Why we should rethink accessibility as customization

As a Technical Writer for Google Cloud who’s worked in this industry for more than 20 years, technology has had a big impact on my life. It led me to a job that I love, and it keeps me connected to co-workers, friends and family scattered around the world.

But it also helps me to accomplish everyday tasks in ways many people might not realize. I have aniridia, a rare eye condition where the eyes are underdeveloped. Among other things, I’m light sensitive, have about 20/200 vision that isn’t correctable with lenses or surgery, and my eyes move around involuntarily.

Most people don’t realize the extent of my disability because I’m largely independent. The challenges I face on a regular basis are little things that most people take for granted — for example, I don’t experience eye contact, which means I often miss non-verbal cues. And for me, crossing the street is like a real world game of Frogger. Reading menus and shopping can be difficult. Navigating airports or locating my rideshare car can be stressful.

But I’ve used tech to create my own set of “life hacks.” I adjust the magnification of my view of a Google Doc during a meeting, which doesn’t change anyone else’s view of it. I zoom in on instructors during virtual dance classes. I regularly use keyboard shortcuts and predefined text snippets to work more productively. I do lots of planning before trips and save key navigational info in Google Maps. I take photos of menus and labels so I can read them more closely on my phone.

The technologies that help to mitigate the kinds of challenges I face don’t just benefit me, though — they benefit everyone. Features like Dark mode, Assistant, Live Caption — these benefit everyone and make their individual experiences using certain products better. And they can also support people with permanent, situational, or temporary disabilities.

The positive effect of disability-friendly design on a wider population is known as the curb-cut effect. A curb cut is a ramp built into a sidewalk that slopes down to a street. Their primary purpose is to provide access for wheelchairs, but curb cuts actually help many others, including people riding bikes, skateboards or scooters, people pushing strollers or pulling wheeled luggage, and people walking with canes or crutches. So while they were made to help people with disabilities, they actually help so many others.

There’s an important lesson to learn from the curb-cut effect, one that I think about when we are creating new technologies here at Google: If you are involved in designing, creating, selling, or supporting products and services, I challenge you to reframe accessibility as customization. Many people typically view accessibility as an extra feature of a product that is specifically for someone with a disability. But features like Dark mode or captions are really a way to customize your user experience, and these customizations are beneficial to everyone. We all find ourselves in different contexts where we need to adjust how we interact with our devices and the people around us. Design that provides a range of ways to interact with people and our world results in products and services that are more usable — by everyone.

Continuous scrolling comes to Search on mobile

At Google, we’re always exploring new ways to help people find what they’re looking for quickly and easily. Earlier this year, we launched a redesign of the Search results page on mobile for a more modern experience that’s easier to scan and navigate. Today, we’re making browsing search results more seamless and intuitive with the introduction of continuous scrolling on mobile devices. Now, when you reach the bottom of a search results page on your phone, the next set of results will automatically load with relevant information.

While you can often find what you're looking for in the first few results, sometimes you want to keep looking. In fact, most people who want additional information tend to browse up to four pages of search results. With this update, people can now seamlessly do this, browsing through many different results, before needing to click the “See more” button.

For example, for broader, more open-ended questions like “What can I do with pumpkins?” you may want to consider more results and inspiration before deciding how to move forward. Scrolling through a wider range of results may show you tons of options you hadn’t considered, like no-carve pumpkin decor ideas for Halloween, pumpkin seed recipes that make your pumpkin worth carving and more ideas for how to make the most out of your gourd.

So for everyone with a little extra curiosity, this new Search experience is starting to gradually roll out today for most English searches on mobile in the U.S.

Continuous scrolling comes to Search on mobile

At Google, we’re always exploring new ways to help people find what they’re looking for quickly and easily. Earlier this year, we launched a redesign of the Search results page on mobile for a more modern experience that’s easier to scan and navigate. Today, we’re making browsing search results more seamless and intuitive with the introduction of continuous scrolling on mobile devices. Now, when you reach the bottom of a search results page on your phone, the next set of results will automatically load with relevant information.

