#web
Really? 🙃
“The #Google #Chrome engineering team is going to disable the alert() function in a future version because it’s often used by scammers to trick users. This is going to be a breaking change to the web platform so go update your apps & debugging tools before the change rolls out.”
https://twitter.com/carnage4life/status/1423121207059120137?s=28
Really? 🙃
“The #Google #Chrome engineering team is going to disable the alert() function in a future version because it’s often used by scammers to trick users. This is going to be a breaking change to the web platform so go update your apps & debugging tools before the change rolls out.”
https://twitter.com/carnage4life/status/1423121207059120137?s=28
Twitter
Dare Obasanjo
The Google Chrome engineering team is going to disable the alert() function in a future version because it’s often used by scammers to trick users. This is going to be a breaking change to the web platform so go update your apps & debugging tools before the…
#Google launched a new https://sre.google/ to learn about how #SRE is done at google: a balance between details like disk driver IO scheduling to the big picture of service capacity.
Available: books, courses, experts, and how it all applies in the cloud.
Available: books, courses, experts, and how it all applies in the cloud.
sre.google
Google SRE - Site Reliability engineering
Site reliability engineering: Explore key sre principles & practices. Learn how reliability engineers enhance system's reliability, scalability and performance.
Anatomy of an Incident
Get the inside scoop on #Google approach to incident management for production services in this report. It covers all the stages of the #incident management lifecycle: preparedness, response, recovery, and mitigation
https://static.googleusercontent.com/media/sre.google/en//static/pdf/Anatomy_Of_An_Incident.pdf
Get the inside scoop on #Google approach to incident management for production services in this report. It covers all the stages of the #incident management lifecycle: preparedness, response, recovery, and mitigation
https://static.googleusercontent.com/media/sre.google/en//static/pdf/Anatomy_Of_An_Incident.pdf
#video #live #Google Keynote
Tune in to find out how we're furthering our mission to organize the world’s information and make it universally accessible and useful.
https://youtu.be/nP-nMZpLM1A
Tune in to find out how we're furthering our mission to organize the world’s information and make it universally accessible and useful.
https://youtu.be/nP-nMZpLM1A
YouTube
Google Keynote (Google I/O ‘22)
Tune in to find out about how we're furthering our mission to organize the world’s information and make it universally accessible and useful.
To watch this keynote with American Sign Language (ASL) interpretation, please click here: https://youtu.be/PeUXBvRExic…
To watch this keynote with American Sign Language (ASL) interpretation, please click here: https://youtu.be/PeUXBvRExic…
#security #hack #OAuth
Dylan from truffleSecurity talks about a simple hole (it seems a bit loud to call it a vulnerability) that allows users of companies that use #Google authorization in services like Slack or Zoom to continue to have access even after being fired and having their access removed.
The hole is that such services use email as the user ID. But, obviously, you can create several different email addresses that receive the same emails (e.g. by adding words after "+"):
https://trufflesecurity.com/blog/google-oauth-is-broken-sort-of/
Dylan from truffleSecurity talks about a simple hole (it seems a bit loud to call it a vulnerability) that allows users of companies that use #Google authorization in services like Slack or Zoom to continue to have access even after being fired and having their access removed.
The hole is that such services use email as the user ID. But, obviously, you can create several different email addresses that receive the same emails (e.g. by adding words after "+"):
https://trufflesecurity.com/blog/google-oauth-is-broken-sort-of/
Trufflesecurity
Google OAuth is Broken (Sort Of) ◆ Truffle Security Co.
Today I’m publicizing a Google OAuth vulnerability that allows employees at companies to retain indefinite access to applications like Slack and Zoom, after they’re off-boarded and removed from their company’s Google organization. The vulnerability is easy…
👏1👨💻1