Skip to main content

Google: Security Mishaps and User Trust

From TechCrunch

Google is pushing full steam ahead with their office strategy, and their hope is to convince a lot of individuals and businesses to trust Google enough to store their documents on Google’s servers instead of their own computers, or servers under their control.

The fact that unauthorized document access is a simple password guess or government “request” away already works against them. But the steady stream of minor security incidents we’ve seen (many very recently) can also hurt Google in the long run. Running applications for businesses is serious stuff, and Google needs to be diligent about security.

Another minor incident came up this evening - a Google employee intended to post on her personal blog and wrote on the official Google blog covering Blogger instead.

Earlier security incidents:

July 2004: Gmail secuity issue allows unauthorized access to others’ registration information.

January 2005: Gmail security flaw allows unathorized viewing of others’ emails.

November 2005: Gmail bug allowed hackers to take complete control of a victim’s Gmail account.

March 2006: Google accidentally deletes its main official blog. They write “We’ve determined the cause of tonight’s outage. The blog was mistakenly deleted by us (d’oh!)”

July 2006: Writely document appears that seems to show internal confidential Google information on the Platypus project.

October 2006: Google blog hacked and fake post published, quickly taken down.

October 2006: User complains that blog posts through the Blogger API are being published on someone else’s blog.

October 2006: Google accidentally releases Google Platypus software.

Google product teams work in cells, which allows them to quickly launch and iterate products. However, there could be a disadvantage to this as well with regard to security, as their does not seem to be one central policy or security group ensuring strict compliance across the entire company. Every security incident damages Google’s credibility and reputation. Microsoft has been dealing with security issues forever - Google may need to start fighting the same war.

Labels:

Comments

Post a Comment

Popular posts from this blog

Play against Xbox360 gamer on PC in Vista

Microsoft Corp. co-founder Bill Gates on Tuesday announced a cross-platform gaming service that integrates games played on cell phones, Xbox 360 consoles and the upcoming Windows Vista operating system. The "Live Anywhere" service will be available as part of Windows Vista, Microsoft's next-generation PC operating system. The consumer version is scheduled for release early next year. "It means that you have one online community," Gates said in a news conference. "This platform can really unleash developers to do amazing new things." The system would extend the company's existing Xbox Live service for the Xbox 360 console into millions of Internet-enabled PCs and cellular phones. No pricing information on the new service was announced. In recent months, Microsoft has been pushing a number of online services that it hopes will boost revenue as markets for its traditional software become increasingly saturated. The company expects to make money off s...
9 comments
Read more

Welcome to Google Checkout, that will be $3.14

From ZDNet The first time I looked up the domain " GDrive.com " it appeared that someone other than Google had it registered. A trip down memory lane takes us to my very first article that describes how I determined GDrive.com is in fact owned by Google, despite what it looks like on the surface. Well, by the same logic I have found that a brand new set of domains appearing to be registered to someone else were actually registered by Google on May 25th. The domains googlecheckout.net / org / info (.com is owned by someone else at the moment) have all been registered to a company called DNStination, Inc. Don't be fooled, the registrar is MarkMonitor — a company that prides itself on the protection of your corporate identity. There is no way they would let just anybody register a domain with "Google" in it — especially since Google is one of their clients. Then who is this DNStination, Inc. then? Googling the address of this "company" tell...
Post a Comment
Read more

Hackers biting Apple

Hackers are increasingly focusing on Apple's Mac OS X, and the number of newly discovered vulnerabilities has surged. Such a switch could mean big implications for Apple's user base, which has traditionally not had to concern itself too much over security. It's been an impressively quiet year so far on the PC virus and worm front, and hackers seem to be focusing their attention elsewhere. One such area is Apple's Mac OS X. Once mostly ignored by malware developers, there appears to be a growing interest in this "alternative" OS. Details Have you noticed the dearth of serious PC virus and worm threats out there lately? Well, it isn't a figment of your imagination -- according to vnunet.com, viruses are no longer the top security threat . While serious attacks are still likely to emerge, the bottom has apparently fallen out of the PC antivirus market -- just as Microsoft begins a big push into the security market. One cause of this drop-off is solidif...
6 comments
Read more