As a result of the introduction of a malicious bug, users of Google Chrome have been issued a second warning to ensure that they have the most recent version of the browser installed.
The IT giant announced earlier this week that it had found a software flaw that significantly enhances the risk of cyber attacks receiving a zero-day classification of serious severity. The phrase “zero-day” refers to the fact that the software developer is only now becoming aware of a vulnerability that has already been discovered and is being exploited by cybercriminals to access sensitive personal information.
It has been exactly one week since the CVE-2023-2136 flaw was discovered, which is a pretty good turnaround for a firm that is larger in dollar terms than numerous countries. The specifics of how the flaw is being exploited are unknown, probably because Google does not want anybody else to participate in whatever malicious activity they have observed in the wild.
The most recent version of Chrome, 112.0.5615.137/138, has fixed eight different bugs in the software. Computer users need to ensure they are running the most recent version of the programme, and updating it only takes a few seconds.
The following is an excerpt from Google’s release notes:
“The Stable and extended stable channel has been updated to 112.0.5615.137/138 for Windows and 112.0.5615.137 for Mac and 112.0.5615.165 for Linux which will roll out over the coming days/weeks,”
“Google is aware that an exploit for CVE-2023-2136 exists in the wild. We would like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.”
Even though you may have already updated Chrome once this week, it is strongly recommended that you do so again. Launching the browser, selecting Chrome from the top menu bar, and selecting About Chrome will take you to a page that will show you the components that are currently installed on your computer, as well as indicate whether or not there are any available upgrades.
It is astonishing that we made it to April without the occurrence of the first Zero-Day attack, given how well Google has patched Chrome vulnerabilities this year. Google has done an incredible job. To put this into perspective, Chrome had 15 Zero-Day exploits in 2021 but only nine in 2022, indicating that the company is making clear progress.
This advancement is also no small effort because Chrome, due to its dominant market position, has by far the largest bullseye on its back when compared to other browsers. In point of fact, Google informed its consumers that they could expect the number of Zero Day attacks to continue to climb in March 2022; nevertheless, as a direct result of the company’s efforts, they have been extremely effective in stopping the tide of attacks.
