Chrome update addresses seven high-severity vulnerabilities computing.co.uk - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from computing.co.uk Daily Mail and Mail on Sunday newspapers.
Google patches yet another Chrome zero-day, tight-lipped about details Thursday, 22 April 2021 06:47 Google patches yet another Chrome zero-day, tight-lipped about details Featured Image by Clker-Free-Vector-Images from Pixabay
Search giant Google has been forced to patch yet another zero-day in its Chrome browser, the fourth this year, but the company has not provided any indicators of compromise or other details n its advisory.
In
an advisory dated 20 April (US time), the company merely said that the stable branch of Chrome had been updated for Windows, Mac and Linux. It said it was aware that exploits for this latest flaw were floating around the Internet.
Google Chrome technical program manager Srinivas Sista said that the tech giant is “aware of reports that an exploit for CVE-2021-21148 exists in the wild”. He didn’t provide any additional details about the zero-day vulnerability due to risk of further exploitation, noting that the majority of users hadn’t yet been updated with a fix.
However,
ZDNet notes that the date on which Google says the bug was reported, January 24, is just two days after Google s Threat Analysis Group reported a hacking campaign carried out by North Korean hackers against the cyber security community. It s believed this campaign may have relied on zero-day exploits in Chrome and Internet Explorer.