All news with #google tag

Secure Age Assurance for Europe and Global Internet

🔒 Google outlines a privacy-forward approach to online age assurance that emphasizes interoperability and targeted protections for children, teens, and parents. The post highlights the new Credential Manager API on Android, which enables sites and apps to request only necessary age information from trusted credential holders. Backed by zero-knowledge proofs, the system can verify age thresholds (for example, over 18) without exposing identity or additional personal data. Google urges standards development and cross-sector collaboration to extend and adopt this secure infrastructure.

Google survey: U.S. consumers report rising online scams

🔒 Google’s latest survey with Morning Consult shows U.S. consumers increasingly aware of online scams and taking new protective steps. Over 60% report an uptick in scams and one-third say they experienced a data breach, with texts and email the most common vectors. The report highlights generational differences in sign-in preferences — older adults rely on passwords while Gen Z favors passkeys and social sign-ins — and recommends Google Password Manager, 2‑Step Verification and modern authentication methods.

Chrome to Remove Default Trust for Two Root CAs from Store

🛡️ Chrome will stop trusting new TLS server certificates chaining to roots owned by Chunghwa Telecom and NetLock when the certificate's earliest Signed Certificate Timestamp (SCT) is dated after July 31, 2025. The change, effective in Chrome 139+ on Windows, macOS, ChromeOS, Android and Linux (not iOS), begins around August 1, 2025 and will show an interstitial for affected sites. Site operators should replace impacted certificates before expiry or use enterprise policies to add local trust to avoid user disruption.

Cost of Quantum Factoring for RSA: Updated Estimates

🧮 Google Quantum AI authors report that a future quantum computer with roughly one million noisy qubits running for about a week could theoretically factor a 2048-bit RSA key — a roughly 20× reduction in qubit requirements compared to their 2019 estimate. The improvement reflects both algorithmic advances (including approximate modular exponentiation and lower operation overhead) and error-correction gains. The post stresses the urgency of migrating to post-quantum cryptography (PQC) per NIST guidance, highlights deployment steps already taken in Chrome and Cloud KMS previews, and warns of “store now, decrypt later” risks for long-lived keys.

Android security and privacy updates in 2025 — protections

🔒 Google outlines a suite of Android security and privacy enhancements for 2025, focused on countering scams, fraud, and device theft. New in-call protections block risky actions during calls with unknown contacts, and a UK pilot will extend screen-sharing warnings to participating banking apps. AI-powered Scam Detection in Google Messages has been expanded and runs on-device to preserve privacy, while a new Key Verifier enables public-key verification for end-to-end encrypted messages. Additional theft protections, Advanced Protection device settings, and updates to Google Play Protect round out the release.

Android 16 Adds Advanced Protection for Mobile Devices

🔐Android 16 introduces a device-level Advanced Protection setting that applies Google's strongest security features to mobile devices. Designed for at-risk individuals—journalists, elected officials, public figures—and any user who prioritizes heightened security, the feature consolidates multiple protections and prevents their accidental or malicious disablement. It also enables Android-specific capabilities like Intrusion Logging, a tamper-resistant, privacy-preserving log backup for forensic analysis. Activation is simple, and Google plans to add USB protections, network auto-reconnect controls, and Scam Detection integration later this year.

VirusTotal IP Address Change and TLS Provider Update

🔔 VirusTotal is changing the IP address for www.virustotal.com from 74.125.34.46 to 34.54.88.138, with a gradual rollout beginning on November 25. If you currently whitelist or have hardcoded the previous IP in firewalls or proxies, update your rules to include the new address to avoid service interruptions. We are also replacing our DigiCert wildcard TLS certificate with a Google Trust Services single-host certificate—update any certificate signer or subject validations accordingly. Note that the Big Files upload flow returns URLs on bigfiles.virustotal.com, which is served via a ghs.googlehosted.com load balancer using dynamic IP resolution; ensure your controls permit DNS-based resolution for those endpoints.