While you can often find what you're looking for in the first few results, sometimes you want to keep looking. In fact, most people who want additional information tend to browse up to four pages of search results. With this update, people can now seamlessly do this, browsing through many different results, before needing to click the “See more” button.

For example, for broader, more open-ended questions like “What can I do with pumpkins?” you may want to consider more results and inspiration before deciding how to move forward. Scrolling through a wider range of results may show you tons of options you hadn’t considered, like no-carve pumpkin decor ideas for Halloween, pumpkin seed recipes that make your pumpkin worth carving and more ideas for how to make the most out of your gourd.

So for everyone with a little extra curiosity, this new Search experience is starting to gradually roll out today for most English searches on mobile in the U.S.

New beta to add data loss prevention to Google Chat

Quick launch summary

At Google Cloud Next ‘21, we announced a beta for data loss prevention (DLP) in Google Chat to help prevent sensitive and confidential information from leaking outside of your organization.

Error message shown to users when they try to share sensitive information outside of the organization in Chat
Prevent sensitive data from leaking with the DLP in Chat beta



Adding DLP to Chat enables admins to create custom policies to prevent sensitive data leaks from Chat. Admins can choose to simply audit (monitor) any DLP violations or block end users from sending sensitive content. Admins are alerted about policy violations and can quickly investigate and take action.


DLP in Chat rules in the Admin console
Set up DLP rules in the Admin console


With this beta, you can set all the same policies across Chat, Drive, and Chrome.

You can sign up your organization for the beta using this form.

Getting started


  • Admins: This feature will be OFF by default and, once added to the beta, can be enabled at the domain, OU, or group level. You can create DLP rules in the Admin console under Security > Data Protection. Visit the Help Center to learn more about turning data loss prevention in Chat on for your organization.
  • End users: There is no end user setting for this feature.

Rollout pace


Availability

  • Available to Google Workspace Enterprise Standard, Enterprise Plus, Education Standard and Education Plus customers
  • Not available to Google Workspace Essentials, Business Starter, Business Standard, Business Plus, Enterprise Essentials, Frontline, and Nonprofits, as well as G Suite Basic and Business customers

Resources

The best of Google available on Samsung Galaxy foldables

From split-screen multitasking with the power of Google Workspace apps to hands-free Duo calls in Flex mode, Google and Samsung continue to work together to create more helpful experiences on Android foldables. When we combine the helpfulness of Google’s apps and services with Samsung’s Galaxy Z Fold3 5G and Galaxy Z Flip3 5G devices, a world of new possibilities unfolds.

Here are six great ways to experience the best of Google on Samsung’s latest Galaxy Z devices.

1. Enjoy entertainment with a bigger, better and bolder YouTube experience

New Ways to Watch YouTube on the Samsung Galaxy Z Fold3 5G
10:25

The Galaxy Z Fold3 takes YouTube to the next level. Simply unfold to the immersive main screen and your video will quickly adapt to the larger display so you can really dive into whatever you're watching. The tablet-sized screen even hides the 4MP front-facing camera under the display allowing you to have an edge-to-edge cinematic viewing experience. If you want to follow along with a video while you cook, exercise or just lean back, you can prop your Galaxy Z Fold3 in Flex mode for a hands-free experience. And new users can enjoy four free months of YouTube Premium when they purchase a Galaxy Z Fold3 or Z Flip3 (terms apply).

2. Stay in touch, hands-free with Google Duo

New Ways to Call Handsfree with Google Duo on the Samsung Galaxy Z Fold3 5G & Z Flip3 5G
10:25

Stop worrying about staying in the frame during video calls. You can set your Galaxy Z Fold3 or Z Flip3 down in Flex mode and keep your Duo calls going hands-free while staying in the picture. Step back and show off your apartment upgrade or pick up your pup and bring her in frame — all without the hassle of holding up your phone..

