Google | OSG: Bits, Bytes and Packets

Skip navigation

Category Archives: Google

Google plugs Chrome Zero-Day hole that is actively being exploited in the wild.

December 21, 2023 – 10:10 pm
Posted in Computers and Internet, Cyber security, Exploit Warning, Google, Patch Available, Vulnerability, Zero Day
Tagged Chrome, CVE-2023-7024, heap-based buffer overflow, thehackernews.com
Leave a Comment

This is said to be a heap buffer overflow flaw in the WebRTC framework according to Google.

A heap buffer overflow is a software code vulnerability that can be faulted or exploited by a bad actor, which can cause unintended consequences including a blue screen of death (BSOD, unauthorized access, or Denial of Service (DoS). The overflow generally occurs when the allotted storage capacity is exceeded by the volume of data.

More can be read at thehackernews.com here:

Apple patches Zero-Day vulnerabilities to iOS, macOS and Safari

December 1, 2023 – 12:07 pm
Posted in Apple, Attacks, Computers and Internet, Exploit Warning, Google, Patch Available, Smartphones, Vulnerability, Zero Day
Tagged CVE-2023-42916, CVE-2023-42917
Leave a Comment

https://thehackernews.com/2023/12/zero-day-alert-apple-rolls-out-ios.html

https://support.apple.com/en-us/HT201222

Watch out for Fake Chrome update error messages

May 9, 2023 – 2:25 pm
Posted in Attacks, Cloud, Computers and Internet, Cyber security, Google, Leaked Credentials, Malware, Privacy Alert, Social Engineering, Technology
Tagged Browser, Chrome, Monero miner, Trend Micro
Leave a Comment

https://news.trendmicro.com/2023/05/01/fake-google-chrome-update-error-message/

Credit: NTT Security via TrendMicro.com

Android Framework vulnerability allows bad actors to escalate privileges on unpatched devices. CISA states Chinese app exploiting to spy on users

April 17, 2023 – 11:29 am
Posted in Android, Attacks, CISA, Computers and Internet, Cyber security, Exploit Warning, Google, Privacy Alert, Smartphones, Supply Chain Attack, Technology, Vulnerability
Tagged Android Framework, Bleepingcomputer.com, CVE-2023-20963, Privilege escalation
Leave a Comment

https://www.bleepingcomputer.com/news/security/cisa-warns-of-android-bug-exploited-by-chinese-app-to-spy-on-users/

Chrome patches Zero-Day where a malicious page can run arbitrary code in the browser. Exploit(s) in the wild.

April 17, 2023 – 10:29 am
Posted in Attacks, Computers and Internet, Cyber security, Exploit Warning, Google, Patch Available, Technology, Vulnerability, Zero Day
Tagged 112.0.5615.121, Chrome, CVE-2023-2033, theregister
Leave a Comment

https://www.theregister.com/2023/04/17/chrome_emergency_patch/

Google releases patch for another zero-day in Chrome

November 25, 2022 – 10:20 am
Posted in Attacks, Computers and Internet, Cyber security, Dont wait, Exploit Warning, Google, Patch Available, Technology, Vulnerability, Zero Day
Tagged Chrome, CVE-2022-4135, thehackernews.com
Leave a Comment

https://thehackernews.com/2022/11/update-chrome-browser-now-to-patch-new.html

thehackernews.com

Google acquires Mandiant

September 12, 2022 – 9:41 am
Posted in Cloud, Computers and Internet, Cyber security, Google, Technology
Tagged Mandiant
Leave a Comment

https://cloud.google.com/blog/products/identity-security/google-completes-acquisition-of-mandiant

Google easily ate the largest DDoS attack (to date)

August 19, 2022 – 8:10 am
Posted in Attacks, Cloud, Computers and Internet, Cyber security, DDoS, Google, Technology
Tagged Bleepingcomputer.com, Google’s Cloud Armor Protection, https
Leave a Comment

https://www.bleepingcomputer.com/news/security/google-blocks-largest-https-ddos-attack-reported-to-date/

Google via Bleepingcomputer.com

Chrome Zero-Day being exploited

August 17, 2022 – 3:15 pm
Posted in Attacks, Computers and Internet, Cyber security, Exploit Warning, Google, HAck, Patch Available
Tagged Chrome, CVE-2022-2856, insufficient validation of untrusted input, thehackernews.com
Leave a Comment

https://thehackernews.com/2022/08/new-google-chrome-zero-day.html

Cisco confirms breach via employee’s personal Google account

August 11, 2022 – 12:03 pm
Posted in Attacks, Cloud, Computers and Internet, Cyber security, Google, HAck, Leaked Credentials, Phishing, ransomware, Scam, Social Engineering
Tagged Cisco, Cisco Talos, Cobalt Strike, Impacket, Lapsus$, LogMeIn, MFA, Mimikatz, PowerSploit, TeamViewer, threatpost.com, UNC2447
Leave a Comment

Cisco Confirms Network Breach Via Hacked Employee Google Account

https://blog.talosintelligence.com/2022/08/recent-cyber-attack.html