Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Application Security

Google Rolling Out Security Update for Google Drive

Google this week announced a security update for Google Drive that is meant to make sharing links more secure for files stored with the service.

Google this week announced a security update for Google Drive that is meant to make sharing links more secure for files stored with the service.

With this update, the search advertising giant is adding a resource key to sharing links, which will impact access to the files for those users who haven’t yet viewed the files.

“Once the update has been applied to a file, users who haven’t viewed the file before will have to use a URL containing the resource key to gain access, and those who have viewed the file before or have direct access will not need the resource key to access the file,” Google said in a note accompanying the update.  

Google Workspace admins have until July 23 to decide whether or how to apply the security update within their organization. In the Alert Center, they can view how many files, folders, shared drives, and users are impacted.

Starting July 26, end users who own or manage files that will be affected will receive an email notification and will have until September 13 to decide how the update is applied, provided that their admin has approved the update.

Also starting July 26, Google will notify users who are not part of a Google Workspace domain to inform them of impacted files. They will have until September 13 to decide how the update is applied.

The update is applicable to all Google Workspace, G Suite Basic, and Business customers, as well as to users who have personal Google accounts.

Related: Google Workspace Gets Client-Side Encryption

Related: Google Workspace Gets New Security Features

Related: Google Boosts Detection of Malicious Documents in Gmail

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

Network Security

NSA publishes guidance to help system administrators identify and mitigate cyber risks associated with transitioning to IPv6.

Nation-State

The North Korean APT tracked as TA444 is either moonlighting from its previous primary purpose, expanding its attack repertoire, or is being impersonated by...

Malware & Threats

Microsoft plans to improve the protection of Office users by blocking XLL add-ins from the internet.

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Cloud Security

VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system.