No software or service is perfect and there are always loophole and exploits that hackers can take advantage of. This is why it is important that developers take note of reports of such loopholes and close them ASAP, but now instead of relying on security companies or individuals to send in reports, Google has decided to take it upon themselves to do so.
Dubbed Project Zero, this is a new project by Google that aims that ensuring the entire internet is safe from potential attacks, like the recent Heartbleed security bug that had everyone in a panic. According to Google, “You should be able to use the web without fear that a criminal or state-sponsored actor is exploiting software bugs to infect your computer, steal secrets or monitor your communications.”
Google also claims that they will not be placing any bounds on this project, meaning that it does not matter who made the software, as long as it is one that is depended on by many people, Google will work towards improving its security. This means that it doesn’t matter if you favor iOS over Android, or Internet Explorer over Chrome, as long as it is used by many, Google will be keeping a watchful eye over it.
Google will also be making Project Zero transparent by allowing users to monitor how long it takes for a report bug to be fixed by a vendor. Google will be sending the bug reports directly to the developers themselves as opposed to third-parties, to ensure that the issue gets addressed ASAP. It’s a noble pursuit and we can’t wait to see if overall security can be improved with a behemoth like Google now actively taking part in it.