Security News > 2021 > March > Another Chrome zero-day exploit – so get that update done!
We've never quite understood Google's mention of rolling out updates over "Days/weeks" in an update bulletin that includes 47 security fixes, of which eight have a severity level of High.
We suggest going out manually and making sure you've got your Chrome update already, without waiting for those day/weeks to elapse until the update finds you.
If you're using a Chromium-based product from another browser maker, check with that vendor for information about whether their build is affected by this bug, and if so whether the patch is downloadable yet.
We don't know what form these particular bugs took, given that the Chromium team's discussion of the bugs in this release still seems to be in "Keep-it-private-to-stave-off-the-crooks-a-while-longer" mode.
If you aren't up-to-date, use the Update Google Chrome option on Windows or Mac to force an update.
If you're on Linux and your version of Chrome or Chromium is provided by your distro maker, check back with your distro for update details.
News URL
https://nakedsecurity.sophos.com/2021/03/04/another-chrome-zero-day-exploit-so-get-that-update-done/
Related news
- Lazarus hackers used fake DeFi game to exploit Google Chrome zero-day (source)
- North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware (source)
- Hackers exploit 52 zero-days on the first day of Pwn2Own Ireland (source)
- Lazarus Group Exploits Google Chrome Vulnerability to Control Infected Devices (source)
- Botnet exploits GeoVision zero-day to install Mirai malware (source)
- Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit (source)
- Chinese hackers exploit Fortinet VPN zero-day to steal credentials (source)