< ciso
brief />
Tag Banner

All news with #google tag

584 articles · page 8 of 30

Google Adds Rust DNS Parser to Pixel Modem Firmware

🛡️ Google has integrated a Rust-based DNS parser into the modem firmware for Pixel 10, marking the first Pixel modem component written in a memory-safe language. The change aims to eliminate a broad class of memory-safety bugs in DNS handling, using the hickory-proto crate adapted for embedded use and a custom cargo-gnaw tool to manage dependencies. The Rust implementation exposes a C API and dispatches existing C functions to update in‑memory structures.
read more →

Amazon Quick Adds Document-Level ACLs for Google Drive

🔐 Amazon Quick now supports document-level access controls for Google Drive knowledge bases, allowing organizations to retain native Google Drive permissions when indexing content. Quick combines indexed ACL replication for fast pre-retrieval filtering with a second layer of real-time permission checks against Google Drive at query time to prevent stale or mis-mapped access. When a user queries, Quick verifies their current Drive permissions before generating a response, ensuring answers reflect live access rights. This capability respects individual file and folder permissions and is available in all AWS Regions where Amazon Quick is offered. To enable it, create or update a Google Drive knowledge base in the Amazon Quick console and configure document-level access controls in the integration settings.
read more →

Google Brings Client-Side Gmail E2EE to Mobile for Orgs

🔐 Google has extended client-side encryption (CSE) for Gmail to Android and iOS for organizations using the Enterprise Plus with Assured Controls edition. Messages and attachments are encrypted on-device with customer-managed keys and require admins to enable the mobile clients in the CSE admin console. The feature is opt-in, requires premium licensing, and disables some Gmail capabilities (including AI features and full search) for encrypted content. Non-Gmail recipients receive a secure web portal to read and reply.
read more →

Data Curation Accelerators for Google Data Cloud Platform

🔍 Google outlines a set of curation accelerators within Google Data Cloud that automate cataloging, metadata enrichment, profiling, lineage, and pipeline generation to shorten time-to-insight. Key capabilities include Cloud Storage auto-discovery via Dataplex Universal Catalog, semantic metadata augmentation with Data Insights, automated data quality and lineage controls, and AI agents that generate ingestion and transformation code. The platform also provides built-in AI SQL functions, embeddings, and continuous queries to support multimodal and real-time curation. These features are designed to reduce manual ETL work so teams can focus on analysis, ML, and business decisions.
read more →

Architecting AI Infrastructure for U.S. Winter Olympians

🤖 In collaboration with Google DeepMind, the team built an AI pose-estimation pipeline that converts single 2D video into a 63-joint 3D biomechanical model for U.S. Olympians. The system uses learned temporal priors to infer occluded joints and delivers near-instant results by running models on statically provisioned TPU slices. Orchestration, scaling, and security are managed with Vertex AI and VPC private endpoints.
read more →

Accelerating Public Sector Innovation with Gemini Platform

🤖 Google positions Gemini Enterprise as a unified agentic platform and offers Gemini for Government to help public sector organizations move beyond pilots to agency-wide deployments that accelerate mission outcomes. Agencies including the CDAO, DOT, and FDA are deploying agents for administrative tasks, regulatory reviews, and scientific collaboration, while state and local governments modernize services and constituent support. Google highlights an integrated stack built for velocity, precision, cost efficiency, and security, cites industry recognition, and invites leaders to engage at Google Cloud Next.
read more →

Introducing QueryData: Near-100% Accurate Data Agents

🔍 QueryData launches in preview, offering near-100% accuracy translating natural language into database queries across AlloyDB, Cloud SQL (MySQL and PostgreSQL) and Spanner. Built on Google Cloud’s Gemini LLM and augmented by rich database context, it uses schema ontologies, query blueprints and ambiguity detection to generate precise queries. Deterministic security is enforced via Parameterized Secure Views (PSVs), and integration is supported through a unified QueryData API, the MCP Toolbox for Databases, and context-engineering tools including an Evalbench framework.
read more →

Bringing Rust to Pixel Baseband for Safer DNS Parsing

🛡️ Google’s Pixel team integrated a memory-safe Rust DNS parser into the cellular baseband on Pixel 10 to reduce a class of memory-safety vulnerabilities in a high-risk component. The project adapts the community hickory-proto crate for no_std, adds FFI shims, and builds Rust into the modem firmware via the existing GN/Pigweed build. The team prioritized community support and correctness over aggressive size optimization, reporting a combined code cost of ~371 KB and leaving size pruning to future work.
read more →

Google enables Gmail end-to-end encryption on mobile

🔐 Google has rolled out native end-to-end encryption for Gmail on Android and iOS, allowing enterprise users to compose and read encrypted emails without installing extra apps. The capability uses client-side encryption (CSE) and is available to organizations with Enterprise Plus licenses plus the Assured Controls add-on after admins enable mobile clients. Encrypted messages and attachments are encrypted on the device and delivered as regular emails, and recipients using other services can read them in a web browser.
read more →

Google Adds Device-Bound Session Credentials to Chrome 146

🔐 Google has made Device Bound Session Credentials (DBSC) generally available to Windows users on Chrome 146, with macOS support planned for a later release. DBSC uses hardware-backed modules like the Trusted Platform Module (TPM) to bind short-lived session cookies to a specific device so exfiltrated cookies cannot be used by attackers. The feature falls back gracefully on devices without secure key storage and was developed with Microsoft as part of efforts to make the approach an open web standard. Google says the architecture is privacy-minded and does not enable cross-site tracking.
read more →

