Google

Reports have emerged from China of an ingenious new backdoor Android malware attack that has infected hundreds of thousands of subscribers and can prove difficult to de-install without technical support.

Dubbed Trojan!SMSZombie.A - 'SMSZombie' for short - by one of the companies reporting on it, the malware is said to have spread through the largest Chinese Android marketplace, GFan, piggybacking itself as a back door on the back of porn-themed wallpaper apps.

It was mostly a civil day, by the standards of this trial—but that might just be because both sides are so tired, and because the jury isn't around to watch. Apple and Samsung attorneys fired off their final concerns about the jury instructions and the jury verdict form to US District Judge Lucy Koh today, less than 24 hours before the case heads to a jury.

L33tdawg:  $2 million sounds mighty tasty :) What are you waiting for?! Book those flight tickets already!!!

If Google hadn’t made the message clear enough already: It really, really wants you to hack its software.

In an effort to direct web traffic toward sites with legitimate content, Google launched a new policy this week that will punish copyright infringers with less-than-desired search rankings.

The policy dictates that websites with a high number of valid copyright-removal notices will be pushed down on Google's search results, Amit Singhal, Google's senior vice president of engineering, said in a blog post on the policy Friday.

Google has released version 22 of their popular Chrome web browser and while it doesn’t come with a huge list of changes, there are a couple of features to get excited about if you are concerned with security. Google has infused Chrome with the fully hardware-accelerated Pepper Flash plug-in for Windows users, resulting in what has been described as unrivalled protection against malicious Flash apps found lurking on the Internet.

Firefox is still fighting back. After dipping below 20 percent share in May, it looked like the browser was sure to relinquish its silver medal position to Chrome. June saw a surprise turnaround and that's continued into July.

Internet Explorer stays in gold with a 53.90 percent share of the desktop market, down 0.10 point from June. Firefox is up 0.14 points to 20.2 percent. Chrome picks up the bronze with an 18.9 percent share, down 0.18 points from a month ago. Safari is up 0.17 points to 4.90 percent, and Opera essentially unchanged, down 0.01 points to 1.59 percent.

Google today released Chrome 21. On the security side, the new version fixes 15 vulnerabilities: one critical flaw, six high-severity flaws, five medium-severity flaws, and three low-severity flaws. You can update to the latest version using the software's built-in silent updater, or you can download the latest version of Chrome directly from google.com/chrome.

Two researchers demonstrated how they were able to push a malicious information-stealing app onto Google Play, even while Google's Bouncer custom malware scanner is watching.

They circumvented Bouncer, an automated scanner, with a JavaScript trick that transformed a benign Android app into a malicious one on Google Play, Nicholas Percoco, head of Trustwave Spider Labs, told attendees at Black Hat security conference in Las Vegas on Wednesday.

Google is trying to clean up the Web, one comment at a time. Earlier this week it introduced a new feature designed to drain the online cesspool better known as YouTube comments.

YouTube has long been the repository of anonymous, illiterate, hateful, and just plain brain-dead comments since its inception. Now Google is trying to gently urge people to post videos and comments using their real names -- more specifically, their Google+ identities -- in the quaint notion that if people are held accountable by name, they might possibly act a little less like jerks. Maybe.

In an analysis published Monday, security researcher Jon Oberheide said Android version 4.1, aka Jelly Bean, is the first version of the Google-developed OS to properly implement a protection known as address space layout randomization. ASLR, as it's more often referred to, randomizes the memory locations for the library, stack, heap, and most other OS data structures. As a result, hackers who exploit memory corruption bugs that inevitably crop up in complex pieces of code are unable to know in advance where their malicious payloads will be loaded.