Google Archives

Workers enter a building on the Google headquarters campus on July 23, 2025, in Mountain View, California. (Justin Sullivan/Getty Images)

Project Zero disclosure policy change puts vendors on early notice

Google wants to shorten delays in the vulnerability lifecycle by sharing limited details about newly discovered defects within a week of reporting to the affected vendor.

1 day ago By Matt Kapko

NEW YORK, NEW YORK – MARCH 18: In this photo illustration, Gemini Ai is seen on an iPad on March 18, 2024 in New York City. Apple announced that they’re exploring a partnership with Google to license the Gemini AI-powered features on iPhones with iOS updates later this year. Google already has a deal in place with Apple to be the preferred search engine provider on iPhones for the Safari browser. (Photo Illustration by Michael M. Santiago/Getty Images)

Researchers flag flaw in Google’s AI coding assistant that allowed for ‘silent’ code exfiltration

The findings are part of a growing list of instances where “agentic” AI software has taken actions that are more akin to a malicious hacker than a…

3 days ago By Derek B. Johnson

China and Italy, two flags waving against blue sky. 3d image. Aleksandra Aleshchenko, iStock/Getty Images Plus

Italian authorities arrest Chinese man over Microsoft Exchange Server hack, targeting of COVID-19 researchers

The arrest came at the request of the United States, which hailed the development as a sign that patience in pursuing cybercriminals in court is rewarded.

Jul 8, 2025 By Tim Starks

Russian President Vladimir Putin delivers a speech standing in front of the monument “Fatherland, Valor, Honor” outside of the Foreign Intelligence Service of the Russian Federation (SVR) in Moscow on June 30, 2022. (Photo by Mikhail Metzel / Sputnik / AFP) (Photo by MIKHAIL METZEL/Sputnik/AFP via Getty Images)

Unusually patient suspected Russian hackers pose as State Department in ‘sophisticated’ attacks on researchers

They weren’t in any hurry, according to Citizen Lab, and used an interesting attack vector. Google Threat Intelligence Group also provided details on the attacks.

Jun 18, 2025 By Tim Starks

Salesforce headquarters in San Francisco. — Exterior view of Salesforce’s headquarters in San Francisco on Feb. 28, 2024. (Justin Sullivan/Getty Images)

Salesforce customers duped by series of social-engineering attacks

Google Threat Intelligence Group said about 20 organizations have been hit by a cybercrime group it tracks as UNC6040.

Jun 4, 2025 By Matt Kapko

Google addresses 34 high-severity vulnerabilities in June’s Android security update

The most serious flaw in the monthly security update affects the Android system and could be exploited to achieve local escalation of privilege, the company said.

Jun 3, 2025 By Matt Kapko

CrowdStrike, Microsoft aim to eliminate confusion in threat group attribution

Wild variances in naming taxonomies aren’t going away, but a new initiative from the security vendors aims to more publicly address obvious overlap in threat group attribution.

Jun 3, 2025 By Matt Kapko

A smart phone with the icons for the Google Calendar app is seen on the screen in Hong Kong, Hong Kong, on July 31, 2018. (Photo by S3studio/Getty Images)

Chinese hackers used Google Calendar to aid attacks on government entities

Google Threat Intelligence Group said it developed means to counter the activity, which it linked to APT41.

May 28, 2025 By Tim Starks

Signage at the headquarters of SAP AG, Germany’s largest software company on January 8, 2013 in Walldorf, Germany. (Photo by Thomas Lohnes/Getty Images)

SAP cyberattack widens, drawing Salt Typhoon and Volt Typhoon comparisons

Multiple firms are tracking the zero-day attacks on Europe’s top software firm.

May 15, 2025 By Tim Starks

Google adds suite of security features to Android 16

The company plans to add its Advanced Protection program on devices, as will use AI to detect and stop scams.

May 13, 2025 By Greg Otto