Chrome 146 Adds Hardware-Bound Protection for Cookies

🔐 Google has introduced Device Bound Session Credentials (DBSC) protection in Chrome 146 for Windows to block infostealer malware from harvesting session cookies. The feature cryptographically ties session cookies to hardware-backed keys stored in the Trusted Platform Module (TPM) on Windows, with macOS support planned for a future release. Because the per-session private keys are generated by a security chip and cannot be exported, exfiltrated cookies become useless without proof of key possession. The protocol is privacy-conscious, uses distinct keys per session to avoid cross-site correlation, and was developed with industry input including Microsoft.
read more →

Device-Bound Session Cookies Arrive in Chrome 146

🔐 Chrome has enabled Device Bound Session Credentials (DBSC) publicly for Windows users on Chrome 146, with macOS support arriving in a future release. DBSC cryptographically binds short‑lived session cookies to a device's hardware-backed key (TPM or Secure Enclave) so exfiltrated cookies cannot be reused off‑device. The browser handles rotation and the approach preserves privacy by avoiding device identifiers. Web developers can adopt DBSC via the open spec and developer guide.
read more →

Ultimate Prompting Guide for Lyria 3 and Lyria 3 Pro

🎵 This guide outlines best practices for prompting Lyria 3 and Lyria 3 Pro, Google’s music generation models that deliver granular control over vocals, instrumentation, arrangement, and timing. It highlights technical details—track lengths from rapid 30-second prototypes to three‑minute compositions, multi‑vocal support in eight languages, timed-lyrics and tempo conditioning—and includes a concise prompting framework. The post also covers advanced workflows such as timestamped segment instructions and multimodal generation using images or PDFs, plus integration paths through Vertex AI and the Gen AI SDK.
read more →

Protecting Gmail Privacy as Gemini AI Enters Inbox

🔒 Google explains how it designed Gmail to protect user data as Gemini-powered features roll out. The company says Gemini is not trained on personal email content and only accesses messages for specific, isolated tasks like summarization. According to Gmail’s VP of product, Blake Barnes, the feature processes requests inside the inbox and does not retain the processed data.
read more →

Google launches Lyria 3 and Lyria 3 Pro on Vertex AI

🎵 Google has made Lyria 3 and Lyria 3 Pro available on Vertex AI in public preview, bringing high-fidelity music generation to the Vertex AI API and Media Studio. Lyria 3 Pro composes studio-quality tracks up to three minutes with structural elements (intros, verses, choruses, bridges), while Lyria 3 produces 30-second tracks for rapid prototyping. Both models accept multi-modal inputs (text or images), support vocal generation with timed lyrics or user-provided lyrics, and can produce purely instrumental pieces. Outputs are embedded with SynthID watermarking and filtered for policy and IP compliance.
read more →

Google Ironwood TPUs Deliver 3.7x Carbon Efficiency Gains

🌱 Google reports that its seventh‑generation TPU, Ironwood, achieved an approximately 3.7x improvement in Compute Carbon Intensity (CCI) versus TPU v5p based on fleet measurements in January 2026. CCI captures estimated CO2e per utilized FLOP, including embodied (Scope 3) and operational (Scope 1 and 2) emissions. Google also cites a roughly 5x increase in utilized FLOPs and a rise in peak BF16 FLOPS from 459 to 2,307. The company attributes gains to hardware advances and software/system optimizations such as Mixture of Experts sparsity, wider FP8 adoption, and improved fleet orchestration, while noting results are a point‑in‑time snapshot that can vary by workload, location, and accounting method.
read more →

Google patches fourth Chrome zero-day this year in 2026

🛡️ Google has patched a fourth zero-day in Chrome this year, addressing CVE-2026-5281 in Dawn, the browser's WebGPU implementation, which allowed remote code execution via a crafted HTML page when the renderer process was compromised. The company confirmed an exploit exists in the wild and urges users to update to Chrome 146.0.7680.178 or newer. This fix follows earlier 2026 patches for CSS memory handling, the Skia graphics library, and the V8 JavaScript engine.
read more →

Google Cloud unveils Veo 3.1 Lite and Upscaling on Vertex AI

🚀 Google Cloud has launched Veo 3.1 Lite, a cost‑effective video generation model available now on Vertex AI, and introduced a new standalone Veo upscaling capability currently in private preview. The Veo 3.1 family now includes three tiers—Veo 3.1, Veo 3.1 Fast, and Veo 3.1 Lite—all with native audio generation. The upscaling tool enhances existing low‑resolution videos to 1080p and 4K, regardless of source, and access is provided via the Vertex AI API and Vertex AI Media Studio. Developer documentation and a sample video editor agent are available to help teams get started.
read more →

Continuous defenses for Workspace against prompt injection

🔐 Google outlines a continuous, layered approach to mitigating indirect prompt injection (IPI) across Workspace with Gemini, combining proactive discovery, synthetic data generation, and iterative defenses. Human and automated red-teaming, an AI Vulnerability Rewards Program, and OSINT monitoring are used to catalog and expand attack variants. Deterministic configuration controls, ML retraining, LLM prompt hardening, and model-level defenses are validated through comparative testing to reduce IPI success while preserving routine performance.
read more →

Honeylove Unifies Data and AI with BigQuery and Gemini

🔍 Honeylove consolidated disparate analytics into BigQuery and integrated outputs with Gemini to automate reporting, contribution analysis, and SKU-level forecasting. They use BigQuery ML (ARIMA) for demand planning with forecasts consistently within 5% of manual calculations, and Gemini embeddings plus vector search to semantically analyze customer tickets. These automations have saved the team hundreds of hours annually and about 30 seconds per ticket, accelerating product iteration and operational efficiency.
read more →