google

A Google Docs Bug Could Have Allowed Hackers See Your Private Documents

Dec 29, 2020 by iHash Leave a Comment

Google has patched a bug in its feedback tool incorporated across its services that could be exploited by an attacker to potentially steal screenshots of sensitive Google Docs documents simply by embedding them in a malicious website. The flaw was discovered on July 9 by security researcher Sreeram KL, for which he was awarded $3133.70 as part of Google's Vulnerability Reward … [Read more...] about A Google Docs Bug Could Have Allowed Hackers See Your Private Documents

Google Discloses Poorly-Patched, Now Unpatched, Windows 0-Day Bug

Dec 24, 2020 by iHash Leave a Comment

Google's Project Zero team has made public details of an improperly patched zero-day security vulnerability in Windows print spooler API that could be leveraged by a bad actor to execute arbitrary code. Details of the unpatched flaw were revealed publicly after Microsoft failed to patch it within 90 days of responsible disclosure on September 24. Originally tracked as … [Read more...] about Google Discloses Poorly-Patched, Now Unpatched, Windows 0-Day Bug

Malware disguised as Minecraft mods on Google Play

Nov 23, 2020 by iHash Leave a Comment

The first version of Minecraft was released way back in 2009, but the game remains incredibly popular to this day. That should come as no surprise; not only is it enormous fun, but it’s a platform for kids and adults alike to create their own worlds. Some even use it for urban planning — and some teachers use it in the classroom. Unfortunately, as with any successful project, … [Read more...] about Malware disguised as Minecraft mods on Google Play

Google Discloses Windows Zero-Day Bug Exploited in the Wild

Nov 2, 2020 by iHash Leave a Comment

Google has disclosed details of a new zero-day privilege escalation flaw in the Windows operating system that's being actively exploited in the wild. The elevation of privileges (EoP) vulnerability, tracked as CVE-2020-17087, concerns a buffer overflow present since at least Windows 7 in the Windows Kernel Cryptography Driver ("cng.sys") that can be exploited for a sandbox … [Read more...] about Google Discloses Windows Zero-Day Bug Exploited in the Wild

DoNot’s Firestarter abuses Google Firebase Cloud Messaging to spread

Nov 1, 2020 by iHash Leave a Comment

Cisco Blogs / Security / Threat Research / DoNot’s Firestarter abuses Google Firebase Cloud Messaging to spread The newly discovered Firestarter malware uses Google Firebase Cloud Messaging to notify its authors of the final payload location. Even if the command and control (C2) is taken down, the DoNot team can still redirect the malware to another C2 using Google … [Read more...] about DoNot’s Firestarter abuses Google Firebase Cloud Messaging to spread

How to Run Google SERP API Without Constantly Changing Proxy Servers

Oct 29, 2020 by iHash Leave a Comment

You've probably run into a major problem when trying to scrape Google search results. Web scraping tools allow you to extract information from a web page. Companies and coders from across the world use them to download Google's SERP data. And they work well – for a little while. After several scrapes, Google's automated security system kicks in. Then it kicks you out. The … [Read more...] about How to Run Google SERP API Without Constantly Changing Proxy Servers

Google Removes 21 Malicious Android Apps from Play Store

Oct 27, 2020 by iHash Leave a Comment

Google has stepped in to remove several Android applications from the official Play Store following the disclosure that the apps in question were found to serve intrusive ads. The findings were reported by the Czech cybersecurity firm Avast on Monday, which said the 21 malicious apps (list here) were downloaded nearly eight million times from Google's app marketplace. The apps … [Read more...] about Google Removes 21 Malicious Android Apps from Play Store

Google Warns of Zero-Click Bluetooth Flaws in Linux-based Devices

Oct 16, 2020 by iHash Leave a Comment

Google security researchers are warning of a new set of zero-click vulnerabilities in the Linux Bluetooth software stack that can allow a nearby unauthenticated, remote attacker to execute arbitrary code with kernel privileges on vulnerable devices. According to security engineer Andy Nguyen, the three flaws — collectively called BleedingTooth — reside in the open-source BlueZ … [Read more...] about Google Warns of Zero-Click Bluetooth Flaws in Linux-based Devices

Google Researcher Reported 3 Flaws in Apache Web Server Software

Aug 25, 2020 by iHash Leave a Comment

If your web-server runs on Apache, you should immediately install the latest available version of the server application to prevent hackers from taking unauthorized control over it.Apache recently fixed multiple vulnerabilities in its web server software that could have potentially led to the execution of arbitrary code and, in specific scenarios, even could allow attackers to … [Read more...] about Google Researcher Reported 3 Flaws in Apache Web Server Software

A Google Drive ‘Feature’ Could Let Attackers Trick You Into Installing Malware

Aug 22, 2020 by iHash Leave a Comment

An unpatched security weakness in Google Drive could be exploited by malware attackers to distribute malicious files disguised as legitimate documents or images, enabling bad actors to perform spear-phishing attacks comparatively with a high success rate.The latest security issue—of which Google is aware but, unfortunately, left unpatched—resides in the "manage versions" … [Read more...] about A Google Drive ‘Feature’ Could Let Attackers Trick You Into Installing Malware

« Previous Page

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54