May 31, 2025Ravie LakshmananMalware / Cyber Crime A multinational law enforcement operation has resulted in the takedown of an online cybercrime syndicate that offered services to threat actors to ensure that their malicious software stayed undetected from security software. To… Read More "U.S. DoJ Seizes 4 Domains Supporting Cybercrime Crypting Services in Global Operation"
Posted by Lyubov Farafonova, Product Manager, Phone by Google; Alberto Pastor Nieto, Sr. Product Manager Google Messages and RCS Spam and Abuse Google has been at the forefront of protecting users from the ever-growing threat of scams and fraud with… Read More "New AI-Powered Scam Detection Features to Help Protect You on Android"
In 2024, our Vulnerability Reward Program confirmed the ongoing value of engaging with the security research community to make Google and its products safer. This was evident as we awarded just shy of $12 million to over 600 researchers based… Read More "Google Online Security Blog: Vulnerability Reward Program: 2024 in Review"
In December 2022, we released the open source OSV-Scanner tool, and earlier this year, we open sourced OSV-SCALIBR. OSV-Scanner and OSV-SCALIBR, together with OSV.dev are components of an open platform for managing vulnerability metadata and enabling simple and accurate matching… Read More "Vulnerability scanner and remediation tool for open source"
We’re excited to announce that starting today, Titan Security Keys are available for purchase in more than 10 new countries: Ireland Portugal The Netherlands Denmark Norway Sweden Finland Australia New Zealand Singapore Puerto Rico This expansion means Titan Security Keys… Read More "Titan Security Keys now available in more countries"
Posted by Chrome Root Program, Chrome Security Team The Chrome Root Program launched in 2022 as part of Google’s ongoing commitment to upholding secure and reliable network connections in Chrome. We previously described how the Chrome Root Program keeps users… Read More "New security requirements adopted by HTTPS certificate industry"
In partnership with NVIDIA and HiddenLayer, as part of the Open Source Security Foundation, we are now launching the first stable version of our model signing library. Using digital signatures like those from Sigstore, we allow users to verify that… Read More "Practical Model Signing with Sigstore"
Today, we’re announcing Sec-Gemini v1, a new experimental AI model focused on advancing cybersecurity AI frontiers. As outlined a year ago, defenders face the daunting task of securing against all cyber threats, while attackers need to successfully find and exploit… Read More "Google announces Sec-Gemini v1, a new experimental cybersecurity model"
As businesses grow, so does their digital footprint and exposure to high-risk cyber threats. External attack surface management (EASM) is the continuous practice of identifying, monitoring, and securing public-facing assets, such as forgotten subdomains and expired certificates that attackers could… Read More "What is External Attack Surface Management (EASM)?"
For years, a mysterious figure who goes by the handle Stern led the Trickbot ransomware gang and evaded identification—even as other members of the group were outed in leaks and unmasked. This week German authorities revealed, without much fanfare, who… Read More "A Hacker May Have Deepfaked Trump’s Chief of Staff in a Phishing Campaign"