3. Boost productivity with split-screen multitasking and Google Workspace

New Ways to Multitask with Google Workspace on the Samsung Galaxy Z Fold3 5G
10:25

With apps like Google Duo, Calendar, Chrome, Gmail and more, you can connect, create and collaborate on the Galaxy Z Fold3 right out of the box. Using the Edge panel, you can easily drag and drop apps into place so you can work across up to three apps at once – taking multitasking to the next level. Answer emails while you watch your favorite YouTube livestreams. Edit docs in real-time with colleagues while you discuss in a Meet conference call. Check your Calendar while texting with friends in Messages. Do it all at once with side-by-side multitasking, and just about anywhere with 5G.

4. Never get bored with millions of apps on Google Play

Your next big adventure awaits with millions of apps on Google Play. And with the 120Hz adaptive refresh rate on both the Galaxy Z Fold3 cover and main screen, you’ll have smooth gameplay. Earn Play Points as you use the Play Store, and redeem them for special items in games or Play Credit. Or enjoy over 800 games and apps free of ads and in-app purchases with Play Pass.

5. Record, edit and publish your next video with YouTube Shorts built in

New ways to Create Handsfree with YouTube Shorts on the Samsung Galaxy Z Flip3 5G
10:25

Inspiration can strike at any time. With the Galaxy Z Flip3, you can unfold your ultra-portable content creator at the exact moment you need it. Open up YouTube Shorts in the YouTube app to quickly start recording, edit right in the app and upload with superfast 5G. And with Flex mode on the Galaxy Z Flip3, you don’t even need to worry about bringing a tripod with you: Simply fold your Galaxy Z Flip3 anywhere between 75 and 115 degrees, and you’ll be sure to capture your best angle.

6. Explore with Google and Augmented Reality

Unfold your Galaxy Z Flip3 and use Google’s augmented reality features built into some of your favorite apps to learn more about the world around you. With Live View in Google Maps, you can quickly orient yourself and know which way to go with directions overlaid right on top of your surroundings. If you come across something like a historical landmark, a cool new pair of sneakers or a menu that’s not in your native language, Google Lens can help you get more information about it, help you find where to buy it, or help you translate it. Just unfold and point.

To learn more about all of the helpful ways you can use Google on the Samsung Galaxy Z Fold3 5G and Z Flip3 5G, visit unfold.withgoogle.com. And stay tuned for more as we continue to partner with Samsung to spread the news about these helpful foldable experiences.

The best of Google available on Samsung Galaxy foldables

From split-screen multitasking with the power of Google Workspace apps to hands-free Duo calls in Flex mode, Google and Samsung continue to work together to create more helpful experiences on Android foldables. When we combine the helpfulness of Google’s apps and services with Samsung’s Galaxy Z Fold3 5G and Galaxy Z Flip3 5G devices, a world of new possibilities unfolds.

Here are six great ways to experience the best of Google on Samsung’s latest Galaxy Z devices.

1. Enjoy entertainment with a bigger, better and bolder YouTube experience

New Ways to Watch YouTube on the Samsung Galaxy Z Fold3 5G
10:25

The Galaxy Z Fold3 takes YouTube to the next level. Simply unfold to the immersive main screen and your video will quickly adapt to the larger display so you can really dive into whatever you're watching. The tablet-sized screen even hides the 4MP front-facing camera under the display allowing you to have an edge-to-edge cinematic viewing experience. If you want to follow along with a video while you cook, exercise or just lean back, you can prop your Galaxy Z Fold3 in Flex mode for a hands-free experience. And new users can enjoy four free months of YouTube Premium when they purchase a Galaxy Z Fold3 or Z Flip3 (terms apply).

2. Stay in touch, hands-free with Google Duo

New Ways to Call Handsfree with Google Duo on the Samsung Galaxy Z Fold3 5G & Z Flip3 5G
10:25

Stop worrying about staying in the frame during video calls. You can set your Galaxy Z Fold3 or Z Flip3 down in Flex mode and keep your Duo calls going hands-free while staying in the picture. Step back and show off your apartment upgrade or pick up your pup and bring her in frame — all without the hassle of holding up your phone..

