Google Workspace - Security Ticks

Design flaw leaves Google Workspace vulnerable for takeover

Google, Google Workspace, Hunters, News, vulnerability / SecurityTicks

Design flaw leaves Google Workspace vulnerable for takeover 28/11/2023 at 18:31 By Help Net Security A design flaw in Google Workspace’s domain-wide delegation feature, discovered by Hunters’ Team Axon, can allow attackers to misuse existing delegations, enabling privilege escalation and unauthorized access to Workspace APIs without Super Admin privileges. Such exploitation could result in the […]

React to this headline:

Design flaw leaves Google Workspace vulnerable for takeover Read More »

Google Workspace: New account security, DLP capabilities announced

access control, data loss prevention, Don't miss, enterprise, Google Workspace, Hot stuff, News, security controls, SMBs / SecurityTicks

Google Workspace: New account security, DLP capabilities announced 25/08/2023 at 07:47 By Zeljka Zorz New capabilities in Google Workspace will help enterprises improve account and data security, by making unauthorized takeover of admin and user accounts and exfiltration of sensitive data more difficult. Some of these options are already available in preview and others will

React to this headline:

Google Workspace: New account security, DLP capabilities announced Read More »

Google extends passkeys to Google Workspace accounts

account protection, authentication, Don't miss, Google, Google Cloud, Google Workspace, Hot stuff, News, passwordless / SecurityTicks

Google extends passkeys to Google Workspace accounts 05/06/2023 at 17:56 By Helga Labus After making passkeys available for consumers in early May, Google is now rolling them out for Google Workspace and Google Cloud accounts. This feature will soon be available (in open beta) for more than 9 million organizations and aims to provide users

React to this headline:

Google extends passkeys to Google Workspace accounts Read More »

Threat actors can exfiltrate data from Google Drive without leaving a trace

digital forensics, Don't miss, enterprise, Google, Google Drive, Google Workspace, Hot stuff, Incident Response, Mitiga, News, SMBs, threat hunting / SecurityTicks

Threat actors can exfiltrate data from Google Drive without leaving a trace 01/06/2023 at 15:43 By Zeljka Zorz Google Workspace (formerly G Suite) has a weak spot that can prevent the discovery of data exfiltration from Google Drive by a malicious outsider or insider, Mitiga researchers say. A problem for digital forensic analysts and incident

React to this headline:

Threat actors can exfiltrate data from Google Drive without leaving a trace Read More »