Tag Archives: chrome

Chrome, Defender, and Firefox 0-days linked to commercial IT firm in Spain

reader comments 13 with 0 posters participating Share this story Google researchers said on Wednesday they have linked a Barcelona, Spain-based IT company to the sale of advanced software frameworks that exploit vulnerabilities in Chrome, Firefox, and Windows Defender. Variston IT bills itself as a provider of tailor-made Information security solutions, including technology for embedded… Read More: Chrome, Defender, and Firefox 0-days linked to commercial IT firm… »

Chrome patches high-severity 0-day, its 6th this year

Getty Images | NurPhoto reader comments 18 with 17 posters participating Share this story Google engineers have issued an emergency update for the Chrome browser to fix a high-severity vulnerability that can be exploited with code that’s already available in the wild. The vulnerability, which Google disclosed on Friday, is the result of “insufficient data… Read More: Chrome patches high-severity 0-day, its 6th this year »

Update Chrome now to patch actively exploited zero-day

Enlarge / It’s a good time to restart or update Chrome—if your tabs love you, they’ll come back. Getty Images reader comments 34 with 26 posters participating Share this story Google announced an update on Wednesday to the Stable channel of its Chrome browser that includes a fix for an exploit that exists in the… Read More: Update Chrome now to patch actively exploited zero-day »

Chrome “Feed” is tantalizing, but it’s not the return of Google Reader

Enlarge / Digging into bleeding-edge Chrome code has made some bloggers hopeful, but Google has been focused on its own feeds for a while now. Getty Images reader comments 25 with 24 posters participating Share this story Does Google enjoy teasing and sometimes outright torturing some of its products’ most devoted fans? It can seem… Read More: Chrome “Feed” is tantalizing, but it’s not the return of… »

Zero-day used to infect Chrome users could pose threat to Edge and Safari users, too

Enlarge (credit: Getty Images) A secretive seller of cyberattack software recently exploited a previously unknown Chrome vulnerability and two other zero-days in campaigns that covertly infected journalists and other targets with sophisticated spyware, security researchers said. CVE-2022-2294, as the vulnerability is tracked, stems from memory corruption flaws in Web Real-Time Communications, an open source project… Read More: Zero-day used to infect Chrome users could pose threat to… »

New Chrome security measure aims to curtail an entire class of Web attack

reader comments 23 with 18 posters participating Share this story For more than a decade, the Internet has remained vulnerable to a class of attacks that uses browsers as a beachhead for accessing routers and other sensitive devices on a targeted network. Now, Google is finally doing something about it. Starting in Chrome version 98,… Read More: New Chrome security measure aims to curtail an entire class… »

“Expert” hackers used 11 zerodays to infect Windows, iOS, and Android users

reader comments 39 with 32 posters participating Share this story A team of advanced hackers exploited no fewer than 11 zeroday vulnerabilities in a nine-month campaign that used compromised websites to infect fully patched devices running Windows, iOS, and Android, a Google researcher said. Using novel exploitation and obfuscation techniques, a mastery of a wide… Read More: “Expert” hackers used 11 zerodays to infect Windows, iOS, and… »

Chrome users have faced 3 security concerns over the past 24 hours

reader comments 29 with 23 posters participating Share this story Users of Google’s Chrome browser have faced three security concerns over the past 24 hours in the form of a malicious extension with more than 2 million users, a just-fixed zero-day, and new information about how malware can abuse Chrome’s sync feature to bypass firewalls.… Read More: Chrome users have faced 3 security concerns over the past… »

Malicious Chrome and Edge add-ons had a novel way to hide on 3 million devices

reader comments 6 with 5 posters participating Share this story In December, Ars reported that as many as 3 million people had been infected by Chrome and Edge browser extensions that stole personal data and redirected users to ad or phishing sites. Now, the researchers who discovered the scam have revealed the lengths the extension… Read More: Malicious Chrome and Edge add-ons had a novel way to… »

Chrome and Edge want to help with that password problem of yours

Enlarge / Please don’t do this. Getty Images reader comments 105 with 87 posters participating Share this story If you’re like lots of people, someone has probably nagged you to use a password manager and you still haven’t heeded the advice. Now, Chrome and Edge are coming to the rescue with beefed-up password management built… Read More: Chrome and Edge want to help with that password problem… »