3. Boost productivity with split-screen multitasking and Google Workspace

New Ways to Multitask with Google Workspace on the Samsung Galaxy Z Fold3 5G
10:25

With apps like Google Duo, Calendar, Chrome, Gmail and more, you can connect, create and collaborate on the Galaxy Z Fold3 right out of the box. Using the Edge panel, you can easily drag and drop apps into place so you can work across up to three apps at once – taking multitasking to the next level. Answer emails while you watch your favorite YouTube livestreams. Edit docs in real-time with colleagues while you discuss in a Meet conference call. Check your Calendar while texting with friends in Messages. Do it all at once with side-by-side multitasking, and just about anywhere with 5G.

4. Never get bored with millions of apps on Google Play

Your next big adventure awaits with millions of apps on Google Play. And with the 120Hz adaptive refresh rate on both the Galaxy Z Fold3 cover and main screen, you’ll have smooth gameplay. Earn Play Points as you use the Play Store, and redeem them for special items in games or Play Credit. Or enjoy over 800 games and apps free of ads and in-app purchases with Play Pass.

5. Record, edit and publish your next video with YouTube Shorts built in

New ways to Create Handsfree with YouTube Shorts on the Samsung Galaxy Z Flip3 5G
10:25

Inspiration can strike at any time. With the Galaxy Z Flip3, you can unfold your ultra-portable content creator at the exact moment you need it. Open up YouTube Shorts in the YouTube app to quickly start recording, edit right in the app and upload with superfast 5G. And with Flex mode on the Galaxy Z Flip3, you don’t even need to worry about bringing a tripod with you: Simply fold your Galaxy Z Flip3 anywhere between 75 and 115 degrees, and you’ll be sure to capture your best angle.

6. Explore with Google and Augmented Reality

Unfold your Galaxy Z Flip3 and use Google’s augmented reality features built into some of your favorite apps to learn more about the world around you. With Live View in Google Maps, you can quickly orient yourself and know which way to go with directions overlaid right on top of your surroundings. If you come across something like a historical landmark, a cool new pair of sneakers or a menu that’s not in your native language, Google Lens can help you get more information about it, help you find where to buy it, or help you translate it. Just unfold and point.

To learn more about all of the helpful ways you can use Google on the Samsung Galaxy Z Fold3 5G and Z Flip3 5G, visit unfold.withgoogle.com. And stay tuned for more as we continue to partner with Samsung to spread the news about these helpful foldable experiences.

Countering threats from Iran

Google’s Threat Analysis Group tracks actors involved in disinformation campaigns, government backed hacking, and financially motivated abuse. We have a long-standing policy to send you a warning if we detect that your account is a target of government-backed phishing or malware attempts. So far in 2021, we’ve sent over 50,000 warnings, a nearly 33% increase from this time in 2020. This spike is largely due to blocking an unusually large campaign from a Russian actor known as APT28 or Fancy Bear.

We intentionally send these warnings in batches to all users who may be at risk, rather than at the moment we detect the threat itself, so that attackers cannot track our defense strategies. On any given day, TAG is tracking more than 270 targeted or government-backed attacker groups from more than 50 countries. This means that there is typically more than one threat actor behind the warnings.

In this blog, we explore some of the most notable campaigns we’ve disrupted this year from a different government-backed attacker: APT35, an Iranian group, which regularly conducts phishing campaigns targeting high risk users. This is the one of the groups we disrupted during the 2020 US election cycle for its targeting of campaign staffers. For years, this group has hijacked accounts, deployed malware, and used novel techniques to conduct espionage aligned with the interests of the Iranian government.

Hijacked websites used for credential phishing attacks

In early 2021, APT35 compromised a website affiliated with a UK university to host a phishing kit. Attackers sent email messages with links to this website to harvest credentials for platforms such as Gmail, Hotmail, and Yahoo. Users were instructed to activate an invitation to a (fake) webinar by logging in. The phishing kit will also ask for second-factor authentication codes sent to devices.

