Google announced the new project today Project Zero which aims to reduce the online targeted attacks. It will reduce the number of internet users that are affected everyday due to such attacks.
Google is introducing the Project Zero because it believes that everyone should be able to use internet without the fear of being hacked and without other security risks. Google has set a team of security experts and probably anti hackers who are working on the Project Zero now. In the announcement Google specifically mentioned the security risks found in Adobe Flash Player due to which human rights activists are on risk. Google said that these type of security risks should be stopped and they can do a lot of contributions to stop all these. It doesn’t mean that Google will be focusing on Adobe Flash Player only. It will be focusing on different things that can cause security risks.
Here are the words from Google,
We’re not placing any particular bounds on this project and will work to improve the security of any software depended upon by large numbers of people, paying careful attention to the techniques, targets and motivations of attackers. We’ll use standard approaches such as locating and reporting large numbers of vulnerabilities. In addition, we’ll be conducting new research into mitigations, exploitation, program analysis—and anything else that our researchers decide is a worthwhile investment
Moreover it said:
Every bug we discover will be filed in an external database. We will only report bugs to the software’s vendor—and no third parties. Once the bug report becomes public (typically once a patch is available), you’ll be able to monitor vendor time-to-fix performance, see any discussion about exploitability, and view historical exploits and crash traces.
What do you think about this new project of Google?