WorryFree Computers   »   [go: up one dir, main page]

This announcement was made at Google Cloud Next ‘19 in San Francisco. Check out Next OnAir to tune into the livestream or watch session recordings following the event.

What’s changing G Suite’s globally distributed cloud infrastructure reduces latency and protects data with geo redundancy. Therefore, most organizations choose not to geo-restrict their data. However, some organizations have preferences around where their data is stored at rest. To serve this need, last July, we introduced data regions allowing you to choose the regions where covered G Suite data at rest is stored - globally distributed, US or Europe. We’re now launching enhancements to data regions with two key updates:

  • Coverage for Backups: Backup data for covered Apps is now included. 
  • Coverage for additional products: Forms’ and new Sites’ covered data is now included. 


Who’s impacted Admins only

The expanded product and data coverage will not alter any previous settings you may have configured. Your existing settings will be applied to the additional apps and data types covered with this release. As with the prior release, there is no impact to your end users.

Why you’d use it Data regions has been built keeping in mind the requirements of a geographically dispersed organization. With data regions, you can create as many organizational unit-specific regions as you want with no minimum seat requirements. Your end users don’t have to deal with downtime and continue to enjoy full edit capabilities of all files, even during a data move. Additionally, when file ownership changes happen, or users switch OUs, covered data is moved dynamically according to your settings.

How to get started 


Additional details To ensure visibility into your data move progress, there will be a new ‘Backups’ tab in the data regions dashboard (Admin console > Dashboards). The tab shows a breakdown of the Backup data move progress for each of the covered products. See image below for an example of the new dashboard view.


Helpful links 


Availability Rollout details



G Suite editions 

  • Available to G Suite Business, G Suite Enterprise, G Suite Enterprise for Education and Drive Enterprise 
  • Not available to G Suite Basic, G Suite for Education, and G Suite for Nonprofits 


On/off by default?

  • For customers already using data regions, expanded product and data type coverage will automatically be supported according to the pre-established settings. 
  • For customers not using data regions, it will be OFF by default and can be enabled on the Company Profile page at individual OU levels.



Stay up to date with G Suite launches
Labels: , , ,

This announcement was made at Google Cloud Next ‘19 in San Francisco. Check out Next OnAir to tune into the livestream or watch session recordings following the event.
Quick Launch Summary We’re launching the beta of metadata in Drive. This beta will allow users to add structured metadata to all their files in Drive, making it easier to search and organize based on that information. Admins and end users can use metadata to ensure their content stays organized and accessible, helping them streamline their work.

Admins for Drive Enterprise, G Suite Business, Enterprise, Education, Enterprise for Education, and Nonprofits can learn more and apply for the beta here.

Here are some ways you can use metadata in Drive:

  • Create common file categories for your domain 
    • Admins can create metadata categories like “contract” or “engineering design” that consist of the properties that are relevant to these categories. End-users can apply them to all files that they can edit.
  • Organize team content 
    • Team Drive managers can create categories for their Team Drives or select which existing categories to enable for their Team Drives.
  • Curate and find files faster 
    • End-users can select the suitable categories for their files and folders. The new advanced search methods allow for searching over categories and properties to enable queries like “all contracts that need to be signed by next week.” 
Helpful links To learn more about and apply for the metadata in Drive beta, click here. 
To learn more about metadata in Drive, see here. 
Add metadata to files in Google Drive.

Availability 
  • G Suite editions Available to G Suite Business, G Suite Enterprise, Drive Enterprise, G Suite for Education, G Suite Enterprise for Education, and G Suite for Nonprofits. 
  • Not available to G Suite Basic. 

On/off by default? 
  • This feature will be OFF by default and can be enabled at the domain level.

Stay up to date with G Suite launches
Labels: ,

This announcement was made at Google Cloud Next ‘19 in San Francisco. Check out Next OnAir to tune into the livestream or watch session recordings following the event.


