Google Chrome is updated to fix zero-day flaw; hackers were already exploiting the loophole

Last Thursday (24), the Google released an emergency update for the browser Google Chrome🇧🇷 A zero-day flaw that was already being exploited by hackers was discovered.

As a result, the company was forced to work on a fix as quickly as possible. The search giant did not give further details about the security problem, precisely to prevent more hackers from exploiting the vulnerability.

Read too
How Google Chrome’s Incognito Mode Works
How to Clear Google Chrome Autofill Data

Vulnerability is already being exploited by hackers

For Google, this security breach is considered of enormous gravity. She was identified as CVE-2022-4135🇧🇷 Briefly, the failure consists of a heap overflow on the graphics chip. This occurs when a part of memory is allocated in the heap🇧🇷 Hence the data is written without any verification being done. With this, there may be the execution of malicious instructions.

The zero-day flaw was discovered by one of the members of Google’s Threat Analysis group. His name is Clement Lecigne🇧🇷 In an article published on the 24th, Google said that it already knows that hackers found ways to exploit security hole🇧🇷 See what the company said:

🇧🇷Google is aware that there is an exploit for CVE-2022-4135 out there. Access to bug details and links may be kept restricted until the majority of users are updated with a fix. We’ll also keep the restrictions in place if the bug exists in a third-party library that other projects similarly depend on but haven’t fixed yet.🇧🇷

Therefore, the quickest solution is to update the browser to its latest version🇧🇷 Below you can see the version number for Windows and macOS:

  • Windows: version 107.0.5304.121/122;
  • macOS: version 107.0.5304.122.

How to update Google Chrome?

Updating your browser is one of the easiest and fastest things out there. Just follow the steps below:

  • Step 1. Access browser settings by clicking on the three dots located in the upper right corner of the window. In the submenu that opens, click on “settings🇧🇷
  • Step 2. On the next screen, click on “About Google Chrome🇧🇷 it is the last option in the column on the left side;
  • Step 3. By clicking there, the browser will automatically fetch and download the latest version;
  • step 4🇧🇷 Once the download is complete, simply restart your browser to apply the emergency update.

Google Chrome has already had several other security flaws

Google Chrome is one of the most used browsers in the world. Therefore, it is natural that it is highly targeted by hackers. Precisely why, in 2022 alone, several zero-day flaws have already been discovered in Chrome.

The flaw we are referring to in this article is the eighth of its kind, only in 2022. Below you can see a list of all Google Chrome zero-day flaws and the months in which it occurred:

  • CVE-2022-3723 – October
  • CVE-2022-3075 – September
  • CVE-2022-2856 – August
  • CVE-2022-2294 – July
  • CVE-2022-1364 – April
  • CVE-2022-1096 – March
  • CVE-2022-0609 – February

The same thing happened in 2021. Last year, three day-one glitches were released in different months. All these flaws were already being exploited by hackers and needed to be fixed on an emergency basis.

So, it goes without saying that the best way to stay safe from these flaws is to keep all your programs up to date.

Source: Bleeping Computer

Source link

About Admin

Check Also

launch is used to apply blows

With the popularity of Hogwarts Legacy on gaming platforms, malicious agents are already taking advantage …

Leave a Reply

Your email address will not be published. Required fields are marked *