1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Emergency Google Chrome update patches exploit abused in attacks

    From TechnologyDaily@1337:1/100 to All on Mon Sep 5 15:30:03 2022
    Emergency Google Chrome update patches exploit abused in attacks

    Date:
    Mon, 05 Sep 2022 14:24:10 +0000

    Description:
    Google Chrome patch fixes high-severity vulnerability which it says was exploited in the wild.

    FULL STORY ======================================================================

    A new update to Google Chrome has been released in response to a single high severity zero-day security vulnerability, known as CVE-2022-3075.

    Google said it was aware of reports that the vulnerability to its web browser has been exploited in the wild.

    The latest update will now fully roll out for all Chrome desktop users as
    part of the Stable Desktop channel, to all those on Windows, Linux, and Macs. Am I protected?

    You can check that you're fully updated by opening up Chrome and heading to Menu > Help > About Google Chrome.

    Google said it wasnt ready to provide any more information about the vulnerability or how it works just yet, likely intended as a precaution to stop cybercriminals attempting to take advantage of it before its userbase is fully updated.

    However, the search giant did disclose that the vulnerability was reported by an anonymous security researcher.

    There have been very serious reports of instances when Google Chrome zero-day vulnerabilities have been utilized by hackers.

    According to a report by Googles Threat Analysis Group (TAG), North Korean state hackers used a zero-day, remote code execution vulnerability in Chrome to attempt to launch state-sponsored cyber attacks.

    It was over a month until the patch became available, according to the
    report.

    Google has patched six zero-day vulnerabilities in Chrome since the start of 2022, including CVE-2022-0609, CVE-2022-1096, CVE-2022-1364, CVE-2022-2294, and CVE-2022-2856.

    This type of vulnerability could also impact users of browsers based on Google's open-source Chromium software, such as Microsoft Edge , Opera, or Samsung internet and it would be in their best interests to ensure their browsers are updated. READ MORE:

    Some schools are restricting Google Chrome usage over security concerns



    Google Chrome is cracking down on annoying notifications



    Our guide to the best endpoint protection services

    Unfortunately for consumers everywhere, Google Chrome remains a common endpoint that criminals use to compromise users.

    According to recent research from McAfee, over 1.4 million users had
    malicious Google Chrome extensions inside their browsers , which modify the victim's cookies whenever they visit online retailers in an attempt to net affiliate fees from their purchases. Scared your tools aren't getting the right updates when they need them? Check out our guide to the best patch management tools



    ======================================================================
    Link to news story: https://www.techradar.com/news/emergency-google-chrome-update-patches-exploit- abused-in-attacks/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)