Agregátor RSS

Národní úřad pro kybernetickou a informační bezpečnost (NÚKIB) zveřejnil Národní politiku koordinovaného zveřejňování zranitelností (pdf), jejímž cílem je nejen zvyšování bezpečnosti produktů informačních a komunikačních technologií (ICT), ale také ochrana objevitelů zranitelností před negativními právními dopady. Součástí je rovněž vytvoření „koordinátora pro účely CVD“, jímž je podle nového zákona o kybernetické bezpečnosti vládní CERT. Pojem koordinované zveřejňování zranitelností (dále jen CVD z anglického Coordinated Vulnerability Disclosure) představuje proces, kdy nálezci zranitelností spolupracují a sdílejí informace s příslušnými zúčastněnými stranami, jako jsou dodavatelé a vlastníci infrastruktury ICT. Cílem CVD je zajistit, aby byly zranitelnosti zveřejněny až ve chvíli, kdy se dodavateli podaří vyvinout záplatu nebo najít jiné řešení k minimalizaci jejich dopadů. Součástí procesu je typicky nalezení zranitelnosti, její nahlášení a následné odstranění. Celý proces CVD je upraven tzv. politikou CVD, tedy veřejným svolením vlastníka či správce produktu ICT k nalézání zranitelností. NÚKIB zároveň zveřejnil svou politiku CVD ve spolupráci s ACTIVE 24, s. r. o., která objevitelům zranitelností umožňuje testovat webovou aplikaci nukib.gov.cz. Tato konkrétní politika uvádí zejména zakázané způsoby nalézání zranitelností a definuje postup, jak správně nahlásit zranitelnost prostřednictvím formuláře.

Wiz says React2Shell attacks accelerating, ranging from cryptominers to state-linked crews

Half of the internet-facing systems vulnerable to a fast-moving React remote code execution flaw remain unpatched, even as exploitation has exploded into more than a dozen active attack clusters ranging from bargain-basement cryptominers to state-linked intrusion tooling.…

Free unofficial patches are available for a new Windows zero-day vulnerability that allows attackers to crash the Remote Access Connection Manager (RasMan) service. [...]

Silicon Valley is abuzz with chatter about Google’s upcoming AI glasses. The trigger was a big announcement on The Android Show on December 8.

The company announced that its first AI glasses will be developed in collaboration with partners like Warby Parker, Samsung, and Gentle Monster, and should launch next year.

Google is planning two categories of smart glasses: AI-powered audio glasses and XR (extended reality) glasses with displays.

(These products should not be confused with Project Aura, resulting from Google’s partnership with XREAL. Aura glasses are tethered XR glasses with a 70-degree field of view, optical see-through displays, and support for Android XR apps and hand-tracking.)

Google’s approach mirrors Meta’s. That company currently offers its Ray-Ban Meta glasses with no display and Meta Ray-Ban Display glasses that do have a display.

Both companies are working to release two-screen AI display glasses by the end of 2027. The binocular glasses will be able to show stereoscopic 3D images and offer a larger virtual display compared to the monocular version.

Like Meta Ray-Ban Display glasses, the Google display glasses will offer a single “screen” in the right lens, which will enable visual information like YouTube Music controls, Google Maps turn-by-turn navigation, and Uber status updates, according to Google.

Also like Meta’s glasses, the right temple has a touchpad for controlling the glasses’ features, and voice commands processed by Gemini Live will also control the features and offer up information.

Google’s AI glasses require connections to Android phones. And we can assume that Apple’s unannounced AI glasses will depend on iPhones. It makes sense to look at this category of device in the initial years as peripheral devices to smartphones. They depend entirely on the smartphone’s cellular and Wi-Fi connectivity, location services and hardware, notifications, phone calls and messaging, podcast and other media apps, social network apps, and so on.

All of Google’s glasses will run on the Android XR operating system, which debuted on the Samsung Galaxy XR headset in October.

Crucially, Google’s glasses will be based on the company’s Gemini AI model, which is currently a far better model than Meta AI. Gemini could prove to be Google’s biggest advantage, along with deep contextual knowledge of people who use Gmail, Google Photos, Google Docs, Tasks, Notes, and other Google products.

