DevOps teams dedicated to securing their supply chain and predicting potential risks consistently face novel threats. Fortunately, they can now improve their image and container security by harnessing Google-grade vulnerability scanning, which offers expanded open-source coverage. A significant benefit of… Read More "Google Cloud expands vulnerability detection for Artifact Registry using OSV"
Aug 14, 2025Ravie LakshmananVulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws impacting N-able N-central to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. N-able N-central is a… Read More "CISA Adds Two N-able N-central Flaws to Known Exploited Vulnerabilities Catalog"
In December 2022, we announced OSV-Scanner, a tool to enable developers to easily scan for vulnerabilities in their open source dependencies. Together with the open source community, we’ve continued to build this tool, adding remediation features, as well as expanding… Read More "A library for Software Composition Analysis"
Posted by Jianing Sandra Guo, Product Manager, Android, Nataliya Stanetsky, Staff Program Manager, Android Today, people around the world rely on their mobile devices to help them stay connected with friends and family, manage finances, keep track of healthcare information… Read More "Android enhances theft protection with Identity Check and expanded features"
Modern AI systems, like Gemini, are more capable than ever, helping retrieve data and perform actions on behalf of users. However, data from external sources present new security challenges if untrusted sources are available to execute instructions on AI systems.… Read More "How we estimate the risk from prompt injection attacks on AI systems"
Posted by Bethel Otuteye and Khawaja Shams (Android Security and Privacy Team), and Ron Aquino (Play Trust and Safety) Android and Google Play comprise a vibrant ecosystem with billions of users around the globe and millions of helpful apps. Keeping… Read More "How we kept the Google Play & Android app ecosystems safe in 2024"
Businesses today operate in a world that is becoming increasingly unpredictable, and therefore the operations must be safeguarded against possible disruptions with Business Continuity and Disaster Recovery Planning. In this regard, one of the key concepts required to prepare for… Read More "Business Continuity and Disaster Recovery Planning in IT"
Today, incident response to security incidents is inevitable for any company in this digital era. However, incidents might happen-even if you are an aspirant for cybersecurity or IT security exams. It’s pretty important that you understand the steps involved in… Read More "Importance of Security Incident Response: A Guide for Cybersecurity Exam Preparation"
A well-planned strategy of Security Incident Response will not only enable an organization to cope with these situations much more effectively but also reduce their impacts. Therefore, gaining insight into the details of incident response can help improve your knowledge… Read More "Security Incident Response and Plan Development: An overview for Cybersecurity Exam Preparation"
In practice, metrics and monitoring are very important in determining how well business activities are performed. This equally applies to information security. Metrics consist of quantifiable measures that indicate how an activity is being performed, while monitoring is the ongoing… Read More "The Importance of Metrics and Monitoring in Information Security"
