Latest news with #GoogleCloudSecurity
Techday NZ
a day ago
- Business
- Techday NZ
Google Cloud unveils advanced AI security tools & SOC updates
Google Cloud has announced new security solutions and enhanced capabilities focused on securing AI initiatives and supporting defenders in the context of growing enterprise adoption of artificial intelligence technologies. With the introduction of AI across various sectors, organisations are increasingly concerned with the risks presented by sophisticated AI agents. Google Cloud has responded by expanding on the security measures available within its Security Command Centre, emphasising protection for AI agents and ecosystems using tools such as Sensitive Data Protection and Model Armour. According to Jon Ramsey, Vice President and General Manager, Google Cloud Security, "AI presents an unprecedented opportunity for organizations to redefine their security posture and reduce the greatest amount of risk for the investment. From proactively finding zero-day vulnerabilities to processing vast amounts of threat intelligence data in seconds to freeing security teams from toilsome work, AI empowers security teams to achieve not seen before levels of defence and efficiency." Expanded protection for agentic AI Google Cloud has detailed three new capabilities for securing AI agents in Google Agentspace and Google Agent Builder. The first, expanded AI agent inventory and risk identification, will enable automated discovery of AI agents and Model Context Protocol (MCP) servers. This feature aims to help security teams quickly identify vulnerabilities, misconfigurations, and high-risk interactions across their AI agent estate. The second, advanced in-line protection and posture controls, extends Model Armour's real-time security assurance to Agentspace prompts and responses. This enhancement is designed to provide controls against prompt injection, jailbreaking, and sensitive data leakage during agent interactions. In parallel, the introduction of specialised posture controls will help AI agents adhere to defined security policies and standards. Proactive threat detection rounds out these developments, introducing detections for risky behaviours and external threats to AI agents. These detections, supported by intelligence from Google and Mandiant, assist security teams in responding to anomalous and suspicious activity connected to AI agents. Agentic security operations centre Google Cloud is advancing its approach to security operations through an 'agentic SOC' vision in Google Security Operations, which leverages AI agents to enhance efficiency and detection capabilities. By automating processes such as data pipeline optimisation, alert triage, investigation, and response, Google Cloud aims to address traditional gaps in detection engineering workflows. "We've introduced our vision of an agentic security operations center (SOC) that includes a system where agents can coordinate their actions to accomplish a shared goal. By offering proactive, agent-supported defense capabilities built on optimizing data pipelines, automating alert triage, investigation, and response, the agentic SOC can streamline detection engineering workflows to address coverage gaps and create new threat-led detections." The new Alert Investigation agent, currently in preview, is capable of autonomously enriching events, analysing command-line interfaces, and building process trees. It produces recommendations for next steps and aims to reduce the manual effort and response times for security incidents. Expert guidance and consulting Google Cloud's Mandiant Consulting arm is extending its AI consulting services in response to demand for robust governance and security frameworks in AI deployments. These services address areas such as risk-based AI governance, pre-deployment environment hardening, and comprehensive threat modelling. Mandiant Consulting experts noted, "As more organizations lean into using generative and agentic AI, we've seen a growing need for AI security consulting. Mandiant Consulting experts often encounter customer concerns for robust governance frameworks, comprehensive threat modeling, and effective detection and response mechanisms for AI applications, underscoring the importance of understanding risk through adversarial testing." Clients working with Mandiant can access pre-deployment security assessments tailored to AI and benefit from continuous updates as threats evolve. Unified platform enhancements Google Unified Security, a platform integrating Google's security solutions, now features updates in Google Security Operations and Chrome Enterprise. Within Security Operations, the new SecOps Labs offers early access to AI-powered experiments related to parsing, detection, and response, many of which use Google Gemini technology. Dashboards with native security orchestration, automation, and response (SOAR) data integration are