Google also has industry-leading services that could make Google’s glasses better: Google Translate and Google Maps, for example. At the announcement, Google demonstrated a real-time translation feature available either through on-screen captions or via audio translation through the speakers. As a user of Ray-Ban Meta’s Live Translate feature, I can tell you that captions are far better, because the audio translations often play when you or the other person are talking, so you understand even less than without the translation.

Lessons from Google Glass

Google Glass was first shown to the public in April 2012 and officially launched its Explorer Edition in 2013, making it one of the first consumer smart glasses to bring a wearable computer into eyewear form. Google terminated the consumer version in January 2015.

I was an early Google Glass user. Yes, I was a glasshole.

Google Glass was way ahead of its time, but looked pretty wild. It had a small, prism-like display positioned above the right eye that showed digital information in the user’s field of view, a novel feature at the time.

You could control Google Glass with voice commands like “OK Glass” to start actions, making it one of the first widely available voice-activated wearable computers. You could also take pictures by winking your eye. Or, you could take photos and record video with a button press, then instantly share them over email or social media.

It offered real-time turn-by-turn navigation through Google Maps, with audio cues and visual directions in the display.

It had a touchpad on the side of the frame for scrolling and selecting options.

The device connected to smartphones via Bluetooth to access the internet, using the phone’s data connection. It synced with Google services like Gmail, Calendar, and Search, allowing hands-free access to messages, appointments, and web queries.

In other words, Google Glass worked much like today’s AI glasses, but without the AI, despite shipping 13 years ago.

A consensus emerged that Google Glass failed. And a huge number of people hated it.

The big question now is: Will Google apply the lessons learned from Google Glass? Here’s what I believe those lessons are:

1. Don’t let them look like an electronics product. Google Glass looked very weird, with a big boom hovering over the right eye. They could be worn with or without lenses. But either way, they looked dorky, and the fact that they sat on the face over the eyes meant that whomever you were conversing with couldn’t take you seriously while you were wearing them.

Google’s upcoming AI glasses should look like ordinary glasses. For the record, there’s something akin to an “uncanny valley” with AI glasses. In my opinion, Ray-Ban Meta glasses are on the acceptable side of that divide, and Meta Ray-Ban Display glasses are on the unacceptable side. It’s a fine line.

2. Don’t make others feel like they’re being watched and photographed. The main complaint about Google Glass, and the reason for the epithet “glasshole,” was that many people hated having a camera pointed at them, unsure about whether or not they were being recorded by Google Glass wearers.

Ray-Ban Meta glasses address this uncertainty by notifying others with a light when the camera is on. It’s not clear that this is good enough to satisfy the growing opposition to cameras in glasses.

3. Don’t make it too expensive. Google Glass cost $1,500 (over $2,000 if adjusted for inflation) which made most in the public feel priced out of the product, and therefore excluded.

4. Don’t forget the killer app. Every platform needs a “killer app” to succeed — the one feature that compels people to buy it. (I spelled out the need for this kind of killer app for wearables in 2014.) Google Glass didn’t have one, other than possibly the camera. In fact, the majority of use was just taking pictures.

It’s likely that Google believes Gemini is that killer app for its new glasses, but I don’t think it is. Between now and ship time, Google needs some super compelling app that sets its glasses apart from what by then will be a crowded market that likely includes Apple.

Predicting Google’s prospects

It’s tough to say whether Google’s glasses are likely to succeed in the market. They probably won’t be the cheapest or most fashionable, nor will they garner a reputation for protecting the privacy of both users and non-users. They won’t be available to iPhone users. Those are Google’s disadvantages.

But Google’s high-quality AI, its access to search, and the fact that so many people run their lives and work on Google products could give the company access to the information and personal data that could make Google’s AI glasses the best product on the market for a billion people.

As a former Google Glass user and defender of the project, including and especially in this space back in the day, I have to say that I’m rooting for Google to succeed at long last.

Sometimes, the best tech features are the ones you don’t even actively think about — they’re just there when you need ’em, quietly working on your behalf, without any fanfare or intensive effort required.

Sometimes, though, those same sorts of scintillating slivers can have the unintended effect of being so seamlessly integrated into an app or process that you completely forget they’re there and never get into the habit of actually using ’em. Or, worse yet, maybe you never even notice their arrival at all.

With Google’s Chrome desktop browser, we’ve seen so many features pop up over so many months that it’s all too easy to have that happen. I was reminded of that fact when I randomly rediscovered a recent feature in Chrome on my computer the other day and realized I’d never fully explored it when it first showed up in the browser many weeks back.

