google – SSL and internet security news

Google Project Zero Changes Its Disclosure Policy

August 8, 2025 infossl

disclosure, google, patching, Security technology, Uncategorized, vulnerabilities

Google’s vulnerability finding team is again pushing the envelope of responsible disclosure: Google’s Project Zero team will retain its existing 90+30 policy regarding vulnerability disclosures, in which it provides vendors with 90 days before full disclosure takes place, with a 30-day period allowed for patch adoption if the bug is fixed before the deadline. However, … Read More “Google Project Zero Changes Its Disclosure Policy” »

Google Sues the Badbox Botnet Operators

July 23, 2025 infossl

backdoors, botnets, courts, google, malware, Security technology, Uncategorized

It will be interesting to watch what will come of this private lawsuit: Google on Thursday announced filing a lawsuit against the operators of the Badbox 2.0 botnet, which has ensnared more than 10 million devices running Android open source software. These devices lack Google’s security protections, and the perpetrators pre-installed the Badbox 2.0 malware … Read More “Google Sues the Badbox Botnet Operators” »

Applying Security Engineering to Prompt Injection Security

April 29, 2025 infossl

academic papers, AI, google, LLM, security engineering, Security technology, Uncategorized

This seems like an important advance in LLM security against prompt injection: Google DeepMind has unveiled CaMeL (CApabilities for MachinE Learning), a new approach to stopping prompt-injection attacks that abandons the failed strategy of having AI models police themselves. Instead, CaMeL treats language models as fundamentally untrusted components within a secure software framework, creating clear … Read More “Applying Security Engineering to Prompt Injection Security” »

Detecting Malicious Trackers

May 21, 2024 infossl

apple, bluetooth, false positives, google, security standards, Security technology, stalking, tracking, Uncategorized

From Slashdot: Apple and Google have launched a new industry standard called “Detecting Unwanted Location Trackers” to combat the misuse of Bluetooth trackers for stalking. Starting Monday, iPhone and Android users will receive alerts when an unknown Bluetooth device is detected moving with them. The move comes after numerous cases of trackers like Apple’s AirTags … Read More “Detecting Malicious Trackers” »

Class-Action Lawsuit against Google’s Incognito Mode

April 3, 2024 infossl

browsers, courts, data collection, google, Security technology, Uncategorized

The lawsuit has been settled: Google has agreed to delete “billions of data records” the company collected while users browsed the web using Incognito mode, according to documents filed in federal court in San Francisco on Monday. The agreement, part of a settlement in a class action lawsuit filed in 2020, caps off years of … Read More “Class-Action Lawsuit against Google’s Incognito Mode” »

Google Pays $10M in Bug Bounties in 2023

March 22, 2024 infossl

economics of security, google, Security technology, Uncategorized, vulnerabilities

BleepingComputer has the details. It’s $2M less than in 2022, but it’s still a lot. The highest reward for a vulnerability report in 2023 was $113,337, while the total tally since the program’s launch in 2010 has reached $59 million. For Android, the world’s most popular and widely used mobile operating system, the program awarded … Read More “Google Pays $10M in Bug Bounties in 2023” »

AI and the Evolution of Social Media

March 19, 2024 infossl

artificial intelligence, facebook, google, Internet and society, LLM, privacy, Security technology, social media, surveillance, twitter, Uncategorized

Oh, how the mighty have fallen. A decade ago, social media was celebrated for sparking democratic uprisings in the Arab world and beyond. Now front pages are splashed with stories of social platforms’ role in misinformation, business conspiracy, malfeasance, and risks to mental health. In a 2022 survey, Americans blamed social media for the coarsening … Read More “AI and the Evolution of Social Media” »

Google Stops Collecting Location Data from Maps

December 26, 2023 infossl

geolocation, google, privacy, Security technology, Uncategorized

Google Maps now stores location data locally on your device, meaning that Google no longer has that data to turn over to the police. Powered by WPeMatico

Google Reportedly Disconnecting Employees from the Internet

July 24, 2023 infossl

cyberattack, google, internet, Security technology, Uncategorized

Supposedly Google is starting a pilot program of disabling Internet connectivity from employee computers: The company will disable internet access on the select desktops, with the exception of internal web-based tools and Google-owned websites like Google Drive and Gmail. Some workers who need the internet to do their job will get exceptions, the company stated … Read More “Google Reportedly Disconnecting Employees from the Internet” »

Google Is Using Its Vast Data Stores to Train AI

July 12, 2023 infossl

artificial intelligence, data collection, google, privacy, Security technology, Uncategorized

No surprise, but Google just changed its privacy policy to reflect broader uses of all the surveillance data it has captured over the years: Research and development: Google uses information to improve our services and to develop new products, features and technologies that benefit our users and the public. For example, we use publicly available … Read More “Google Is Using Its Vast Data Stores to Train AI” »