Google Warns of a New Way Hackers Can Make Malware Undetectable on Windows – Tempemail

Cybersecurity researchers have disclosed a novel technique adopted by threat actors to deliberately evade detection with the help of malformed digital signatures of its malware payloads. “Attackers created malformed code signatures that are treated as valid by Windows but are not able to be decoded or checked by OpenSSL code Continue Reading

Google to Auto-Reset Unused Android App Permissions for Billions of Devices – Tempemail

Google on Friday said it’s bringing an Android 11 feature that auto-resets permissions granted to apps that haven’t been used in months, to devices running Android versions 6 and above. The expansion is expected to go live later this year in December 2021 and enabled on Android phones with Google Continue Reading

Update Google Chrome to Patch 2 New Zero-Day Flaws Under Attack – Tempemail

Google on Monday released security updates for Chrome web browser to address a total of 11 security issues, two of which it says are actively exploited zero-days in the wild. Tracked as CVE-2021-30632 and CVE-2021-30633, the vulnerabilities concern an out of bounds write in V8 JavaScript engine and a use Continue Reading

New SpookJs Attack Bypasses Google Chrome’s Site Isolation Protection – Tempemail

A newly discovered side-channel attack demonstrated on modern processors can be weaponized to successfully overcome Site Isolation protections weaved into Google Chrome and Chromium browsers and leak sensitive data in a Spectre-style speculative execution attack. Dubbed “Spook.js” by academics from the University of Michigan, University of Adelaide, Georgia Institute of Continue Reading

Microsoft, Google to Invest $30 Billion in Cybersecurity Over Next 5 Years – Tempemail

Google and Microsoft said they are pledging to invest a total of $30 billion in cybersecurity advancements over the next five years, as the U.S. government partners with private sector companies to address threats facing the country in the wake of a string of sophisticated malicious cyber activity targeting critical Continue Reading

Nasty macOS Malware XCSSET Now Targets Google Chrome, Telegram Software – Tempemail

A malware known for targeting macOS operating system has been updated once again to add more features to its toolset that allows it to amass and exfiltrate sensitive data stored in a variety of apps, including apps such as Google Chrome and Telegram, as part of further “refinements in its Continue Reading

Google Details iOS, Chrome, IE Zero-Day Flaws Exploited Recently in the Wild – Tempemail

Threat intelligence researchers from Google on Wednesday shed more light on four in-the-wild zero-days in Chrome, Safari, and Internet Explorer browsers that were exploited by malicious actors in different campaigns since the start of the year. What’s more, three of the four zero-days were engineered by commercial providers and sold Continue Reading

Critical Flaws Reported in Etherpad — a Popular Google Docs Alternative – Tempemail

Cybersecurity researchers have disclosed new security vulnerabilities in the Etherpad text editor (version 1.8.13) that could potentially enable attackers to hijack administrator accounts, execute system commands, and even steal sensitive documents. The two flaws — tracked as CVE-2021-34816 and CVE-2021-34817 — were discovered and reported on June 4 by researchers Continue Reading

Google Search Data Suggests Digital Transformation Is Still Hot- Tempemail

What’s the outlook for digital transformation in a post-pandemic world? Demand for transformation-related technology services was strong during the acute phase of the COVID-19 pandemic, driven by rapid adoption of remote working and schooling, contactless payments, streaming services, gaming, among many other areas. “It was hard to imagine,” as The Continue Reading

New Google Scorecards Tool Scans Open-Source Software for More Security Risks – Tempemail

Google has launched an updated version of Scorecards, its automated security tool that produces a “risk score” for open source initiatives, with improved checks and capabilities to make the data generated by the utility accessible for analysis. “With so much software today relying on open-source projects, consumers need an easy Continue Reading