That prompted me to poke around some more and remember a bunch of other interesting features that similarly came into the Chrome compound somewhere along the way and then got promptly forgotten by my mushy middle-aged man-brain.

So while we typically focus our noggins here on the Android-oriented side of Google’s Chrome creature and the many new options constantly coming into that kingdom, today, we’re gonna pivot and turn our attention to the desktop domain — ’cause if you’re using Chrome on Android (especially for Very Important Business Purposes), there’s a decent chance you’re using it on a computer at least some of the time, too.

Here, without further ado, are six recent Chrome features you’ve probably forgotten.*

* Assuming your aging brain is as mushy as mine.**

** If it isn’t, I apologize. And I’m incredibly impressed by you.***

*** What were we talking about, again?

[Get fresh Googley goodness directly in your inbox with my free Android Intelligence newsletter. Three new things to try every Friday — minimal brainpower required.]

Google Chrome feature #1: A new split view

Up first is the feature that prompted this entire exploration — and, for full disclosure, it’s something I very much rolled my eyes at in amusement back when I first saw it.

It’s a little somethin’ Google’s calling split view, for tabs, and it sounds quite silly on the surface.

The idea is this: When you’re looking at a website on your computer, you might want to look at a second website alongside it. So instead of simply opening up two tabs or even opening two windows and positioning them alongside each other, you can now initiate an Android-reminiscent screen split and see any two tabs side by side within the same single Chrome window.

You can see why I rolled my eyes, right? It sounds so pointless and redundant. Why bother with something like this when there are already so many other simple ways to accomplish something similar?

That’s certainly what I thought. But then, the other day, I stumbled back onto the split tab view setup for the first time since my initial encounter, and I thought, “Huh — you know, I might as well at least try it.”

And I’ve gotta tell ya: It is a surprisingly helpful new productivity booster to have.

Here’s how it works: Anytime you’re viewing a tab, you can either right-click on its title (in the tab bar at the tippity-top of the Chrome window) and look for “Add tab to new split view” in the menu that comes up there or right-click on any link you see within the tab and find the equivalent option there.

Either way you do it, you’ll end up with a screen that looks a little somethin’ like this:

Chrome’s tab split view — who knew?

JR Raphael, Foundry

You can then easily view both tabs and move back and forth between ’em without having to mess with messy multiple-window layouts or isolated environments. You can even change the exact ratio of the split by clicking and dragging the divider between the two areas — and you can manage it further by clicking the split-view icon that appears to the left of your address bar and offers up options for separating your two views, reversing their order, or closing either side.

For me, the value has been in areas like writing a document or taking notes whilst viewing a related web page, drafting an email whilst referencing a document, and other such tasks where having two things side by side is an enticing advantage.

Best of all? The feature’s already there and waiting in any Chrome desktop habitat, no matter what kind of computer you’re using. All you’ve gotta do is remember to use it.

Google Chrome feature #2: Instant analysis

Another recently added Chrome desktop option waiting to be remembered is the Android-inspired ability to dive deeper into anything you encounter on this wide, wily ol’ web of ours and inspect it thoroughly with the excellent Google Lens tool.

Google Lens is something we typically talk about in the context of Android. But when Android’s Lens-connected Circle to Search system started gaining steam last year, Google had the idea to bring a version of that same smartness over to the desktop side for us to enjoy in that environment as well.

So here’s how to find it, in case you’d also forgotten:

• Right-click anywhere in any Chrome tab you’ve got open.
• In the menu that pops up, find and click the option to “Search with Google Lens.”
• Then use your mouse or trackpad to select any area of your screen that you want to investigate or learn more about.

Once you do, Lens will spring into action and show you more info about whatever you’ve selected — whether it’s an image, some text, text within an image, you name it.

Chrome’s desktop Lens option is like Circle to Search for your computer.

JR Raphael, Foundry

You can click on any of the results as well as copy the text (even if was inside an image and previously not something that could be copied), translate it, save it as a new image — all sorts of interesting possibilities.

The powers are all there. It’s up to you to embrace ’em.

Google Chrome feature #3: Instant interaction

If a more chat-driven interaction is what you’re after, Google’s Gemini AI bot is also on the ready within the Chrome desktop browser — and in the right sort of scenario, it could actually be useful.

