project zero Stories February 14
Being the biggest Android OEM, Samsung and Google are generally close partners. Google’s Project Zero, though, is tasked with finding bugs and security exploits. This week, Google is calling out Samsung for an issue on the Galaxy A50, specifically mentioning Samsung’s “unnecessary changes” to Android’s core kernel.
project zero Stories January 7
Project Zero is widely regarded for finding major vulnerabilities, but criticized by industry peers for their relatively fast disclosure times. For 2020, the security team is trialing a new policy where a full 90 days will be given before disclosing issues.
project zero Stories September 6, 2019
Google stands by iOS vulnerability research following Apple rebuttal
Apple today released a rebuttal to the security vulnerabilities that Google detailed in depth last week and called it “one of the largest attacks against iPhone users ever.” The iOS maker took issue with several key points, but Google is standing by its works.
project zero Stories July 4, 2019
Google’s Project Zero reveals now-fixed iMessage flaw which could crash iPhones
Google’s Project Zero often discovers flaws in the software of other companies and gives 90 days for those flaws to be fixed before revealing them to the public. Today, Google has taken the wraps off of a flaw with Apple’s iMessage which would cause iPhones to repeatedly crash. Thankfully, Apple has already fixed it.
project zero Stories March 4, 2019
Google Project Zero team reveals ‘high severity’ flaw in macOS kernel, working w/ Apple on a patch
Google’s Project Zero team is well-known for revealing the bugs and security flaws within systems from Google itself, as well as other big companies. Most recently, the team at Google has reported and publicly disclosed a “high severity” flaw in the macOS kernel which can grant an attacker access to a users computer without their knowledge.
project zero Stories January 3, 2018
Over the past 24 hours, the tech industry has been rocked by a wide-ranging CPU vulnerability. Discovered by Google’s Project Zero security team last year, details of the exploits have now officially emerged. Meanwhile, Google has provided a full list of mitigation status for its products from Android to enterprise services.
