Category: google

“The tactic here was to create a specifically-constructed request by a bad actor to circumvent email verification during the signup process,” [said Anu Yamunan, director of abuse and safety protections at Google Workspace]. “The vector here is they would use one email address to try to sign in, and a completely different email address to verify a token. Once they were email verified, in some cases we have seen them access third party services using Google single sign-on.” Yamunan said none of the potentially malicious workspace accounts were used to abuse Google services, but rather the attackers sought to impersonate the domain holder to other services online.

The most common complaints are around losing previously available features. “Change is fine. Removing key features is not,” Community member Seymourh86 wrote in June. “Unless you want people to go to competitors…” Comments from this week show that users are not over the change. DebL555, for example, said today that they’re “extremely disappointed and frustrated I cannot access my Dashboard on my PC.” Yesterday, NessWeb dubbed the change “an incredibly bad decision,” adding: “It’s particularly awful for anyone with a visual disability or a finger dexterity issue. It’s still bad for everyone else because you just can’t see as much on a 3″ screen as you can see on a real computer … Bring back the web interface!!”

As has been the case every time there have been problems with Fitbit post-acquisition, theories that Google is making Fitbit worse to push people toward the Pixel Watch run rampant. Others on the Community forum were upset because they felt like Google was ignoring feedback from longtime Fitbit customers. In June, a user going by jessicabilasano wrote: “I just hope Fitbit does not end up like any other Google purchase that turns into a nightmare product/company. Google, instead of removing things that users love about Fitbit features, why not improve them? Listen to your customers/consumers.” However, a lack of response to public negative customer feedback has become commonplace for the Fitbit brand lately. “Users seek alternatives as Google is intent on app-centric focus,” captions schwit1. “Google ruins everything, it’s already ruined Google.”

However, according to noyb, the problem is that although Privacy Sandbox is advertised as an improvement over third-party tracking, that tracking doesn’t go away. Instead, it is done within the browser by Google itself. To comply with the rules, Google needs informed consent from users, which is where issues start. Noyb wrote today: “Google’s internal browser tracking was introduced to users via a pop-up that said ‘turn on ad privacy feature’ after opening the Chrome browser. In the European Union, users are given the choice to either ‘Turn it on’ or to say ‘No thanks,’ so to refuse consent.” Users would be forgiven for thinking that ‘turn on ad privacy feature’ would protect them from tracking. However, what it actually does is turn on first-party tracking.

Max Schrems, honorary chairman of noyb, claimed: “Google has simply lied to its users. People thought they were agreeing to a privacy feature, but were tricked into accepting Google’s first-party ad tracking. “Consent has to be informed, transparent, and fair to be legal. Google has done the exact opposite.” Noyb noted that Google had argued “choosing to click on ‘Turn it on’ would indeed be considered consent to tracking under Article 6(1)(a) of the GDPR.”

What’s inside. Here’s what we know about the internal documents, thanks to Fishkin and [Michael King, iPullRank CEO]:

Current: The documentation indicates this information is accurate as of March.
Ranking features: 2,596 modules are represented in the API documentation with 14,014 attributes.
Weighting: The documents did not specify how any of the ranking features are weighted — just that they exist.
Twiddlers: These are re-ranking functions that “can adjust the information retrieval score of a document or change the ranking of a document,” according to King.
Demotions: Content can be demoted for a variety of reasons, such as: a link doesn’t match the target site; SERP signals indicate user dissatisfaction; Product reviews; Location; Exact match domains; and/or Porn.
Change history: Google apparently keeps a copy of every version of every page it has ever indexed. Meaning, Google can “remember” every change ever made to a page. However, Google only uses the last 20 changes of a URL when analyzing links.

Other interesting findings. According to Google’s internal documents:
Freshness matters — Google looks at dates in the byline (bylineDate), URL (syntacticDate) and on-page content (semanticDate).
To determine whether a document is or isn’t a core topic of the website, Google vectorizes pages and sites, then compares the page embeddings (siteRadius) to the site embeddings (siteFocusScore).
Google stores domain registration information (RegistrationInfo).
Page titles still matter. Google has a feature called titlematchScore that is believed to measure how well a page title matches a query.
Google measures the average weighted font size of terms in documents (avgTermWeight) and anchor text.
What does it all mean? According to King: “[Y]ou need to drive more successful clicks using a broader set of queries and earn more link diversity if you want to continue to rank. Conceptually, it makes sense because a very strong piece of content will do that. A focus on driving more qualified traffic to a better user experience will send signals to Google that your page deserves to rank.” […] Fishkin added: “If there was one universal piece of advice I had for marketers seeking to broadly improve their organic search rankings and traffic, it would be: ‘Build a notable, popular, well-recognized brand in your space, outside of Google search.'”

Google’s concern, sources familiar with the company’s thinking told Axios, is that the new California ad tax bill could set a troubling wider precedent for other states. California’s Senate tax committee approved the “ad tax” bill May 8. Days after that, Google started making calls to nonprofits about potentially pausing future Google News Initiative funding, sources told Axios. Opponents argue (PDF) the ad tax burden would get passed down to consumers and businesses. They also say the measure would face legal challenges, similar to a digital ad tax introduced in Maryland last year.