APT35 has relied on this technique since 2017 — targeting high-value accounts in government, academia, journalism, NGOs, foreign policy, and national security. Credential phishing through a compromised website demonstrates these attackers will go to great lengths to appear legitimate – as they know it's difficult for users to detect this kind of attack.

Phishing page hosted on a compromised website

Phishing page hosted on a compromised website

Utilization of Spyware Apps

In May 2020, we discovered that APT35 attempted to upload spyware to the Google Play Store. The app was disguised as VPN software that, if installed, could steal sensitive information such as call logs, text messages, contacts, and location data from devices. Google detected the app quickly and removed it from the Play Store before any users had a chance to install it. Although Play Store users were protected, we are highlighting the app here as TAG has seen APT35 attempt to distribute this spyware on other platforms as recently as July 2021.

Spyware app disguised as a VPN utility

Spyware app disguised as a VPN utility

Conference-themed phishing emails

One of the most notable characteristics of APT35 is their impersonation of conference officials to conduct phishing attacks. Attackers used the Munich Security and the Think-20 (T20) Italy conferences as lures in non-malicious first contact email messages to get users to respond. When they did, attackers sent them phishing links in follow-on correspondence.

Targets typically had to navigate through at least one redirect before landing on a phishing domain. Link shorteners and click trackers are heavily used for this purpose, and are oftentimes embedded within PDF files. We’ve disrupted attacks using Google Drive, App Scripts, and Sites pages in these campaigns as APT35 tries to get around our defenses. Services from Dropbox and Microsoft are also abused.

Google Sites page disguised as a Google Form to redirect to a phishing site

Google Sites page disguised as a Google Form to redirect to a phishing site

Telegram for threat actor notifications

One of APT35’s novel techniques involves using Telegram for operator notifications. The attackers embed javascript into phishing pages that notify them when the page has been loaded. To send the notification, they use the Telegram API sendMessage function, which lets anyone use a Telegram bot to send a message to a public channel. The attackers use this function to relay device-based data to the channel, so they can see details such as the IP, useragent, and locales of visitors to their phishing sites in real-time. We reported the bot to Telegram and they have taken action to remove it.

Public Telegram channel used for attacker notifications

Public Telegram channel used for attacker notifications

How we keep users safe from these threats

We warn users when we suspect a government-backed threat like APT35 is targeting them. Thousands of these warnings are sent every month, even in cases where the corresponding attack is blocked. If you receive a warning it does not mean your account has been compromised, it means you have been identified as a target.

Workspace administrators are also notified regarding targeted accounts in their domain. Users are encouraged to take these warnings seriously and consider enrolling in the Advanced Protection Program or enabling two-factor authentication if they haven't already.

We also block malicious domains using Google Safe Browsing – a service that Google's security team built to identify unsafe websites across the web and notify users and website owners of potential harm. When a user of a Safe Browsing-enabled browser or app attempts to access unsafe content on the web, they’ll see a warning page explaining that the content they’re trying to access may be harmful. When a site identified by Safe Browsing as harmful appears in Google Search results, we show a warning next to it in the results.

Threat Analysis Group will continue to identify bad actors and share relevant information with others in the industry, with the goal of bringing awareness to these issues, protecting you and fighting bad actors to prevent future attacks.

Technical Details

Indicators from APT28 phishing campaign:

service-reset-password-moderate-digital.rf[.]gd

reset-service-identity-mail.42web[.]io

digital-email-software.great-site[.]net

Indicators from APT35 campaigns:

