Researchers reported on Monday that hackers are now exploiting Google's Analytics service to stealthily pilfer credit card information from infected e-commerce sites.According to several independent reports from PerimeterX, Kaspersky, and Sansec, threat actors are now injecting data-stealing code on the compromised websites in combination with tracking code generated by Google … [Read more...] about Hackers Using Google Analytics to Bypass Web Security and Steal Credit Cards
PhantomLance Android backdoor on Google Play
Last July, our colleagues at Doctor Web detected a Trojan backdoor on Google Play. Such discoveries are not exactly an everyday occurrence, but they’re hardly unheard of — researchers do find Trojans on Google Play, sometimes hundreds at a time. This Trojan, however, was surprisingly sophisticated for malware found on Google Play, so our experts decided to dig deeper. They … [Read more...] about PhantomLance Android backdoor on Google Play
Update Google Chrome Browser to Patch New Critical Security Flaws
Google has released an urgent software update for its Chrome web browser and is urging Windows, Mac, and Linux users to upgrade the application to the latest available version immediately.Started rolling out to users worldwide this Wednesday, the Chrome 77.0.3865.90 version contains security patches for 1 critical and 3 high-risk security vulnerabilities, the most severe of … [Read more...] about Update Google Chrome Browser to Patch New Critical Security Flaws
Google Uncovers How Just Visiting Some Sites Were Secretly Hacking iPhones For Years
Beware Apple users!Your iPhone can be hacked just by visiting an innocent-looking website, confirms a terrifying report Google researchers released earlier today.The story goes back to a widespread iPhone hacking campaign that cybersecurity researchers from Google's Project Zero discovered earlier this year in the wild, involving at least five unique iPhone exploit chains … [Read more...] about Google Uncovers How Just Visiting Some Sites Were Secretly Hacking iPhones For Years
Google Will Now Pay Anyone Who Reports Apps Abusing Users’ Data
In the wake of data abuse scandals and several instances of malware app being discovered on the Play Store, Google today expanded its bug bounty program to beef up the security of Android apps and Chrome extensions distributed through its platform.The expansion in Google's vulnerability reward program majorly includes two main announcements.First, a new program, dubbed … [Read more...] about Google Will Now Pay Anyone Who Reports Apps Abusing Users’ Data
CamScanner is a malicious Android app with more than 100 million downloads in Google Play
Kaspersky researchers recently found malware in an app called CamScanner, a phone-based PDF creator that includes OCR (optical character recognition) and has more than 100 million downloads in Google Play. Various resources call the app by slightly different names such as CamScanner — Phone PDF Creator and CamScanner-Scanner to scan PDFs. Official app stores such as Google … [Read more...] about CamScanner is a malicious Android app with more than 100 million downloads in Google Play
Google Proposes ‘Privacy Sandbox’ to Develop Privacy-Focused Ads
Google today announced a new initiative—called Privacy Sandbox—in an attempt to develop a set of open standards that fundamentally enhances privacy on the web while continuing to support a free, open and democratic Internet through digital advertisements.A lot of websites on the Internet today, including The Hacker News, rely on online advertisements as their primary source of … [Read more...] about Google Proposes ‘Privacy Sandbox’ to Develop Privacy-Focused Ads
Google, Mozilla, Apple Block Kazakhstan’s Root CA Certificate to Prevent Spying
In a move to protect its users based in Kazakhstan from government surveillance, Google, Apple and Mozilla finally today came forward and blocked Kazakhstan's government-issued root CA certificate within their respective web browsing software.Starting today, Chrome, Safari and Firefox users in Kazakhstan will see an error message stating that the "Qaznet Trust Network" … [Read more...] about Google, Mozilla, Apple Block Kazakhstan’s Root CA Certificate to Prevent Spying
Google Discloses 20-Year-Old Unpatched Flaw Affecting All Versions of Windows
Update — With this month's patch Tuesday updates, Microsoft has finally addressed this vulnerability, tracked as CVE-2019-1162, by correcting how the Windows operating system handles calls to Advanced Local Procedure Call (ALPC). A Google security researcher has just disclosed details of a 20-year-old unpatched high-severity vulnerability affecting all versions of Microsoft … [Read more...] about Google Discloses 20-Year-Old Unpatched Flaw Affecting All Versions of Windows
Google Researchers Disclose PoCs for 4 Remotely Exploitable iOS Flaws
Google's cybersecurity researchers have finally disclosed details and proof-of-concept exploits for 4 out of 5 security vulnerabilities that could allow remote attackers to target Apple iOS devices just by sending a maliciously-crafted message over iMessage.All the vulnerabilities, which required no user interaction, were responsibly reported to Apple by Samuel Groß and Natalie … [Read more...] about Google Researchers Disclose PoCs for 4 Remotely Exploitable iOS Flaws