What’s changingWe’re adding an option to use your Android phone’s built-in security key for multi-factor authentication in G Suite. All phones running Android 7.0+ (Nougat) have a built-in key which can be activated. This means your users can use existing phones as a primary 2-Step Verification method to protect against phishing. Using a phone as a security key is currently offered in beta.

Who’s impacted Admins and end users

Why you’d use it 2-Step Verification greatly improves the security of your account by adding another layer to your account security and making it more resistant to phishing attacks. By adding the additional option of using your Android phone’s built-in security key, we’re expanding access to phishing-resistant 2-Step Verification method in a convenient form - your phone. This can make it faster for you to implement 2-Step Verification in your organization while keeping user training and overall costs to a minimum. 

Previously, in order to protect your users against password phishing, the only option was to use a security key fob. With this beta, their mobile phone can be that security key.

How to get started 


Additional details 
  • Available to G Suite, Cloud Identity, GCP customers, and personal Google Accounts. 
  • Available on phones running Android 7.0+ (Nougat) with Google Play Services. 
  • Compatible with Bluetooth-enabled Chrome OS, macOS X, or Windows 10 devices with a Chrome browser. 



2-Step Verification on a Pixel 3 

Helpful links 




Availability Rollout details



G Suite editions 

  • Available to all G Suite editions in beta. 


On/off by default? 

  • If 2-Step Verification or Security Key Enforcement is turned on for an organization, Android phone will be available as an option for security keys by default.


Stay up to date with G Suite launches
Labels: , , , ,

This announcement was made at Google Cloud Next ‘19 in San Francisco. Check out Next OnAir to tune into the livestream or watch session recordings following the event.

What’s changing We’re launching a beta program that enables G Suite admins to dynamically control access to G Suite apps based on a user’s identity and the context of their request (device security status, IP address, etc.). Members of the beta will be able to:

  • Set up different access levels based on a user’s identity and context of the request., 
  • Use granular controls for different organizational units (OU) 
  • Control access to several G Suite apps by setting different policies for the different access level profiles that have been set up 

Who’s impacted Admins only

Why you’d use it Currently G Suite admins can turn access to apps and services on or off for specific OUs or groups of users. This beta will provide more dynamic controls, so you can take into account contextual signals, such as device security status or IP address, to control access to those apps and services. Examples of access controls that can be set up through the context-aware access beta include:

  • Only users from corporate-owned device and a corporate IP address can access Google Drive. 
  • Only a “High Trust” group can access Google Drive when not on a corporate IP address. 
  • Only users from an encrypted device with a screen lock enabled can access Gmail. 
How to get started 
  • Admins: This is an opt-in beta. Admins can opt-in by changing their security settings Admin console> Security> Context-Aware Access
  • End users: No action needed


Additional details In the beta, context-aware access will only be configurable for Gmail, Calendar, Drive, Docs, Sheets, Slides, Forms, Sites, and Keep. You’ll be able to use the following contextual signals to control access:

  • IP Subnet (specific IPv4 or IPv6 address) 
  • Device policies as reported through the Endpoint Verification extension, including whether a device password is active, device encryption status, minimum OS versions, and company-owned devices. 

You can apply policies by OU or to the whole domain, and all admin activity is logged in audit logs in the Admin console > Reports > Admin view.

Availability 
G Suite editions 

  • Available to G Suite Enterprise, G Suite Enterprise for Education, and Cloud Identity Premium 
  • Not available to G Suite Basic, G Suite Business, G Suite for Education, G Suite for Nonprofits, and Cloud Identity Free.


Stay up to date with G Suite launches
Labels: , , ,

This announcement was made at Google Cloud Next ‘19 in San Francisco. Check out Next OnAir to tune into the livestream or watch session recordings following the event.

What’s changing 
We’re launching a beta for the alert center for G Suite which will enhance the existing alert center and make it easier for admins to manage and collaborate on alerts. Specifically, the beta will mean you’ll be able to:

  • Set status, assignee, and severity of alerts: Add key information to help your team take ownership of, assess, and collaborate as you work through security investigations. 
  • Use a more powerful search: Find alerts more easily by searching for alerts that contain a specific email address. 
  • See related alerts: The alert detail view will show other alerts related to the same actor or user to help discover possible related security incidents. \
  • See alert change history: See the history of metadata or content updates to that alert. This includes when status, assignee, or severities have changed. 

