Google Says Sorry After Passwords Vanish for 15M Windows User
Google apologized for a bug that caused passwords to disappear for 15 million Chrome users. The issue lasted 18 hours, affecting 2% of users, and was resolved with a browser restart.
Read original article
Google has apologized for a bug that caused passwords to disappear for approximately 15 million Windows users of the Chrome web browser. The issue began on July 24 and lasted for nearly 18 hours before being resolved on July 25. It was attributed to a change in product behavior that lacked proper safeguards. The problem affected users globally, preventing them from accessing both saved and newly saved passwords through the Chrome password manager. Google estimated that around 2% of the 750 million users impacted by the configuration change experienced the password issue.
An interim workaround was provided, requiring users to launch Chrome with a specific command line flag, but the full fix only necessitated a browser restart. Google expressed gratitude for users' patience and encouraged those facing further issues to contact Google Workspace Support. Additionally, there was a separate incident where email verification for creating new Google Workspace accounts was bypassed, allowing unauthorized account creation. This vulnerability was also fixed within 72 hours of being reported. Google stated that the issues were unrelated but highlighted ongoing challenges in maintaining security across its services.
Related
Google knows nearly every Wi-Fi password in the world (2013)
Google can access Wi-Fi passwords globally from Android devices, storing them for user convenience. Privacy and security concerns arise despite encryption measures. Users can opt out to prevent data storage.
Microsoft: Helping our customers through the CrowdStrike outage
CrowdStrike released a global software update causing IT disruptions. Microsoft collaborated to aid affected users, deploying engineers and sharing remediation instructions. Industry collaboration is crucial for resolving rare incidents effectively.
Microsoft says 8.5M Windows devices were affected by CrowdStrike outage
Microsoft reported that a CrowdStrike outage impacted 8.5 million Windows devices globally, causing disruptions in banking, retail, and transportation. Collaboration with tech giants is ongoing to address cybersecurity risks efficiently.
Chrome will now prompt some users to send passwords for suspicious files
Google is enhancing Chrome's malware detection by allowing users to upload password-protected files for scanning. A new notification system will categorize downloads as "suspicious" or "dangerous" to improve user awareness.
Crooks Bypassed Google's Email Verification to Create Workspace Accounts, Acces
Google fixed a security flaw that let criminals bypass email verification for Google Workspace accounts, enabling impersonation of domain holders. The issue was resolved within 72 hours, with new safeguards implemented.
5 commentsGlad to see that Apple is going to bring password managers to the masses.
That is highly likely to be a wrong Estimate. The total Chrome number includes Android. In terms of PC it is ~1B outside of China. ( Not even Microsoft has a concrete answer ).
So we are looking at 5M.
Related
Google knows nearly every Wi-Fi password in the world (2013)
Google can access Wi-Fi passwords globally from Android devices, storing them for user convenience. Privacy and security concerns arise despite encryption measures. Users can opt out to prevent data storage.
Microsoft: Helping our customers through the CrowdStrike outage
CrowdStrike released a global software update causing IT disruptions. Microsoft collaborated to aid affected users, deploying engineers and sharing remediation instructions. Industry collaboration is crucial for resolving rare incidents effectively.
Microsoft says 8.5M Windows devices were affected by CrowdStrike outage
Microsoft reported that a CrowdStrike outage impacted 8.5 million Windows devices globally, causing disruptions in banking, retail, and transportation. Collaboration with tech giants is ongoing to address cybersecurity risks efficiently.
Chrome will now prompt some users to send passwords for suspicious files
Google is enhancing Chrome's malware detection by allowing users to upload password-protected files for scanning. A new notification system will categorize downloads as "suspicious" or "dangerous" to improve user awareness.
Crooks Bypassed Google's Email Verification to Create Workspace Accounts, Acces
Google fixed a security flaw that let criminals bypass email verification for Google Workspace accounts, enabling impersonation of domain holders. The issue was resolved within 72 hours, with new safeguards implemented.