You might, for instance, want to ask Gemini about something you see on a page — maybe a particular laptop model that you’re curious to learn the cost of or a sprawlingly long scientific article that you want to summarize and see translated into plain English.

Whatever the case may be, the easiest way to call Gemini for page-specific questioning is to again right-click the tab’s title at the top of the Chrome window — and this time, look for the option to “Share tab with Gemini” in that context menu.

That’ll beam the page into Chrome’s built-in Gemini portal, where you can then ask away to your heart’s content.

See? Gemini’s Chrome presence can be helpful at times.

JR Raphael, Foundry

Just remember: As with any current-day large-language model system, you can’t always believe what Gemini tells you. But, if nothing else, it can be a helpful starting point for a deeper dive into some specific topic and a way to kick off your own more intricate and fact-grounded probe.

Google Chrome feature #4: Easier reading

Goog almighty, the modern web sure can be an eyesore to look at. (Insert awkward eye darting here.)

Believe it or not, though, Chrome actually has a fantastic way to improve your web-wide reading experience. It eliminates annoying ads, over-the-top pop-ups, and unfortunate font and color choices, too. And, as a welcome bonus, it doesn’t even leave you feeling guilty that you’re depriving your favorite publisher and the people who work for it of the critical ad revenue that helps them keep publishing.

My friend, meet — or maybe just reacquaint yourself with — Chrome’s remarkable reading mode.

Anytime you’re viewing an article of any sort, simply right-click anywhere within the window and find the option to “Open it reading mode.”

And hey — how ’bout that?!

Before and after. ‘Nuff said.

JR Raphael, Foundry

Right there, alongside the regular version of the page, is a cleaned-up, distilled-down version that you can actually read without wanting to gouge your eyes out. (Insert additional awkward eye darting here.)

You can even customize everything about the article’s appearance in the controls at the top of the reading mode area — changing its font style, font size, color theme, even line height and line spacing (if you really wanna get wild).

And since the page loads alongside the original, the site still gets your view and the credit for all of its ads displaying — giving you a clear conscience to complement your non-cringe-inducing read.

Win-win, I’d say.

Google Chrome feature #5: A reading companion

While we’re looking at that reading mode option, we also need to take note of an inconspicuous set of icons resting within its upper border.

See that little play button and the three options alongside it?

The other side of Chrome’s reading mode.

JR Raphael, Foundry

Yup — those are the ones.

Clicking the play button will cause Chrome to read the text from the reading mode window out loud to you, which can be a handy way to ingest info when you’re also ingesting your lunch. (Mmm…lunch.) The buttons next to it will let you change the speed of the reading and the specific voice used, among other adjustments.

And for an extra easily-overlooked addition, note, too, that you can also highlight specific segments of text within the reading mode area and then click the play button. That’ll cause Chrome to read only those exact segments aloud — an interesting way to share specific snippets with a room of colleagues, koalas, or maybe even koala colleagues, depending on your current workplace situation.

Google Chrome feature #6: Tab torque

As a certified lifelong tab hoarder, you’d think I’d remember to use this next Chrome feature. But somehow, I never do.

It’s a super-simple way to switch tabs using only your keyboard — and to find the exact tab you want to toggle to, no matter which window it’s within or how buried on your desktop it might be.

Just hit Ctrl-Shift-A (or Cmd-Shift-A, if you’re one of those highfalutin Mac-owning marmosets). No matter where you are in Chrome or what else you’re working on, your browser will pop up a handy little window with all your open and recently closed tabs.

You can then either use your keyboard’s arrows to move to the one you want or just start typing the title of the page you’re looking for — and, as Chrome narrows down the list to match, hit Enter when the right one is highlighted.

The time-saving tab search switcher.

JR Raphael, Foundry

Yes, please — and thank you.

A bonus feature: Instant device beaming

This last feature isn’t technically part of our same collection, ’cause it isn’t especially recent at all. But it’s one of those things I think a lot of people forget (or never even realize) is possible — and it’s so forkin’ useful, I’d be remiss not to mention it as part of this conversation.

So here ’tis: As long as you’re signed into the same Google account within Chrome on your various devices, the Chrome desktop browser has a supremely handy system for beaming any page you’re viewing on your computer directly over to your favorite Android phone or tablet.

