Linux Bugs

Google issues warning for 2 billion Chrome users

Google Chrome maintains an iron grip on web browser market share with over two billion users. Unfortunately, all of these users must be on high alert because Google just released its second urgent upgrade warning in a week.

MORE FORBESChrome’s ‘Zero Day’ Exploit Revealed, Google Pushes Urgent Upgrade

In an official blog post, Google confirmed that a new zero-day exploit was found in Chrome after anonymous information. Most security vulnerabilities are discovered and fixed before they spread in the wild, but a zero-day classification means that the vulnerability is known to hackers and is actively exploited.

Little is known about the vulnerability (CVE-2021-30554) other than that it resides in WebGL, a JavaScript API for rendering. It’s common practice for Google to keep zero day details to a minimum to give Chrome users more time to upgrade. “Google is aware that an exploit for CVE-2021-30554 exists in nature,” said Srinivas Sista, Chrome’s technical program manager.

To combat this threat, Chrome users should immediately go to Settings> Help> About Google Chrome. If your browser version on Linux, macOS, and Windows is listed as 91.0.4472.114 or higher, you are safe. Otherwise, manually check for updates and restart the browser when the update is ready. Google has also confirmed that three other “high” threats are corrected in this version of Chrome.

CVE-2021-30554 is the seventh zero-day vulnerability found in Chrome since the start of the year and the second in a week. Google generally does a good job of releasing fixes quickly, but their effectiveness is also determined by how quickly Chrome users update their browsers.

Chrome users would also be advised to be extra vigilant at this time. Speaking to BleepingComputer last week, security provider Kaspersky warned that a new group of hackers calling themselves “PuzzleMaker” had succeeded in stringing Chrome bugs to install malware on Windows systems. Microsoft itself issued an urgent security warning to Windows users about this last week.

Right now, it seems like it’s high season for Chrome hackers, so stay alert and make sure your browser and operating system security are up to date.

___

Follow Gordon on Facebook

More on Forbes

Chrome’s ‘Zero Day’ Exploit Revealed, Google Pushes Urgent Upgrade

Microsoft Confirms Six Windows 10 Zero Day Threats, Offers Fix


Source link

Leave a Reply

Your email address will not be published. Required fields are marked *