now generally available, reflecting user feedback from previous previews. On the endpoint side, Chrome Enterprise enhancements bring secured browsing to mobile, including Chrome on iOS, with features such as easy account separation and URL filtering. This allows companies to block access to unauthorised AI sites and provides enhanced reporting for investigation and compliance purposes. Trusted Cloud and compliance Recent updates in Trusted Cloud focus on compliance and data security. Compliance Manager, now in preview, enables unified policy configuration and extensive auditing within Google Cloud. Data Security Posture Management, also in preview, delivers governance for sensitive data and integrates natively with BigQuery Security Centre. The Security Command Centre's Risk Reports can now summarise unique cloud security risks to inform both security specialists and broader business stakeholders. Updates in identity management include Agentic IAM, launching later in the year, which will facilitate agent identities across environments to simplify credential management and authorisation for both human and non-human agents. Additionally, the IAM role picker powered by Gemini, currently in preview, assists administrators in granting least-privileged access through natural language queries. Enhanced Sensitive Data Protection now monitors assets in Vertex AI, BigQuery, and CloudSQL, with improvements in image inspection for sensitive data and additional context model detection. Network security innovations announced include expanded tag support for Cloud NGFW, Zero Trust networking for RDMA networks in preview, and new controls for Cloud Armour, such as hierarchical security policies and content-based WAF inspection updates. Commitment to responsible AI security Jon Ramsey emphasised Google Cloud's aim to make security a business enabler: "The innovations we're sharing today at Google Cloud Security Summit 2025 demonstrate our commitment to making security an enabler of your business ambitions. By automating compliance, simplifying access management, and expanding data protection for your AI workloads, we're helping you enhance your security posture with greater speed and ease. Further, by using AI to empower your defenders and meticulously securing your AI projects from inception to deployment, Google Cloud provides the comprehensive foundation you need to thrive in this new era."
Korea Herald
24-07-2025
- Business
- Korea Herald
Elitery a Pioneering MSSP Partner for Google Cloud's "Indonesia BerdAIa untuk Keamanan Siber" Program: A Strategic Move to Strengthen National Cyber Resilience
JAKARTA, Indonesia, July 24, 2025 /PRNewswire/ -- PT Data Sinergitama Jaya Tbk (Elitery) today announced that it will be a pioneering local Managed Security Service Provider (MSSP) partner for Google Cloud's "Indonesia BerdAIa untuk Keamanan Siber" program, which is designed to empower organizations with best-in-class Google Cloud Security solutions, expertise, and training to bolster the cyber resilience of Indonesia's key economic sectors and digital landscape. This was officially announced during the " Indonesia Cyber Forum: Google Cloud's Commitment to Strengthening National Cyber Resilience with New Security Operations Data Region in Indonesia" event, held on Wednesday, July 23, 2025, at the Fairmont Hotel, Jakarta. The forum brought together key leaders from the National Cyber and Crypto Agency (BSSN), State Intelligence Agency (BIN), Google Cloud, Elitery, and representatives from both public and private sectors. This event also marked a strategic collaboration between Google Cloud, Elitery, BIN, and BSSN, focused on strengthening national digital infrastructure, enhancing cyber threat detection and response capabilities, and supporting data sovereignty policies. Fanly Tanto, Country Director, Indonesia, Google Cloud, said, "Our newly launched local Security Operations Data Region brings Google Cloud's advanced, integrated, and dedicated security technology hardware and software to Indonesia. This empowers more organizations to leverage the AI-enabled Google Security Operations platform solution while storing their security telemetry data in Google Cloud data centers in Jakarta. This is a core component of our 'Indonesia BerdAIa untuk Keamanan Siber' program, offered jointly with our key partners like Elitery. This program will help organizations overcome three of security's most persistent challenges—threat overload, operational toil, and the talent gap, thereby strengthening their cyber defenses and contributing to a more secure and prosperous digital future for Indonesia." According to the 2025 CIO Agenda report by Gartner, 70% of CIOs in Southeast Asia, including Indonesia, prioritize cyber and technology risk management, with a strong focus on demonstrating the business value of IT strategies. This highlights Indonesia's commitment to building a resilient and secure