Find out more and sign up for the alert center beta here.
Who’s impacted Admins only

Why you’d use it The alert center already provides a single place to see notifications about potential issues within your domain, and take action to resolve the issues. We hope the enhancements in this beta will improve collaboration between admins and related teams with status, severity, and assignee information now available. We also hope it will make it easier to find patterns within alerts by adding more specific search capabilities and surfacing related alerts proactively.

How to get started 

Helpful links 


Availability G Suite editions 
Available to all G Suite editions.

Beta sign up 
Find out more and sign up for the alert center beta here.

Stay up to date with G Suite launches
Labels: , ,

This announcement was made at Google Cloud Next ‘19 in San Francisco. Check out Next OnAir to tune into the livestream or watch session recordings following the event.

What’s changing We’re launching a beta program to make it easier to assess your organization’s exposure to security issues and collaborate with colleagues to remediate them. The beta will add features to the G Suite security center which help you:

  • Save and share investigations in the security investigation tool 
  • Create rules within the security center to perform automated actions 

Find out more and sign up for the new security center beta here.

This beta will also allow you to send notifications to the alert center, where teams of admins and analysts can work together to take ownership of alerts and update status as they work through security investigations. For more information on the latest updates to the alert center, see this announcement.
Who’s impacted Admins only

Why you’d use it The G Suite security center already helps you protect your organization with security analytics and best practice recommendations from Google. It provides a unified security dashboard, a tool to investigate and remediate threats, and more. These features in the beta will make it easier to assess and manage threats by adding automated actions, improved tracking, and more to help your whole team understand and improve your security posture.


How to get started Additional details Save and share investigations 
We want to make sure admins are able to work together and collaborate to assess their organization’s exposure to security issues. With this beta launch, admins can now save their investigations in the security investigation tool and share them with other admins to improve collaboration.

Create rules and set up automated actions and alerts 
Admins can also create automated rules to perform remediative actions or send notifications to the alert center, where teams of admins and analysts can work together to take ownership of alerts and update status as they work through security investigations.
Helpful links Availability G Suite editions 
Available to G Suite Enterprise, G Suite Enterprise for Education, and Cloud Identity Premium.
Not available to G Suite Basic, G Suite Business, G Suite for Education, and G Suite for Nonprofits.

On/off by default? 
This will be OFF by default and only available to domains that sign up for the beta.


Stay up to date with G Suite launches
Labels: , ,

This announcement was made at Google Cloud Next ‘19 in San Francisco. Check out Next OnAir to tune into the livestream or watch session recordings following the event.
What’s changing Security sandbox for Gmail (beta) detects the presence of previously unknown malware in attachments by virtually "executing" them in a private, secure sandbox environment, and analyzing the side effects on the operating system to determine malicious behavior.

Email attachments are detonated within a sandbox in the exact same way as they would if an actual user had clicked on it. This is done in a matter of minutes prior to the delivery of the email, and provides users with an extra layer of security. Security sandbox has been developed with a focus to provide coverage against malware propagated through malicious embedded scripts and zero day threats. The security sandbox for Gmail beta will provide:

  • Granular admin controls for rules to trigger pre-delivery deep scanning and quarantine behavior for potentially malicious emails 
  • Reporting through the G Suite security center 

Who’s impacted Settings impact admins only. If turned on, users may notice a delay of a few minutes in the delivery of affected mail due to scanning time.

Why you’d use it Security sandbox provides an additional level of anti-malware protection over and above conventional detection. By virtually opening an attachment in a secure environment that can analyze the effects on the target operating system, it’s better able to detect ransomware, sophisticated malware propagated through embedded scripts (like files containing macros or .js files), and zero-day threats. 

