Govt cybersecurity agency CERT-In warns over hacker attack if Google Chrome is not upgraded in the user's system
Guwahati: Indian-Computer Emergency Response Team (CERT-In) the government’s cybersecurity agency, has now warned Google Chrome users in the country to upgrade to the new Chrome browser immediately. This is to avoid hackers and prevent them from accessing their machines remotely.
The new update of Google Chrome (Chrome 84.0.4147.89) has 38 fixes and new improvements against vulnerabilities. In their latest advisory, CERT-In warned, “Multiple vulnerabilities have been reported in Google Chrome that could allow a remote attacker to execute arbitrary code, bypass security restrictions, access sensitive information, contact spoofing attack and denial of service (DoS) attack on the targeted system.”
These “new vulnerabilities” were noticed by exterior safety researchers. The researchers believe that these problems exist due to heap buffer overflow, sort Confusion, side-channel data leakage, use after free, etc. The CERT-In advisory also stated that a remote attacker can very easily exploit these vulnerabilities by creating a specially crafted webpage in the targeted system. The only way to protect the systems from such an attack is to upgrade to Chrome 84.0.4147.89.
Recently, a newfound adware and spyware effort attacked many customers with its 32 million downloads of extensions to Chrome’s net browser.
Meanwhile, Google had also appreciated the efforts of the safety researchers during the development cycle so as to prevent security bugs from hitting millions of users. More than 70 of the malicious add-ons were removed after being alerted by the researchers.