May 24, 2024 at 07:09AM Google has released fixes for a high-severity security flaw in its Chrome browser, identified as CVE-2024-5274, which has been exploited in the wild. The vulnerability is related to a type confusion bug in the V8 JavaScript and WebAssembly engine. This marks the fourth zero-day patched by Google this month. Users … Read more
May 24, 2024 at 05:36AM Google has released a new emergency security update for Chrome to address the eighth actively exploited zero-day vulnerability. Tracked as CVE-2024-5274, the high-severity ‘type confusion’ flaw in V8, Chrome’s JavaScript engine, can lead to crashes and data corruption. The fix is available for Windows and Mac, with updates for Linux … Read more
May 20, 2024 at 01:56PM Google promotes its security superiority over Microsoft in wake of recent breaches. A white paper criticizes Microsoft’s handling of security breaches and advocates for firms to switch to Google’s services. Google contends that Workspace offers superior security practices and takes a direct shot at its rival. An offer to entice … Read more
May 15, 2024 at 01:58PM Google recently announced new privacy and security features for Android, including advanced protection to secure users’ devices and data in the event of theft. The features include a private space for sensitive apps, an extra layer of protection for device settings, and an upgrade to factory reset that renders stolen … Read more
May 8, 2024 at 08:30AM Google released a new set of security updates for Android, addressing 26 vulnerabilities, including a critical bug in the System component (CVE-2024-23706) in Android 14. The updates include patches for various components, such as the Framework, kernel, and Qualcomm. Additionally, security updates for Pixel and Wear OS devices were also … Read more
May 7, 2024 at 06:36AM Google has simplified the process of enabling two-factor authentication (2FA) for users with personal and Workspace accounts. The update includes a new two-step method and removal of the need for less secure SMS-based authentication. Additionally, users can now disable 2FA without having their enrolled second steps automatically removed. Meeting Notes … Read more
May 6, 2024 at 02:06PM Google unveiled new threat-intel and security operations products, leveraging AI and Mandiant assets to enhance enterprise cybersecurity. With Gemini AI, Google Threat Intelligence offers breach forensics expertise and malware scanning. Google Security Operations employs generative AI to simplify threat detection and provides features like Investigation Assistant and Playbook Assistant to … Read more
April 8, 2024 at 10:27AM Google has announced support for a V8 Sandbox in the Chrome web browser to address memory corruption issues in the V8 JavaScript and WebAssembly engine. The sandbox aims to limit V8 vulnerabilities and will be enabled by default in Chrome version 123, with a 1% performance overhead. This development comes … Read more
April 8, 2024 at 07:36AM Google has introduced a new sandbox to combat memory safety bugs in its Chrome V8 engine. The tech giant also included it in the bug bounty program, aiming to enhance the browser’s security. This update was featured on SecurityWeek. Based on the meeting notes, it appears that Google is implementing … Read more
April 3, 2024 at 12:40PM Google has resolved a zero-day vulnerability in Chrome, tracked as CVE-2024-3159, stemming from an out-of-bounds read weakness in the Chrome V8 JavaScript engine. The flaw allowed remote attackers to gain unauthorized access to data or trigger a crash. Google also addressed two other Chrome zero-days and two Android zero-days, underscoring … Read more