Tuesday , November 12 2024

Google Workspace: New account security, DLP capabilities announced

Google Workspace has introduced new features to enhance account and data security for businesses. These features aim to make it harder for unauthorized individuals to take control of admin and user accounts, as well as prevent the extraction of sensitive data.

A few of these options are already accessible in preview, while the remaining ones will be available by the end of the year.

CISA Warns of 3 Critical Vulnerabilities in Industrial Control Systems

On November 7, 2024, CISA released advisories about 3 critical security issues, vulnerabilities, and exploits related to Industrial Control Systems...
Read More
CISA Warns of 3 Critical Vulnerabilities in Industrial Control Systems

Cyberattack Disrupts Israel’s Gas and Payment Systems

A cyberattack on an Israeli clearing company on Sunday left some people unable to use their credit cards for shopping...
Read More
Cyberattack Disrupts Israel’s Gas and Payment Systems

Russia blocks thousands websites using Cloudflare’s privacy service

Russia's media censor, Roskomnadzor, has blocked thousands of local websites using Cloudflare's encryption feature that enhances online privacy and security....
Read More
Russia blocks thousands websites using Cloudflare’s privacy service

Hacker to sale Indian Gov.t email credentials

Advertisement for selling the credentials of allegedly belonging to Indian government emails surfaced on the dark web marketplace. A hacker...
Read More
Hacker to sale Indian Gov.t email credentials

Cyberattacks increase 105% in third quarter of 2024 in Bangladesh

Bangladesh faced a 105% rise in cyber incidents from the second to the third quarter of 2024, making it one...
Read More
Cyberattacks increase 105% in third quarter of 2024 in Bangladesh

Developers alert: Malicious ‘fabrice’ Package Steals AWS Credentials

The Socket Research Team has discovered a malicious package named "fabrice," pretending to be the legitimate fabric SSH automation library....
Read More
Developers alert: Malicious ‘fabrice’ Package Steals AWS Credentials

CISA alerts active exploitation of Palo Alto networks vuln

CISA has added a patched critical security flaw in Palo Alto Networks Expedition to its Known Exploited Vulnerabilities catalog due...
Read More
CISA alerts active exploitation of Palo Alto networks vuln

Critical bug in Cisco UWRB access points to run commands as root

Cisco has fixed a critical vulnerability, CVE-2024-20418, that allowed unauthenticated remote attackers to gain root access on Ultra-Reliable Wireless Backhaul...
Read More
Critical bug in Cisco UWRB access points to run commands as root

“ToxicPanda” banking trojan from Asia hit Europe and LATAM

In late October 2024, Cleafy’s Threat Intelligence team noticed a surge in a new Android malware known as TgToxic. However,...
Read More
“ToxicPanda” banking trojan from Asia hit Europe and LATAM

(CVE–2023-46747)
Hacker exploit Critical F5 BIG -IP Vulnerability in Bangladesh: CIRT report

Cyber Threat Intelligence Unit of BGD e-GOV CIRT found evidence of compromise linked to the vulnerability in F5 BIG-IP systems...
Read More
(CVE–2023-46747)  Hacker exploit Critical F5 BIG -IP Vulnerability in Bangladesh: CIRT report

Google Workspace account security enhancements:

Google Workspace, previously known as G Suite, offers a comprehensive range of cloud-based productivity and collaboration tools and services. The platform offers exclusive features for businesses and enterprise users, including advanced settings, administrative tools, work insights, data retention, and eDiscovery. The Google Workspace team has just made an exciting announcement:

* Google’s largest enterprise customers and resellers will soon be required to use 2-Step Verification (2SV) as a security measure for their enterprise administrators.

* Workspace administrators will have the power to demand that two administrators approve sensitive actions, such as modifying 2SV settings for a user.

* Google’s AI-driven defenses are designed to automatically safeguard sensitive actions in Gmail, such as setting up email filtering or forwarding. These actions are frequently targeted by attackers who seek to delete or intercept emails.

* Administrators of workspaces will have a seamless ability to export workspace logs directly into Chronicle, the cybersecurity subsidiary of Alphabet which provides cloud-based analytics for enterprise security data.

A multi-party approval request in Google Workspace Admin console (Source: Google)

New DLP and digital sovereignty controls

Enterprise data loss prevention (DLP) now includes new features to improve security. These features give security teams more control over sharing sensitive information through Gmail. Additionally, they control who can share sensitive content in Drive based on security status.

Administrators can use Google AI to classify and label data in Google Drive automatically. This helps to ensure that data is properly shared and protected from being taken without authorization.

A new method to protect enterprise data from third parties is being developed. It uses client-side encryption and stores encryption keys with trusted providers.

Organizations can choose where their data is processed, store a copy of their Workspace data in a country of their choice, and limit access to specific regional support personnel.

Check Also

Successfully held “InfoSecCon-2024″at Dhaka Bangladesh

With a festive look and the participation of more than one hundred participants from Bangladesh …

Leave a Reply

Your email address will not be published. Required fields are marked *