one high-severity. The update also resolves medium and low-severity vulnerabilities. Google paid $22,000 in bug bounty rewards and released Chrome version 123.0.6312.58 for Linux and versions 123.0.6312.58/.59 for … Read more
March 15, 2024 at 10:23AM Compare the effectiveness of OpenAI’s and Google’s generative AI products in addressing the top 10 tasks of information security professionals. After examining the meeting notes, I will compare how effectively OpenAI’s and Google’s generative AI products address the top 10 tasks of information security professionals. I will analyze both products’ … Read more
March 13, 2024 at 04:38AM Researchers have successfully uncovered hidden aspects of transformer models in OpenAI and Google through an attack that illuminates a portion of these “black box” models. The attack, accomplished for a range of costs and analyzed by a team of computer scientists, has prompted recommendations to regulate the release of advanced … Read more
March 8, 2024 at 05:05PM Former Google software engineer Linwei Ding, also known as Leon Ding, has been charged by the US Justice Department with stealing AI-related trade secrets from Google. If convicted, he faces up to 10 years in prison and a $250,000 fine on each of the four counts. The case highlights the … Read more
March 8, 2024 at 09:57AM SecurityWeek’s cybersecurity news roundup offers a concise collection of important stories that may have been overlooked. This week’s highlights include IBM’s launch of a new cyber response training facility, Google’s termination of accounts involved in influence operations, updates on Microsoft’s Secure Future Initiative, and cybersecurity resources released by CISA and … Read more