Techly NewsGet the app

Get the latest tech news

Google Logo Ligature Bug


Jeffrey Yasskin recently pointed out an interesting security bug: The idea is, if you had registered googlelogoligature.net then Chrome on Android (and possibly other Google products) would have displayed it as Google.net, potentially tricking users into thinking they were really interacting with Google. To see how this worked, you can try searching Google for ["googlelogoligature"], and yo

Jeffrey Yasskin recently pointed out an interesting security bug: Using a ligature to get the Google logo into text-only interfaces is a reasonable product decision, but it shouldn't have been added to a general-purpose font. And especially shouldn't have been added to a font used for rendering attacker-controlled text in security-sensitive contexts.

Get the Android app

Or read this on Hacker News

« H20 Nvidia Chip Controls May Backfire on Washington
ByoWave Proteus Controller Support Coming To Linux »