Google's Android security update addressed 43 bugs overall affecting Android handsets, including Samsung phones.
Researcher uses an old unCAPTCHA trick against latest the audio version of reCAPTCHA, with a 97 percent success rate.
Google, Microsoft, Cisco Systems and others want appeals court to deny immunity to Israeli company for its alleged distribution of spyware and illegal cyber-surveillance activities.
Researchers identify malware existing in popular add-ons for Facebook, Vimeo, Instagram and others that are commonly used in browsers from Google and Microsoft.
Goontact lures users of illicit sites through Telegram and other secure messaging apps and steals their information for future fraudulent use.
Patches for a flaw (CVE-2020-8913) in the Google Play Core Library have not been implemented by several popular Google Play apps, including Edge.
Researcher Ian Beer from Google Project Zero took six months to figure out the radio-proximity exploit of a memory corruption bug that was patched in May.
The company patched a vulnerability that could connected video and audio calls without the knowledge of the person receiving them.
Overall Google's Chrome 87 release fixed 33 security vulnerabilities.
Browser users are once again being asked to patch severe vulnerabilities that can lead to remote code execution.
Remote code execution vulnerabilities dominate this month’s security bulletin of warnings and patches.
A banking trojan is targeting mobile app users in Brazil - and researchers warn that its operator has big plans to expand abroad.
The actively exploited vulnerabilities discovered by Project Zero exist across iPhone, iPad and iPod devices.
More than 200 Google Forms impersonate top brands - including Microsoft OneDrive, Office 365, and Wells Fargo - to steal victims' credentials.
Patches for both the Chrome desktop and Android browser address high-severity flaws with known exploits available in the wild.
Cybercriminals are sending malicious links to hundreds of thousands of users via Google Drive notifications.
The DoNot APT threat group is leveraging the legitimate Google Firebase Cloud Messaging server as a command-and-control (C2) communication mechanism.
Android apps packed with malware from HiddenAds family downloaded 8 million times from the online marketplace.
Google said Chrome 86 will automatically block malicious notifications that may be used for phishing or malware.
The memory-corruption vulnerability exists in the browser’s FreeType font rendering library.
The company already patched an API flaw that allowed a security researcher to use the app to find the real identity of drivers using it.
Google's Threat Analysis Group sheds more light on targeted credential phishing and malware attacks on the staff of Joe Biden's presidential campaign.
Intel and Google are urging users to update the Linux kernel to version 5.9 or later.
The most serious bugs are elevation-of-privilege issues in the Android System component (CVE-2020-0215 and CVE-2020-0416).
Google is rolling out 35 security fixes, and a new password feature, in Chrome 86 versions for Windows, Mac, Android and iOS users.
Popular ‘safe browsing’ padlocks are now passe as a majority of bad guys also use them.
A new 'fork' of the Cerberus banking trojan, called Alien, targets victims' credentials from more than 200 mobile apps, including Bank of America and Microsoft Outlook.
Google's new release of Chrome 85.0.4183.121 for Windows, Mac, and Linux fixes 10 security flaws.
The official app store is taking on spy- and surveillance-ware, along with apps that could be used to mount political-influence campaigns.
The 'BLESA' flaw affects the reconnection process that occurs when a device moves back into range after losing or dropping its pairing, Purdue researchers said.
New opt-in COVID-19 Exposure Notifications Express systems baked into Apple’s iOS and available on Android need privacy guardrails, say privacy advocates.
The September Android security bulletin addressed critical- and high-severity flaws tied to 53 CVEs overall.
A researcher discovered a cross-site scripting flaw in Google Map's export function, which earned him $10,000 in bug bounty rewards.
The top award for flaws that allow cybercriminals to abuse legitimate services has increased by 166 percent.
Technology minister bans, Baidu, WeChat Work, AliPay and 115 others for capturing using data and transmitting it to servers outside of the country without authorization.
The six malicious apps have been removed from Google Play, but could still threaten 200,000 installs.
Up to 200,000 patient records from Office 365 and Google G Suite exposed by hardcoded credentials and other improper access controls.
App concealed the practice of gathering device unique identifiers using an added layer of encryption.
Google Home devices reportedly recorded noises even without the "Hey Google" prompt due to the inadvertent rollout of a home security system feature.
The vulnerability allows attackers to bypass Content Security Policy (CSP) protections and steal data from website visitors.