Security News > 2021 > March > Another Chrome zero-day exploit – so get that update done!
We've never quite understood Google's mention of rolling out updates over "Days/weeks" in an update bulletin that includes 47 security fixes, of which eight have a severity level of High.
We suggest going out manually and making sure you've got your Chrome update already, without waiting for those day/weeks to elapse until the update finds you.
If you're using a Chromium-based product from another browser maker, check with that vendor for information about whether their build is affected by this bug, and if so whether the patch is downloadable yet.
We don't know what form these particular bugs took, given that the Chromium team's discussion of the bugs in this release still seems to be in "Keep-it-private-to-stave-off-the-crooks-a-while-longer" mode.
If you aren't up-to-date, use the Update Google Chrome option on Windows or Mac to force an update.
If you're on Linux and your version of Chrome or Chromium is provided by your distro maker, check back with your distro for update details.
News URL
https://nakedsecurity.sophos.com/2021/03/04/another-chrome-zero-day-exploit-so-get-that-update-done/
Related news
- Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks (source)
- XE Hacker Group Exploits VeraCore Zero-Day to Deploy Persistent Web Shells (source)
- ⚡ THN Weekly Recap: Alerts on Zero-Day Exploits, AI Breaches, and Crypto Heists (source)
- APTs have been using zero-day Windows shortcut exploit for eight years (ZDI-CAN-25373) (source)
- Google fixes Chrome zero-day exploited in espionage campaign (source)
- Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) (source)
- EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware (source)
- Mozilla Patches Critical Firefox Bug Similar to Chrome’s Recent Zero-Day Vulnerability (source)
- After Chrome patches zero-day used to target Russians, Firefox splats similar bug (source)