Security News

POLL Google has revealed that its internal anti-malware tools include a "Social voting" scheme that lets staff vouch for code they want to install won't do any damage. The ad and search giant's rationale is that blocking all unknown software works but may limit productivity, while blocking only known unsafe software requires a lot of vetting.

Google has fixed a high-severity vulnerability in its Chrome browser and is warning Chrome users that an exploit exists in the wild for the flaw. "The Chrome team is delighted to announce the promotion of Chrome 89 to the stable channel for Windows, Mac and Linux," according to Google on Tuesday.

Google on Wednesday pledged to steer clear of tracking individual online activity when it begins implementing a new system for targeting ads without the use of so-called "Cookies." The internet giant's widely used Chrome browser this month will begin testing an alternative to the tracking practice that it believes could improve online privacy while still enabling advertisers to serve up relevant messages.

Google has fixed an actively exploited zero-day vulnerability in the Chrome 89.0.4389.72 version released today, March 2nd, 2021, to the Stable desktop channel for Windows, Mac, and Linux users. "Google is aware of reports that an exploit for CVE-2021-21166 exists in the wild," the Google Chrome 89.0.4389.72 announcement reads.

Given the danger that arises as soon as the crooks sneak into your network, it's as important to learn how malware gets delivered in the first place as it is to know what happens to your files when ransomware finally scrambles them. The Gootkit malware family has been around more than half a decade - a mature Trojan with functionality centered around banking credential theft.

Google this week announced the release of patches for 37 vulnerabilities as part of the Android security updates for March 2021, including a fix for a critical flaw in the System component. Tracked as CVE-2021-0397 and affecting Android 8.1, 9, 10, and 11 releases, the security issue could allow an attacker to execute code remotely on a vulnerable device.

The Gootloader malware loader, previously used for distributing the Gootkit malware family, has undergone what researchers call a "Renaissance" when it comes to payload delivery. New research released this week paints Gootloader as an increasingly sophisticated loader framework, which has now expanded the number of payloads its delivers beyond Gootkit, to include the Kronos trojan and the Cobalt Strike commodity malware.

The delivery system for the Gootkit information stealer has evolved into a complex and stealthy framework, which earned it the name Gootloader, and is now pushing a wider variety of malware via hacked WordPress sites and malicious SEO techniques for Google results. Malware campaigns relying on Gootloader's mechanism have been spotted last year delivering REvil ransomware to targets in Germany.

"We're now optimizing Google Workspace for the level of collaboration equity, time management and human connection needed for the sustainable and healthy hybrid workplace of the future." To address the challenges of frontline workers using personal devices and apps to get the information they need, Google Workspace will be launching Google Workspace Frontline, a new offering built specifically for frontline employees-from retail associates and nurses, to restaurant and construction workers-in the coming weeks.

The domains *.gvt1.com and *.gvt2.com, along with their subdomains, are owned by Google and typically used to deliver Chrome software updates, extensions, and related content. The GVT in the gvt1.com domain stands for Google Video Transcoding, and is used as a cache server for content and downloads used by Google services and applications.