How to get started 
  • Admins: Find and turn on the beta security sandbox feature at Admin console > Menu > Apps > G Suite > Gmail > Advanced settings. Use our Help Center to find more information on how to detect harmful attachments
  • End users: No action needed 



Additional details Granular admin controls 
If desired, admins will be able to set up custom rules to control which messages are tested in the security sandbox. If custom rules are not applied, all messages with attachments sent to the OU will be checked in the sandbox. Rules can be customized for each organizational unit (OU). Admins can also decide what to do with messages that have malware. Malware detected by Security Sandbox is put in the spam folder by default. You can quarantine malware attachments detected by Security Sandbox instead. Create a content compliance rule using the spam metadata attribute.


Availability Rollout details 



G Suite editions 

  • Available to G Suite Enterprise and G Suite Enterprise for Education 
  • Not available to G Suite Basic, G Suite Business, G Suite for Education, and G Suite for Nonprofits 


On/off by default? 
This feature will be OFF by default and can be customized at an OU level.


Stay up to date with G Suite launches
Labels: , , ,

This announcement was made at Google Cloud Next ‘19 in San Francisco. Check out Next OnAir to tune into the livestream or watch session recordings following the event.

What’s changing We’re launching a beta program to provide admins with even more controls for advanced anti-phishing and malware protections via the advanced safety settings in Gmail. These build on the advanced protections we announced in 2018. Admins who are part of the beta will have new controls to:

  • Place emails into a quarantine - Route emails that match phishing and malware controls to a new or existing quarantine. This will be available for new and existing controls. 
  • Protect against anomalous attachment types in emails - Identify emails with unusual attachment types and choose to automatically display a warning banner, send them to spam, or quarantine the messages. 
  • Protect your Google Groups from inbound emails spoofing your domain - Identify unauthenticated emails potentially spoofing your domain and choose to automatically display a warning banner, send them to spam, or quarantine the messages. 


In addition to the new controls, we’ll also update the interface to make it easier to see what settings you have applied and understand what actions you’re taking as a result of each control.

Who’s impacted Admins only

Why you’d use it By adding more specific controls, including the ability to quarantine potentially risky messages, we hope to enable admins to optimize protections for their organization. This will help reduce threats and increase the security of your data while making the experience as simple as possible for your users. 

How to get started 
  • Admins: Find and turn on the beta features at Admin console > Menu > Apps > G Suite > Gmail > Safety. You’ll find new options to turn on anomalous attachment and groups spoofing protections, and see the quarantine option available for all controls. Use our Help Center to learn more about how to enhance phishing and malware protection
  • End users: No action needed 


Additional details Place emails into a quarantine 

All the advanced safety settings for Gmail now let you quarantine emails more easily. Choose to move any email that meets certain criteria to a pre-existing quarantine, or create a new quarantine for such messages. Use our Help Center to find out more about email quarantines.



Protect against anomalous attachment types in emails 

Less common file types as email attachments are often used to spread malware. However, different domains might have legitimate uses for uncommon file types. Therefore we’re giving admins more control over how to handle emails with these files attached.

What is identified as an anomalous attachment will be automatically customized for each domain. An intelligent algorithm determines which file types your domain commonly receives and will model the detection based on that. For example, a specific file type may be commonly used on Domain A, but not on Domain B. If both domains had the "Anomalous Attachment" setting enabled, an email with this file type attached would be flagged for Domain B, but not Domain A.

You can see which file types are filtered for your domain by going to the security center’s suspicious attachments chart, filtering by "Anomalous Attachments" and then looking at "Attachment Extensions" (available to G Suite Enterprise and Enterprise for Education domains only).

Admins will be able to:

  • Turn the uncommon attachment type detection on or off. 
  • If turned on, choose whether to keep relevant emails in the user’s inbox with a warning banner displayed, send emails to spam automatically, or move emails to quarantine. 
  • While we expect the anomalous attachment customization described above to work well, if needed admins can whitelist specific uncommon file types they don’t want identified. 