“[A]ccording to UniSuper’s incident log, downtime started May 2, and a full restoration of services didn’t happen until May 15.”

UniSuper, an Australian pension fund that manages $135 billion worth of funds and has 647,000 members, had its entire account wiped out at Google Cloud, including all its backups that were stored on the service… UniSuper’s website is now full of must-read admin nightmare fuel about how this all happened. First is a wild page posted on May 8 titled “A joint statement from UniSuper CEO Peter Chun, and Google Cloud CEO, Thomas Kurian….” Google Cloud is supposed to have safeguards that don’t allow account deletion, but none of them worked apparently, and the only option was a restore from a separate cloud provider (shoutout to the hero at UniSuper who chose a multi-cloud solution)… The many stakeholders in the service meant service restoration wasn’t just about restoring backups but also processing all the requests and payments that still needed to happen during the two weeks of downtime.

The second must-read document in this whole saga is the outage update page, which contains 12 statements as the cloud devs worked through this catastrophe. The first update is May 2 with the ominous statement, “You may be aware of a service disruption affecting UniSuper’s systems….” Seven days after the outage, on May 9, we saw the first signs of life again for UniSuper. Logins started working for “online UniSuper accounts” (I think that only means the website), but the outage page noted that “account balances shown may not reflect transactions which have not yet been processed due to the outage….” May 13 is the first mention of the mobile app beginning to work again. This update noted that balances still weren’t up to date and that “We are processing transactions as quickly as we can.” The last update, on May 15, states, “UniSuper can confirm that all member-facing services have been fully restored, with our retirement calculators now available again.”

The joint statement and the outage updates are still not a technical post-mortem of what happened, and it’s unclear if we’ll get one. Google PR confirmed in multiple places it signed off on the statement, but a great breakdown from software developer Daniel Compton points out that the statement is not just vague, it’s also full of terminology that doesn’t align with Google Cloud products. The imprecise language makes it seem like the statement was written entirely by UniSuper.
Thanks to long-time Slashdot reader swm for sharing the news.

“But at an all-hands meeting last week with CEO Sundar Pichai and CFO Ruth Porat, employees were more focused on why that performance isn’t translating into higher pay, and how long the company’s cost-cutting measures are going to be in place.”

“We’ve noticed a significant decline in morale, increased distrust and a disconnect between leadership and the workforce,” a comment posted on an internal forum ahead of the meeting read. “How does leadership plan to address these concerns and regain the trust, morale and cohesion that have been foundational to our company’s success?”

Google is using artificial intelligence to summarize employee comments and questions for the forum.
Alphabet’s top leadership has been on the defensive for the past few years, as vocal staffers have railed about post-pandemic return-to-office mandates, the company’s cloud contracts with the military, fewer perks and an extended stretch of layoffs — totaling more than 12,000 last year — along with other cost cuts that began when the economy turned in 2022. Employees have also complained about a lack of trust and demands that they work on tighter deadlines with fewer resources and diminished opportunities for internal advancement.

The internal strife continues despite Alphabet’s better-than-expected first-quarter earnings report, in which the company also announced its first dividend as well as a $70 billion buyback. “Despite the company’s stellar performance and record earnings, many Googlers have not received meaningful compensation increases” a top-rated employee question read. “When will employee compensation fairly reflect the company’s success and is there a conscious decision to keep wages lower due to a cooling employment market?”

Real estate market participants who spoke with the Chronicle indicated that Google plans to consolidate much of its operations from One Market to nearby 345 Spear St., where the company leases about 400,000 square feet. These individuals said that Google will likely renew its lease at that property once it expires next year.

Google’s migration guide for developers lists what they’re supposed to switch to on Android phones and Wear OS. However, there is no replacement for the Goals API that lets Google Fit users set “how many steps and heart points they want to aim for each day.” Google says it will “share more details about what’s next for Android Health” at I/O later this month.

As of this API shutdown announcement, Google has said nothing about the Google Fit apps on Android, Wear OS, and iOS. They still work to track activity and house your full archive. […] At this point, it’s clear that Google Fit is not the future. On the Pixel Watch, Fitbit is the default, while Samsung and other Wear OS manufacturers have their own health tracking solutions. If Google were to announce a deprecation of the Fit app, having it coincide with the June 2025 developer deadline makes sense.

“On a personal level, I am opposed to Google taking any military contracts — no matter which government they’re with or what exactly the contract is about,” Cheyne Anderson, a Google Cloud software engineer based in Washington, told CNBC. “And I hold that opinion because Google is an international company and no matter which military it’s with, there are always going to be people on the receiving end… represented in Google’s employee base and also our user base.” Anderson had flown to Sunnyvale for the protest in Kurian’s office and was one of the workers arrested Tuesday. “Google Cloud supports numerous governments around the world in countries where we operate, including the Israeli government, with our generally available cloud computing services,” a Google spokesperson told CNBC, adding, “This work is not directed at highly sensitive, classified, or military workloads relevant to weapons or intelligence services.”