Google developers announced that since August 2021, all new applications downloaded to the Google Play Store will have to use the new Android App Bundles (AAB) format, instead of the familiar APK (Android PacKage) that has been used in Android since 2008. The company explains that AAB is a more versatile, “batch” format that will… Continue reading Google Replaces APK with Android App Bundle Format
Tag: Google
Google stopped trying to shorten URLs in the address bar
Google’s experiment with attempt to shorten URLs (hiding parts of the URL from the address bar) has finally failed and was finished. Let me remind you that in recent years, Chrome developers have returned to this topic more than once. For example, back in 2018, developers tried to make the browser interface simpler and more… Continue reading Google stopped trying to shorten URLs in the address bar
Chrome 90 gets new security feature to protect against attacks on Windows 10
Google has introduced a new Windows 10 security feature called Hardware-enforced Stack Protection in its Chrome 90 browser to protect the memory stack against cyberattacks. Microsoft introduced Hardware-enforced Stack Protection in March 2020. The feature is designed to defend against Return-Oriented Programming (ROP) attacks. To do this, Hardware-enforced Stack Protection uses processor hardware to protect… Continue reading Chrome 90 gets new security feature to protect against attacks on Windows 10
Google fixed another major vulnerability in the V8 engine
A series of feverish fixes for problems in Google Chrome continues, this time Google has fixed a major vulnerability related to the operation of the JavaScript engine V8 in the browser. The vulnerability that received an identificatory number CVE-2021-21227 and was assessed as having a high severity level. The vulnerability was reported by the researcher… Continue reading Google fixed another major vulnerability in the V8 engine
Rust will become one of the main development languages for Android due to security
This week, Google developers announced that Rust will become one of the main Android development languages as it has greater security and will prevent emergence of memory bugs. For this, Google engineers spent 18 months working on various parts of the Android Open Source Project (AOSP) using Rust, and now the initiative is being scaled… Continue reading Rust will become one of the main development languages for Android due to security
New hCaptcha bypass method may not affect Cloudflare’s security
In March 2021, researchers at the University of Louisiana at Lafayette presented a paper on a new hCaptcha bypass method that replaced reCAPTCHA in Cloudflare and Google last year. Experts have developed an attack that uses browser automation tools, image recognition, image classifiers, and machine learning algorithms to download hCaptcha tasks, recognize image content, classify… Continue reading New hCaptcha bypass method may not affect Cloudflare’s security
Google experts published PoC exploit for Specter that is targeting browsers
Google engineers published a PoC exploit to demonstrate the effectiveness of using the Specter vulnerability in browsers to access information in memory. This PoC exploit is reported to work with a wide range of architectures, operating systems, and hardware generations. It proves in practice that the protective mechanisms that developers have added to their browsers… Continue reading Google experts published PoC exploit for Specter that is targeting browsers
In 2020, Google paid cybersecurity experts $6.7 million
During the year, Google paid out 6.7 million to cybersecurity experts and published statistics on bug bounty programs for 2020. It turned out that during this time, researchers from 62 countries of the world discovered 662 vulnerabilities in Google products. The majority of payments cybersecurity experts received for errors that were found within the Chrome… Continue reading In 2020, Google paid cybersecurity experts $6.7 million
Google says that a quarter of all 0-day vulnerabilities are new variations of old problems
Google analysts studied the 0-day vulnerabilities they discovered in 2020, and concluded that almost a quarter of the problems are new variations of already known bugs that had previously received patches. The authors of the report write that many problems could have been avoided if the developers immediately corrected their products more thoroughly. In 2020,… Continue reading Google says that a quarter of all 0-day vulnerabilities are new variations of old problems
Google experts exposed sophisticated hacking campaign against Windows and Android users
Google published a large report detailing how they exposed a sophisticated hacking campaign that was discovered back in early 2020. The campaign targeted Android and Windows users, and attackers exploited for attacks four zero-day vulnerabilities. The researchers say the attacks they discovered were carried out from two exploit servers (one for Android, the other for… Continue reading Google experts exposed sophisticated hacking campaign against Windows and Android users