Google is sharing more information about how Chrome is operated when Android mobile users enable advanced security, highlighting strong safety reforms.
The tech veteran recently extended its advanced security program to the device level with the release of Android 16, which aims to offer a strong, overall security currency for high -risk individuals, which is likely to be targeted by sophisticated spyware attacks.
Starting Android 16, advanced security can be activated by settings, safety measures can be strengthened across the board, including Google apps such as chrome, messages and phones.
In particular for Chrome, these measures became available with version 137 for Android, but Google did not share the details about their additional value and how they worked.
One in New blog postChrome security team states that activating advanced protection triggers the following in Chrome:
- Implementation of safe connection – Emphasizes chrome to try https for all sites (public and private) and warns users before joining any site on unsafe HTTP; This prevents the attackers who can prevent or replace data on unanned connections.
- Full site separation – Each website separates in its process, prevents one site from accessing data from another, even in a render exploitation. The feature on Android with RAM over 4GB is active by default, otherwise it can be enabled under advanced security
- JavaScript adaptation and security -The unnatural conservation browser deactivates high-level JavaScript optimizing compilers in the V8 engine of Chrome to reduce the surface of the attack. These optimizers improve performance, but historically are associated with many exploited bugs. It is estimated that disabling them can reduce about half of such cases, in which there are no significant performance on most sites.
HTTPS and JS security facilities were already available as an alternative to Chrome’s confidentiality and security menu, since version 133, so users can independently enable them without togling advanced security.
It is also noted that the site isolation still triggers or tries to log on to a site, which is considered to be a high risk landscape by default.
To enable advanced safety on Android, switch to Settings> Safety and Privacy> Advanced Security> “on” position.
Source: Bleepingcomputer
Google also recommends that high-risk individuals include the advanced multi-factor authentication of safety settings in devices with Google Accounts with Google Accounts for Automatic Enforcement.
While cloud attacks can be more sophisticated, the attackers still succeed with surprisingly simple techniques.
Drawing by the detection of Vij in thousands of organizations, this report reveals the 8 major techniques used by Claude-Floid danger actors.
