Category: project zero

Google’s new policy gives developers more time to address security flaws

Post author By Randall
Post date January 7, 2020
Categories In disclosure, gear, Google, Internet, patch, project zero, Security, Tech, vulnerability, zero-day

[ad_1] There are more reforms. If there’s an incomplete fix, it’ll be reported to the developer and added to an existing report. Before, it would sometimes be treated as a separate problem with its own deadline. Google will also open tracker reports the moment a flaw is patched during the “grace period” (a 14-day window […]

LastPass patched a bug that could have exposed your passwords

Post author By Randall
Post date September 16, 2019
Categories In bug, chrome, credentials, flaw, gear, Google, Internet, lastpass, leaked, malicious, Mobile, opera, password manager, patch, project zero, Security, Tech, update, vulnerability

[ad_1] Security researcher Tavis Ormandy, of Google’s Project Zero, notified LastPass of the bug. The flaw could have allowed hackers on malicious sites to access users’ credentials entered on the previous site. Fortunately, there’s no reason to believe the bug was exploited, and while it only impacted Chrome and Opera browsers, LastPass patched all browser […]