It’s a swift ‘n’ simple way to send something you opened at work onto your mobile device so you remember to look at it later — or maybe just leisurely read through it on your lunch. (Mmm…lunch.)

With any page you’re viewing, click Chrome’s three-dot main menu icon — in the browser’s upper-right corner — then hover over “Cast, save, and share” and select “Send to your devices.”

Now, this is how wireless sharing should happen.

JR Raphael, Foundry

It’s about as out of the way and buried as can be, but man alive, is it a treasure you’ll embrace and appreciate once you get yourself in the habit of relying on it.

And that’s something that, with enough training and practice, even the mushiest old mammal brain can be conditioned to do.

Related reading: 9 Google Chrome features you really should be using

Got Android? Get my Android Intelligence newsletter for three fresh tips each Friday, straight from me to you.

The browser has become the main interface to GenAI for most enterprises: from web-based LLMs and copilots, to GenAI‑powered extensions and agentic browsers like ChatGPT Atlas. Employees are leveraging the power of GenAI to draft emails, summarize documents, work on code, and analyze data, often by copying/pasting sensitive information directly into prompts or uploading files.  Traditional [email protected]

CISA has ordered U.S. federal agencies to patch a critical GeoServer vulnerability now actively exploited in XML External Entity (XXE) injection attacks. [...]

AlzaErgo Table ET4 AiO Touch ještě nikdy nebyl levnější. • Má motor, antikolizní systém, displej a paměť na tři pozice. • K dispozici je v černé i bílé variantě a se dvěma rozměry desek.

Správné uložení bitcoinu je aflou a omegou jeho používání. Pokud uděláte chybu, můžete o vše přijít. Neexistuje totiž prakticky žádná šance chybu napravit.

Ceny pamětí již stouply na trojnásobek, některé se prodávají až za čtyřnásobek, takže zůstává otázkou kdy se situace normalizuje…

Nachází se Země v zóně osamění? Hvězdy kolem kolem naší černé díry Sagittarius A* mohou mít stabilní oběžné dráhy. Zrcadlové básně, Möbiovy pásky a Kleinovy láhve. Konec mise českého satelitu VZLUSAT-2. AI nástroj chce pomoci kardiologům léčit fibrilaci srdečních síní.

The React team has released fixes for two new types of flaws in React Server Components (RSC) that, if successfully exploited, could result in denial-of-service (DoS) or source code exposure. The team said the issues were found by the security community while attempting to exploit the patches released for CVE-2025-55182 (CVSS score: 10.0), a critical bug in RSC that has since been weaponized in Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]

Dnes (v pátek 12. prosince) v 11 hodin začíná finále Robosoutěže FEL ČVUT. Akce je otevřená pro veřejnost, takže se můžete zajít podívat přímo do Zengerovy posluchárny FEL ČVUT v Praze na Karlově náměstí 13, nebo si pusťte stream: Na půdě Fakulty elektrotechnické ČVUT si zasoutěží 33 nejlepších ...

MITRE has shared this year's top 25 list of the most dangerous software weaknesses behind over 39,000 security vulnerabilities disclosed between June 2024 and June 2025. [...]

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged federal agencies to patch the recent React2Shell vulnerability by December 12, 2025, amid reports of widespread exploitation. The critical vulnerability, tracked as CVE-2025-55182 (CVSS score: 10.0), affects the React Server Components (RSC) Flight protocol. The underlying cause of the issue is an unsafe deserialization Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]

Tachyum napadá Google kvůli označení AI čipů „TPU“ • . • Google používá TPU roky a vstupuje s nimi na běžný trh. • Tachyum dál slibuje průlomové čipy, ale bez prototypu a s právními spory.

An anti-piracy coalition has dismantled one of India's most popular streaming piracy services, which has provided free access to movies and TV shows to millions over the past two years. [...]

NASA ztratila spojení se sondou MAVEN na oběžné dráze Marsu • Zkoumá atmosféru a zajišťuje spojení s rovery na povrchu • MAVEN naštěstí není jediný, jinak by spadl tamní internet

CEO Intelu Lip-Bu Tan byl nařčen z toho, že tlačí společnost k investicím a akvizicím, ze kterých by měl osobní prospěch. Situace vyšla najevo v důsledku snah o akvizici firmy Rivos, kde Tan působil…