Earlier this month, Chrome users learned about a zero-day Chrome exploit that North Korean state-sponsored hackers were able to exploit for over a month before a fix was provided in mid-February. In that scenario, the hackers were able to dupe the unsuspecting using hacked actual websites and ones they’d faked by securing identical domain names.
Now, for the second time in 2022, there is another Chrome zero-day, and Google is releasing yet another patch.
ALSO READ: EU’s latest press release asks top social messaging apps to provide interoperability
The zero-day exploit in Chrome was fixed by Google in Chrome’s latest version
Friday saw the release of a new stable channel desktop Chrome update for Windows, Mac, and Linux. Google states in a Chrome Releases Blog post (via Bleeping Computer) that the version contains one security update, for zero-day attack CVE-2022-1096, which was initially disclosed to the company by an anonymous tip on March 23.
Join RM Update on Telegram to get more content like this!
The zero-day vulnerability is a bug in Chrome’s JavaScript engine that hackers may exploit to inject malicious code into your browser. It’s exactly the type of thing that malicious operators like employing against their victims. Google won’t reveal any more information other than acknowledging that attacks utilizing this zero-day vulnerability have already occurred.
The organization noted that some information is being withheld from the public as a precautionary measure, noting that complete details on how the exploit worked would not be made public until the majority of customers have the repair. Fortunately, Google appears to have been able to provide a patch before the attack became publicly known. Users should install Chrome 99.0.4844.84 as soon as possible.
“If you like this article follow us on Google News, Facebook, Telegram, and Twitter. We will keep bringing you such articles.”
