Posted by Travis McCoy, Product Manager, Google Security TeamEntering your username and password on a standard website gives you access to everything from your email and bank accounts to your favorite social networking site. Your passwords possess a lo…
Posted by Travis McCoy, Product Manager, Google Security TeamEntering your username and password on a standard website gives you access to everything from your email and bank accounts to your favorite social networking site. Your passwords possess a lo…
Posted by Adam Mein, Google Security TeamQuite a few security companies and organizations produce vulnerability databases, cataloguing bugs and reporting trends across the industry based on the data they compile. There is value in this exercise; specif…
Posted by Chris Evans, Eric Grosse, Neel Mehta, Matt Moore, Tavis Ormandy, Julien Tinnes, Michal Zalewski; Google Security TeamVulnerability disclosure policies have become a hot topic in recent years. Security researchers generally practice “respons…
Posted by Murali Viswanathan, Product ManagerGoogle understands the potential risks of browsing the web on an unsecured network, particularly when information is sent over the wire unencrypted — as it is for most major websites today. That’s why we…
Posted by Bruce Leban, Software EngineerUPDATE July 13: We have changed the name of the codelab application to Gruyere. The codelab is now located at http://google-gruyere.appspot.com.We want Google employees to have a firm understanding of the threats…
Posted by Niels Provos, Security TeamFor years, we have detected malicious content on the web and helped protect users from it. Vulnerabilities in web browsers and popular plugins have resulted in an increased number of users whose systems can be compr…
Posted by Neel Mehta, Security TeamIn January, we discussed a set of highly sophisticated cyber attacks that originated in China and targeted many corporations around the world. We believe that malware is a general threat to the Internet, but it is esp…
Posted by Eric Sachs, Senior Product Manager, Google SecurityLast November, we discussed the progress that account login systems operating via standards-based identity technologies like OpenID have achieved across the web. As more websites seek to inte…
Posted by Eric Davis, Head of Anti-MalvertisingAs part of Cyber Security Awareness Month, we’re highlighting cyber security tips and features to help ensure you’re taking the necessary steps to protect your computer, website, and personal information. …
Posted by Macduff Hughes, Engineering DirectorThere’s been some discussion today about the security of online accounts, so we wanted to share our perspective. These are topics that we take very seriously because we know how important they are to our us…
Posted by Alma Whitten, Software Engineer, Security & Privacy TeamsA group of privacy and security experts sent a letter today urging Google to strengthen its leadership role in web application security, and we wanted to offer some of our thoughts …