digital ecosystem. Google Cloud's Security Operations Data Region in Indonesia is hosted in Google Cloud's Jakarta Cloud Region (i.e., Google Cloud data centers located in Jakarta). This allows more organizations in Indonesia, including government agencies and enterprises in regulated industries, to take advantage of the intelligence-driven, AI-enabled Google Security Operations platform for real-time threat detection, rapid response, deep analysis, and 24/7 monitoring, all while meeting their local data residency requirements. As a certified Google Security Operations MSSP, Elitery plays a strategic role in helping organizations strengthen their cybersecurity posture. Backed by over 14 years of experience in the IT industry, Elitery designs, implements, and manages end-to-end Google Cloud security solutions, ranging from real-time threat detection and response, to ensuring compliance with national regulations. Indra Dwiputra, Director of Elitery, said, "The presence of Google Cloud's Security Operations Data Region in Indonesia provides local access to world-class digital security solutions, highly relevant for Elitery's customers across various sectors. It strengthens compliance, accelerates threat response, and promotes the use of AI in security operations. As a strategic partner of Google Cloud, Elitery is committed to supporting both public and private organizations in building resilient and sustainable digital security." About PT Data Sinergitama Jaya Tbk (Elitery): Elitery is the official Managed Security Services Provider (MSSP) for Google Cloud Security in Indonesia, with over 14 years of experience supporting digital transformation across various industries through cloud, cybersecurity, and AI solutions. As a Google Cloud MSSP, Elitery possesses deep expertise in designing, implementing, and managing end-to-end managed security solutions based on Google Cloud Security. Elitery contributes to strengthening national cybersecurity posture by delivering proactive, scalable, and regulation-compliant services—positioning itself as a strategic partner for organizations looking to build a secure and resilient digital foundation. Throughout 2024, Elitery achieved several other significant milestones, including receiving the Indonesia Best CX-EX Strategy Award 2024 from SWA, and being recognized as a Great Place to Work (GPTW) 2024, reflecting our commitment to strong governance and an inclusive, collaborative work environment.
Forbes
05-05-2025
- Forbes
Google Issues New Windows Captcha Security Alert — Don't Be Fooled
Beware the fake Captcha attacks. getty When it comes to malware, high on the list of the most dangerous, and certainly amongst the most prolific, is the infostealer. If you've ever wondered what was behind headlines such as 19 billion compromised passwords published online or one million Windows devices infected, that's infostealer malware. The Lumma stealer family is, almost certainly, the most virulent, deploying thousands of fake 'I Am Not A Robot' captcha lures. Google has now issued a warning about the Lummac.V2 infostealer malware threat. Here's what you need to know. When it comes to infostealer malware, the likes of which come after your passwords, 2FA codes that are meant to add an extra layer of protection against attack, as well as everything from browser information to email databases, there is no bigger threat than Lumma Stealer. Other than, perhaps, the less tongue-friendly Lummac.V2 reworking of the Lummac malware that, itself, is a variant of Lumma Stealer. A Google Cloud Security report by Praveeth Dsouza, a Google security analyst, and Tommy Dacanay, a senior security analyst of threat hunting at Google, has warned that Lummac.V2 targets everything from browsers and crypto wallets, through password managers and Remote Desktop applications, to email platforms and instant messaging apps. A part of the Google Security 'Finding Malware' series, the report takes a deep technical dive into the emerging threat that Lummac.V2 presents. It is, in fairness, far too technical to go into detail here, so I would heartily recommend those of a more advanced technical bent to go read the whole thing. The TL;DR, however, is that Lummac.V2 steals 'credentials, logins, emails, personal and system details, screenshots, and cookies,' according to the report. It accomplishes this by using the ClickFix method of social engineering, which employs fake captcha verification pages to execute malicious commands via the Windows run dialog. I've said it before, and I'm saying it again now: if a captcha asks you to open a Windows run dialog and enter commands, run for the hills. This is not normal behavior, and there's no reason on earth why a captcha verification should ask you to do such a thing. The Google report is an excellent reminder of how prevalent these threats are, but a little common sense goes a long way in keeping them at arm's length.
