Google, Luta Security, Bugcrowd and other companies have started a new hacking Policy Council and Security Research Legal Defense Fund to help security researchers work more safely.
Researchers at Google and Amnesty International have found new spyware campaigns that exploited multiple iOS, Android, and Linux zero days.
Google's Threat Analysis Group has exposed a new exploit framework called Heliconia that may have been used to exploit zero days in Chrome, Firefox, and Windows.
Google has updated Chrome on the desktop and Android to address a zero day that is being exploited in the wild.
Google is rolling out support for passkeys in Android and Chrome in a significant step toward passwordless authentication.