Security News > 2021 > March > Another Chrome zero-day exploit – so get that update done!
We've never quite understood Google's mention of rolling out updates over "Days/weeks" in an update bulletin that includes 47 security fixes, of which eight have a severity level of High.
We suggest going out manually and making sure you've got your Chrome update already, without waiting for those day/weeks to elapse until the update finds you.
If you're using a Chromium-based product from another browser maker, check with that vendor for information about whether their build is affected by this bug, and if so whether the patch is downloadable yet.
We don't know what form these particular bugs took, given that the Chromium team's discussion of the bugs in this release still seems to be in "Keep-it-private-to-stave-off-the-crooks-a-while-longer" mode.
If you aren't up-to-date, use the Update Google Chrome option on Windows or Mac to force an update.
If you're on Linux and your version of Chrome or Chromium is provided by your distro maker, check back with your distro for update details.
News URL
https://nakedsecurity.sophos.com/2021/03/04/another-chrome-zero-day-exploit-so-get-that-update-done/
Related news
- RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks (source)
- Mitel MiCollab zero-day flaw gets proof-of-concept exploit (source)
- Mitel MiCollab zero-day and PoC exploit unveiled (source)
- New Mirai botnet targets industrial routers with zero-day exploits (source)
- Zero-day exploits plague Ivanti Connect Secure appliances for second year running (source)
- Nominet probes network intrusion linked to Ivanti zero-day exploit (source)