Google is moving to ban JavaScript attachments in is Gmail email service and app in order to avoid the cyber security risks posed by flies making use of the programming language.
JavaScript files, distinguished with the .js extension, has been increasingly used to deliver malware hidden in attached files sent to targeted machines, which when downloaded can enable hackers to steal data or gain access to the infected machine.
As such, preventing the us of JavaScript files with Gmail will curtail the risk within Google’s widely-used email service.
“If you still need to send .js files for legitimate reasons, you can use Google Drive, Google Cloud Storage, or other storage solutions to share or send your files.”
Gmail already blocks a decent list of file extensions to prevent its email service from being used as a vector for cyber attacks. The suite of extension blocked are: .ADE, .ADP, .BAT, .CHM, .CMD, .COM, .CPL, .EXE, .HTA, .INS, .ISP, .JAR, .JSE, .LIB, .LNK, .MDE, .MSC, .MSP, .MST, .PIF, .SCR, .SCT, .SHB, .SYS, .VB, .VBE, .VBS, .VXD, .WSC, .WSF, .WSH.
Those familiar with the security risks associated with opening unknown emails and attachments maybe aware of the danger of downloading such files. But by blocking .js files, Google has taken upon itself to add in that level of precaution rather than relying on the security knowledge of its large Gmail user base.
Chrome 56 will also highlight and mark websites that use HTTP as insecure, which should help encourage more websites to adopt the more secure HTTPS protocol.
With this Chrome 56 joins Mozilla 51 in taking this strong arm approach in branding no HTTPS websites as insecure.
Are you a security pro? Try our quiz!
German foreign minister warns Russia will face consequences for “absolutely intolerable” cyberattack on ruling party,…
Google is reportedly laying off at least 200 staff from its “Core” organisation, including key…
Investor appeasement? Apple unveils huge $110 billion share buyback program, as sales of iPhone decline…
Tesla retreats from pioneering gigacasting manufacturing process, amid cost cutting and challenges at EV giant
No skynet please. After the US, UK and France pledge human only control of nuclear…
Microsoft's AI investments continue in south east Asia, after investments in Japan, Malaysia, Indonesia, as…