Google’s new Security Checkup all but eliminating identity theft

As a final fling to Cybersecurity Awareness Month, Google has announced a new and improved Security Checkup process that aims to make it near impossible to have your online identity stolen.
“We’re constantly protecting your information from attackers’ tricks, and with these new protections and tools, we hope you can spend your Halloween worrying about zombies, witches, and your candy loot—not the security of your account.” – Google Security Blog 2018
We should, by now, all be aware that online security is really important, however this doesn’t mean that we aren’t vulnerable to the occasional phishing scam or other malicious data hacking techniques. It’s Google’s goal to further eliminate this “possibility.” From now on you will be required to have JavaScript enabled before you can even log in to your Google account, allowing them to run a “Pre-flight check” on your login circumstances before you can even begin.
 

Google’s updated Security Checkup will now let you know whenever you share any of your Google data with third-party apps. If Google’s spidey senses tingle and they think your account may have been compromised, it will automatically trigger a series of verification steps.
You will be asked to verify your identity via an account recovery method (backup email, SMS). You’ll also be asked to verify the last few financial transactions made on your account to ensure your payment methods haven’t been compromised. And finally, you’ll your recent GMail and Drive data will be checked and verified.
Google is really making every effort to ensure our online security, meaning that even those who aren’t so “internet minded” can keep their sensitive data secure. The all-new hand-holding process really makes it almost impossible to have your online data and identity stolen.
They sign off their blog:
We are constantly working to strengthen our automatic protections to stop attackers and keep you safe. We’ve got your back.
Okay Google. Thank you…
Source: Google Online Security Blog

Google explains how the new Titan M chip makes the Pixel 3 more secure

Google touched on the new Titan M security chip at last week’s Pixel unveiling, but hardware czar Rick Osterloh was vague on the details. Now, Google has provided more information about what this new piece of silicon is doing inside the Pixel 3. Not only does it make your lockscreen harder to bypass, it makes the phone’s firmware nigh unhackable with so-called “side-channel” attacks like Meltdown and Spectre.

The Titan M is Google’s second-generation custom security chip—you can see Titan M above on the right, next to the larger Titan server chip. Read MoreGoogle explains how the new Titan M chip makes the Pixel 3 more secure was written by the awesome team at Android Police.

Newegg hacked, card information stolen for millions

Popular e-commerce website Newegg is the latest victim of cyber attacking by Magecart, according to Volexity, a cyberthreat monitoring firm. Newegg is one in a string of high profile cyber attacks making use of the card skimming code which recently compromised British Airways, Ticketmaster, and Feedify. Most critically, customer names and complete card details were stolen using exploited code between August 16th and September 18th.
Magecart exploited the Newegg checkout process with JavaScript similar to the code used in their hacking of British Airways. Read MoreNewegg hacked, card information stolen for millions was written by the awesome team at Android Police.