Abused Google Properties:

https://sites.google[.]com/view/ty85yt8tg8-download-rtih4ithr/

https://sites.google[.]com/view/user-id-568245/

https://sites.google[.]com/view/hhbejfdwdhwuhscbsb-xscvhdvbc/

Abused Dropbox Properties:

https://www.dropbox[.]com/s/68y4vpfu8pc3imf/Iraq&Jewish.pdf

Phishing Domains:

nco2[.]live

summit-files[.]com

filetransfer[.]club

continuetogo[.]me

accessverification[.]online

customers-verification-identifier[.]site

service-activity-session[.]online

identifier-service-review[.]site

recovery-activity-identification[.]site

review-session-confirmation[.]site

recovery-service-activity[.]site

verify-service-activity[.]site

service-manager-notifications[.]info

Android App:

https://www.virustotal.com/gui/file/5d3ff202f20af915863eee45916412a271bae1ea3a0e20988309c16723ce4da5/detection

Android App C2:

communication-shield[.]site

cdsa[.]xyz

Explore impossible exhibitions in 3D

Since we launched our first Pocket Gallery in 2018, the culturally curious from all across the globe have used augmented reality to step inside our ever-growing collection of virtual galleries created with the help of our partners from around the world. From the original Pocket Gallery that united all of Vermeer’s artworks for the first time in history, to the virtual construction of lost Bauhaus buildings, Pocket Gallery has brought numerous previously-impossible exhibitions to your AR-enabled smartphone. Today, we are making the entire series of Pocket Galleries available to anyone on the web, meaning they can now be explored on desktop and on mobiles with or without AR capabilities.

Simply open your favorite browser to discover all our Pocket Galleries in 3D. Take an art tour of the world in sound, go spelunking among some of the oldest paintings known to man at Chauvet Cave, marvel at miniatures scenes from ancient India, or discover the man of contradictions in Klimt vs. Klimt.

  • Zooming into Gustav Klimt’s The Kiss in a virtual Gallery

    Get to know the enigmatic genius in Klimt vs. Klimt

  • Entering and walking around a colorful virtual Gallery

    Wander through every shade and hue in Art of Color

  • Entering a temple-like virtual building full of artworks

    Discover nature, love, celebrations and faith in Indian miniatures

  • Walking around a virtual gallery of Kandinsky’s work

    Follow the evolution of Kandinsky through time and space

Explore the artifacts to read about their history from our partners. Zoom-in even closer to uncover the hidden detail of the artworks, right down to the brushstrokes. In some galleries, an audio tour will also guide you through the highlights of the exhibitions.

In addition to enabling all of our Pocket Galleries on the web, we are introducing a new exhibition to the collection in collaboration with Réunion des musées nationaux - Grand Palais (Rmn-GP) in France. The curators invite everyone on a guided tour to discover maritime tales, stormy landscapes, and shores swathed in light. The exclusive exhibition features 40 marine masterpieces from the collections of the Palace of Versailles, the Louvre and other prominent European museums.

Embark on a guided maritime journey with Rmn - Grand Palais

“The Rmn - Grand Palais and Google Arts & Culture have collaborated for a long time together in order to innovate and imagine new digital offers to expand our audiences. Showcasing some of the most beautiful masterpieces of the genre, the exhibition “Maritime Inspirations”, entirely virtual, allows you to test new ways of approaching art in augmented reality or on the web, and I am delighted that it can now be offered to the public. " says Vincent Poussou, Public and Digital Director Meeting of National Museums - Grand Palais

We hope you’ll enjoy uncovering maritime mysteries through our latest gallery, and experiencing our full collection of cultural curiosities from the new perspective of Pocket Galleries on the web.

View our collection of Pocket Galleries and start exploring them on the web at the Google Arts & Culture site or discover Pocket Galleries through augmented reality in the camera tab of the free Google Arts & Culture app for Android and iOS.

Beta Channel Update for Chrome OS

The Beta channel has been updated to 94.0.4606.97 (Platform version: 14150.57.0) for most Chrome OS devices. This build contains a number of bug fixes, security updates and feature enhancements. 


If you find issues, please let us know by visiting our forum or filing a bug. Interested in switching channels? Find out how. You can submit feedback using 'Report an issue...' in the Chrome menu (3 vertical dots in the upper right corner of the browser).


Matt Nelson


Google Chrome OS