Admin controls for unusual attachment types 


Protect your Groups from inbound emails spoofing your domain

External senders can spoof emails to appear as if they come from your domain, using the same protocols that enable many legitimate systems to send email. This setting extends your options to control potential spoofing emails by preventing spoofed messages from posting to Google Groups on your domain. Use our Help Center to find out more about spoofing. Admins in the beta will be able to:

  • Turn the Groups spoofing protection on or off. 
  • If turned on, choose whether to keep relevant emails in the user’s inbox with a warning banner displayed, send emails to spam automatically, or move emails to quarantine (if available). 
  • Choose whether to apply the settings only to Private Groups (groups with specifically limited membership or intended for organization members only) or All Groups (Private Groups + ones without restricted membership) 

Admin controls for inbound email spoofing protections 

Availability Rollout details 



G Suite editions
Controls are available to all G Suite editions. Chart to view affected emails available is part of the security center and so is available to G Suite Enterprise edition only.

On/off by default?
This feature will be OFF by default.

Stay up to date with G Suite launches
Labels: , , ,

What’s changingTo help you find more information about someone you are interacting with on your mobile phone, you can now simply tap on their profile picture in Conversation View on Gmail on iOS to see their contact information in more detail. You’ll be able to see information such as:

  • Their email address
  • Their phone number
  • Interactions such as emails and Calendar invitations

Who’s impactedEnd users
Why you’d use itGmail iOS recently launched a brand new mobile redesign, which provided Gmail users with a new look and feel to help you get things done faster. This new redesign also highlights the importance of avatars, and how many users use these to find more information about people they are interacting with.

How to get started
  • Admins: No action required.
  • End users: In Conversation View on Gmail on iOS, simply tap on someone’s profile picture to see their contact information in more detail.

Additional detailsIf your organization enters information such as office location and reporting chain in users’ profiles, you’ll also be able to see this information when you click on their profile picture.

Pro Tip: if you are trying to find an upcoming meeting with someone in your organization, the Interactions tab will show you upcoming Calendar events too.

AvailabilityRollout details

  • Rapid Release domains: Extended rollout (potentially longer than 15 days for feature visibility) starting on April 4, 2019
  • Scheduled Release domains: Extended rollout (potentially longer than 15 days for feature visibility) starting on April 4, 2019

G Suite editions
Available to all G Suite editions

On/off by default?
This feature will be ON by default.

Stay up to date with G Suite launches
Labels: , ,

What’s changing Admins will be able to see the operating system (OS) version for devices with basic mobile management. Previously, this information was only available for devices with advanced mobile management.

Who’s impacted Admins only

Why you’d use it OS version is an important piece of information for assessing device security. This is because devices with older OS versions may not receive all security patches and can be more prone to threats. With visibility into the OS versions used by more devices in your organization, you can better understand potential security vulnerabilities and take actions to make sure devices with access to corporate data are using OS versions you see as appropriate.

How to get started 
  • Admins: To see OS version for basic devices, go to Admin console > Device Management > Devices
  • End users: No action needed. 


Additional details Admins will be able to see OS information in several places:

  1. On the devices list page (Admin console > Device Management > Devices) in the OS column. Previously this would have been blank for basic devices. On this page, admins will be able to filter devices with a specific OS to find devices with specific vulnerabilities or see what impact an OS update policy may have. 
  2. In the device detail page for each device. 
  3. In the audit logs at Admin console > Reports > Devices. Note that this is only available to G Suite Business, G Suite Enterprise, and G Suite Enterprise for Education domains. 


See and filter by OS version in the devices list view 

Helpful links Help Center: Set up basic mobile device management 

Availability Rollout details 

  • Rapid Release domains: Extended rollout (potentially longer than 15 days for feature visibility) starting on April 4, 2019. 
  • Scheduled Release domains: Extended rollout (potentially longer than 15 days for feature visibility) starting on April 4, 2019. 

G Suite editions 
Available to all G Suite editions.

On/off by default? 
This feature will be ON by default.

Stay up to date with G Suite launches
Labels: , , ,