Security news aggregator

Latest coverage for Google

Stay updated on Google's info security advances, threats, and solutions. Protect your data with the latest insights from our dedicated Google security tag.

15 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Google is a technology company whose ecosystem includes internet services, cloud infrastructure, mobile software, browsers, and productivity platforms. In information security, the tag commonly covers vulnerabilities and security changes across these services, as well as Google’s role as an identity and data-processing provider for organizations.

Material risks include compromised Google accounts, overly permissive cloud identities or APIs, exposed stored data, and unpatched flaws in software such as Android or Chrome. Security teams should track relevant advisories, prioritize patches based on affected assets and exposure, enforce strong authentication and least-privilege access, and review logging for suspicious account or service activity. Google’s collection and processing of user, device, and organizational data also makes privacy controls, retention settings, contractual obligations, and regulatory compliance important. Its vulnerability-disclosure and threat-intelligence work can inform defensive monitoring, but does not replace asset inventory, configuration review, or tested recovery procedures.

Showing 15 most recent headlines Filtered view
Bank Info Security 1 year, 7 months ago

Google AI Tool Finds 26 Bugs in Open-Source Projects

One Vulnerability Had Been Undiscovered for Two Decades, Researchers SaidGoogle researchers used an AI-powered fuzzing tool to identify 26 vulnerabilities in open-source code repositories, some of which had been lurking undiscovered for several decades. Each was found with AI, using AI-generated and enhanced fuzz targets, Google said.

Google Workspace has quickly become the productivity backbone for businesses worldwide, offering an all-in-one suite with email, cloud storage and collaboration tools. This single-platform approach makes it easy for teams to connect and work efficiently, no matter where they are, enabling seamless digital transformation that’s both scalable and adaptable

Google has revealed that its AI-powered fuzzing tool, OSS-Fuzz, has been used to help identify 26 vulnerabilities in various open-source code repositories, including a medium-severity flaw in the OpenSSL cryptographic library

Bank Info Security 1 year, 7 months ago

Criminals 'Ghost Tap' NFC for Payment Cash-Out Attacks

Tactic Uses Stolen Cards Added to Apple Pay and Google Pay Digital WalletsCriminals have been caught tapping a new type of relay attack to cash-out stolen payment cards added to legitimate digital wallets. These criminals use money mules who carry an Android device able to capture and relay NFC communications used by ATMs to and from an attacker-controlled device.

OSS-Fuzz is making a strong argument for LLMs in security research Google's OSS-Fuzz project, which uses large language models (LLMs) to help find bugs in code repositories, has now helped identify 26 vulnerabilities, including a critical flaw in the widely used OpenSSL library.…

Bank Info Security 1 year, 7 months ago

UK CMA Clears Alphabet, Anthropic Partnership

Google Does Not Have Material Influence Over Antrhtopic, Agency SaysThe U.K. antitrust regulator called off an investigation into a $2 billion partnership between computing giant Alphabet and artificial intelligence startup Anthropic. The .K. Competition and Markets Authority probe sought to understand if the deal forms a "relevant merger situation."

Spotify playlists and podcasts are being abused to push pirated software, game cheat codes, spam links, and "warez" sites. By injecting targeted keywords and links in playlist names and podcast descriptions, threat actors may benefit from boosting SEO for their dubious online properties appearing in Google. [...]