project zero

Google unravels state-of-art Android and Windows exploit chains

Google unravels state-of-art Android and Windows exploit chains

Highly sophisticated attackers used four zero-days.
Jan 13 2021 11:10AM
Google patches exploited Chrome zero-day

Google patches exploited Chrome zero-day

Four other high severity bugs fixed.
Oct 21 2020 8:00AM
Avast disables vulnerability that left 400 million users open to abuse

Avast disables vulnerability that left 400 million users open to abuse

Unsafe Javascript interpreter begone.
Mar 12 2020 5:25PM
Google's Project Zero firms up 90-day disclosure policy

Google's Project Zero firms up 90-day disclosure policy

Faster, better patches with improved adoption new goal for policy.
Jan 10 2020 5:00PM
Eager iOS jailbreakers tricked into click fraud

Eager iOS jailbreakers tricked into click fraud

Checkrain fake jailbreak site borrows pics of real researchers.
Oct 18 2019 6:45AM
Google decloaks Win-DoS bug before patch is released

Google decloaks Win-DoS bug before patch is released

Flaw "can take down a Windows fleet pretty quickly".
Jun 12 2019 9:41AM
Critical chip flaw affects Intel, AMD and ARM

Critical chip flaw affects Intel, AMD and ARM

Google reveals research role, origins of vulnerability.
Jan 4 2018 10:19AM
Google releases Apple iOS 'jailbreak' exploit

Google releases Apple iOS 'jailbreak' exploit

Proof of concept works reliably.
Dec 12 2017 8:45AM
Further remote vulnerabilities found in Windows Defender

Further remote vulnerabilities found in Windows Defender

Microsoft patches first line of defence software.
May 31 2017 10:19AM
Apple rushes out iOS patch for wi-fi vulnerability

Apple rushes out iOS patch for wi-fi vulnerability

Update: Code execution on wi-fi chip foiled.
Apr 4 2017 6:50AM
Not a single entry for Google's Android bug bounty

Not a single entry for Google's Android bug bounty

US$350,000 prize money untouched.
Mar 31 2017 4:23PM
Symantec scrambles to patch severe holes in 26 products

Symantec scrambles to patch severe holes in 26 products

"As bad as it gets" flaws in enterprise, consumer security offerings.
Jun 29 2016 12:09PM
When you can't trust your security vendor

When you can't trust your security vendor

[Blog post] The watchmen also need to be watched.
Jan 19 2016 2:57PM
Researcher finds gaping holes in Trend Micro antivirus

Researcher finds gaping holes in Trend Micro antivirus

Security vendor scrambles to fix remote code execution and silent password leak.
Jan 13 2016 6:40AM
FireEye patches critical vulnerability in security devices

FireEye patches critical vulnerability in security devices

Could be exploited through emailed attachments.
Dec 16 2015 4:20PM
Will the Project Zero bell toll for Google?

Will the Project Zero bell toll for Google?

[Blog post] The difficulty with disclosure deadlines.
Feb 17 2015 2:15PM
Google softens controversial vulnerability disclosure policy

Google softens controversial vulnerability disclosure policy

Grace periods introduced.
Feb 15 2015 10:07AM
Microsoft accuses Google of early bug publication

Microsoft accuses Google of early bug publication

Windows 8.1 flaw revealed before Patch Tuesday fix.
Jan 13 2015 6:54AM
Google discloses zero-day bug in Windows

Google discloses zero-day bug in Windows

Gave Microsoft 90 days grace to patch the flaw.
Jan 6 2015 10:29AM

Log In

Username / Email:
Password:
  |  Forgot your password?