If you are using Google Chrome, this post is for you! And, it requires immediate action!!
Update Chrome browser right now!! and save your OS. Google identified a “Zero-Day” vulnerability that could directly throw in and run malicious code impulsively into your operating system. Google named the threat as “Zero-day” vulnerability because the malefic works of hackers are executed in zero time of a day, that is as soon the system faces the attack it could cause the whole damage to the system before the fixes to the bug being discovered.
The bug is fixed in the new updated version of Chrome 72.0.3626.121. Kindly do update Chrome browser at once you see this post to save your system from high damage.
“Also, seriously, update your Chrome installs… like right this minute.” tweeted Google chrome’s the very famous security researcher Justin Schuh.
There seems to be a security bug called as High CVE-2019-5786, which is under a category of Use-after-free in FileReader as reported by Clement Lecigne of Google’s Threat Analysis Group. Google Chrome‘s security system has identified and amended the same in the new updated version.
The security errand identified is related to an internal memory management problem in Google Chrome’s FileReader which gives hackers the instant access and a viable chance to infuse an executable file and run the malicious set of programs that could exploit the operating system. The FileReader is a type of an embedded program that is used in every browser which would grant access to web apps in gathering the data related to the contents of concerned user’s local files in the drive.
The security researchers at Google and Microsoft have identified that the hijackers are using an integration of a patched type of Chrome vulnerability and an unpatched form of Windows vulnerability to exploit the systems running in Windows 7 operating systems.
How to check your chrome’s version?
The latest version of Chrome with security patched feature is 72.0.3626.121 for Windows, Mac, and Linux operating systems. It has been released at the wake of this March 2019. In order to verify your current version of the browser, do type chrome://settings/help right away in the address bar. As soon you click the enter button, you can easily see the current version number the browser is running. Or else by just fetching that help page would establish an automatic trigger to do a version update check.
Google Chrome would instantly direct you to restart the browser once it is done.
Double Trouble for Windows 7 users!
The Windows 7 users are more vulnerable to the second kind of attack it is termed as “two zero-day” vulnerability by Google. The evolving two zero-day threat is reported to infect the systems that which run on windows 7 32-bit configuration.
If you do use an older version of the Windows platform, it is highly advised to take a switch to the latest version of the OS or else make sure you do the installation of the required security patches.
Do you hunt a vulnerability?
If you are an expert in finding a threat or vulnerability in Google Chrome then Vulnerability Rewards Program is for you!. This is a specialized gate which is always open for everyone who finds a bug in google chrome’s security systems. You report a bug and reap a cash award! and make Google Chrome Browser a better place to Surf!!. Happy Chrome Browsing!