-
Google Confirms Data Breach Linked to Ongoing Salesforce Attacks
Google has confirmed that it suffered a data breach linked to the ShinyHunters extortion group, amidst an ongoing series of Salesforce data theft attacks that have implicated multiple high-profile companies.
-
Google Unveils OSS Rebuild to Enhance Open Source Security Amid Supply Chain Threats
Google has launched OSS Rebuild, a new initiative designed to bolster the security of open-source package ecosystems by providing build provenance and mitigating software supply chain attacks.
-
Google Addresses Critical Zero-Day Vulnerability in Chrome Browser
Google has released security updates to patch a critical zero-day vulnerability in its Chrome browser, tracked as CVE-2025-6554, which has potentially been exploited in the wild. Users are urged to update their browsers to safeguard against possible attacks.
-
Google Enhances AI Security with Layered Defenses Against Prompt Injection Attacks
Google has taken significant steps to enhance the security of its generative AI systems by implementing layered defenses against indirect prompt injections, which pose a new cybersecurity risk. These measures include advanced filtering techniques and a proactive approach to preventing malicious user inputs.
-
Cyber Crime Crew Scattered Spider Targets US Insurance Companies Amid Ransomware Surge
A rise in ransomware attacks targeting US insurance companies has been attributed to the cybercrime group Scattered Spider, prompting warnings from Google about the necessity for heightened security measures within the industry.
-
Google Addresses Vulnerability Exposing Users’ Phone Numbers
A vulnerability in Google’s account recovery process allowed researchers to brute-force phone numbers linked to accounts, posing a significant risk of phishing and SIM-swapping attacks, now patched by the tech firm.
-
Google Warns of Data Extortion Attacks Targeting Salesforce Accounts
Google has alerted companies using Salesforce to the rise of social engineering attacks targeting their platforms, warning that hackers claiming affiliation with the ShinyHunters extortion group are using advanced phishing tactics to steal sensitive data.
-
Google Addresses Active Exploit with Chrome Security Update
Google has released emergency fixes for its Chrome browser to address a critical vulnerability, CVE-2025-5419, that is being actively exploited in the wild. Users are urged to update to safeguard against potential threats.
-
Google Fixes High-Severity Chrome Vulnerability Amid Ongoing Attacks
Google has fixed a critical vulnerability in Chrome, CVE-2025-4664, being actively exploited by attackers. CISA’s inclusion of this flaw in its known exploited vulnerabilities list underscores urgent calls for browser updates among federal agencies and private organizations alike.
-
Google Enhances Chrome Security by Blocking Admin-Level Launches
Google’s new feature for Chrome will block the browser from launching with administrative rights, enhancing security similar to measures already implemented in Microsoft Edge. This change aims to reduce the risk of malware executing with elevated permissions and compromising user systems.
