Google has unveiled a slew of new business-focused data privacy and threat protection offerings, bolstering its cybersecurity arsenal in the never-ending war to stay ahead of attackers.
The Google Cloud Platform and G Suite. Google announced a new Cloud Security Command Center for enterprises, virtual private cloud (VPC) service controls for increased data privacy, and Access Transparency.
Google's ongoing machine learning advancements Made of appearance as well as in the more than 20 updates announced for the G Suite, including new default-on phishing protections powered by ML. The company also tipped new partnerships to help protect against threats like botnets, cryptocurrency mining malware, DDoS attacks, and suspicious network traffic.
“Every second we mark 10 million [Gmail] messages as spam.” Gmail has over a billion active users, which means we can see pretty much any spam campaign and spend a lot of effort to train machine learning algorithms to to them automatically without manual intervention, “said Urs Hölzle, Google's SVP of Technical Infrastructure.
During a news briefing, Hölzle talked about Google's end-to-end security strategy that extends from the browser all the way to the server; the company has more than 700 or 800 employees working on security. In recent months, Google has announced an Advanced Protection Program for conusmers, and much more, all of which, back to the company's cloud infrastructure in one form or another.
The Cloud Security Command Center, which complements a G Suite security center released earlier this year, is a data risk analysis and threat of an intelligence dashboard to help enterprises consolidate their cloud visibility. Google Cloud Security Command Center ” border=”0″ class=”center” src=”https://assets.pcmag.com/media/images/578874-google-cloud-security-command-center.png?thumb=y&width=980&height=417″/>
Google Cloud Security Command Center ” border=”0″ class=”center” src=”https://assets.pcmag.com/media/images/578874-google-cloud-security-command-center.png?thumb=y&width=980&height=417″/>
Google Cloud Security Command Center [AsidefromanoverviewofhowyourcomputeanddataresourcesaredeployedacrossGoogle'sdifferentcloudbucketsthecommandcenterallowsadminstoconfigurefirewallrulessurfacinginsightswhatdatamaybeopentotheinternetandanypersonallyidentifiableinformation(PII)andanyapplicationsthatmaybevulnerabletocross-sitescripting(XSS)vulnerabilitiesThedashboardisalsowithsecuritypartnersincludingCloudflareCrowdStrikeRedLockPaloAltoNetworksandQualystodetectDDoSattacksnetworkintrusionsandotherthreatsallfromoneplaceThesecapabilitiesarealsoenhancedbyCloudArmorGoogle'sbuilt-inDDoSdefenselayer
“The [command center] will tell you where sensitive data is located and how firewall rules are configured, and ongoing discovery to see exactly what has changed in an environment and act on unauthorized modifications, “said Lin. “We can also leverage and act on intelligence from cloud security vendors and built-in ML technology to identify botnets, cryptocurrency mining, etc.”
The bright spotlight on data privacy and the impending changes. dedicated to data transparency. Access Transparency Logs, which Google has long used internally and in consumer-facing audit logs, are now available as a product for businesses. Combined with existing Cloud Audit Logging, they give organizations what is described as “an immutable audit trail” in every action.
The VPC Service Controls. It is a simple and easy-to-use application that allows users to easily access and manage the Internet, , and endpoint security status.
“Imagine constructing an invisible border in the middle of nowhere, “explained Lin.
Finally, Google ran through a number of ways it's bolstering security within G Suite. There are new default-on protections including automatic email flagging from untrusted senders that have encrypted attachments or embedded scripts. Google will also now warn G Suite users if for a sender is spoofing employee names, scan images for phishing indicators, and offer enhanced spear phishing protection.
These protections are automatically enforced by mobile as well, so do not have to install profiles on Android or iOS devices. Suzanne Frey, Google's Director of Security, Trust, and Privacy, said all of these features are rooted in AI.
“We're constantly evolving and pushing machine learning models so we can learn from literally billions of threats to identify the source of an attack in the making, “said Frey. “Info from these self-learning models helps us to flag Google's recommended defenses.”