Google looks at bypass in Chromium’s ASLR security defense, throws hands up, won’t patch garbage issue

Engineers write off GC abuse because Spectre broke everything anyway In early November, a developer contributing to Google’s open-source Chromium project reported a problem with Oilpan, the garbage collector for the browser’s Blink rendering engine: it can be used to break a memory defense known as address space layout randomization (ASLR).… The Register – Security

Google Says They Won’t Use Other Web Tracking Tools After Phasing Out Cookies

Packet Storm

Would you let users vouch for unknown software’s safety with an upvote? Google does

And so can you, because its vote-for-code tools are now on GitHub POLL  Google has revealed that its internal anti-malware tools include a “social voting” scheme that lets staff vouch for code they want to install won’t do any damage.… The Register – Security

Dutch government: Did we say 10 ‘high data protection risks’ in Google Workspace block adoption? Make that 8

Untangling privacy implications of using Google’s productivity suite not easy A Dutch government report identifying “10 high data protection risks” for users of Google Workspace, formerly known as G Suite, has been revised after Google’s response, and now says eight high risk issues still remain.… The Register – Security

Google Will Use ‘FLoC’ for Ad Targeting Once 3rd-Party Cookies Are Dead

Signaling a major shift to its ads-driven business model, Google on Wednesday unequivocally stated it would not build alternate identifiers or tools to track users across multiple websites once it begins phasing out third-party tracking cookies from its Chrome browser by early 2022. “Instead, our web products will be powered by privacy-preserving APIs which prevent […]

Next Page »