Security News > 2021 > June > Google Confirms Sixth Zero-Day Chrome Attack in 2021
Google's ongoing struggles with in-the-wild zero-day attacks against its flagship Chrome browser isn't going away anytime soon.
For the sixth time this year, the search giant shipped a Chrome point-update to fix code execution holes that the company says is already being exploited by malicious hackers.
Google rated the flaw as "High-risk" and has started pushing the latest patch to users via the browser's automatic-updating mechanism.
Google did not provide any additional details on the attacks, except to say it was reported anonymously two days ago, on June 15, 2021.
In addition to the zero-day being exploited, Google also patched three separate memory corruption vulnerabilities in WebAudio, TabGroups and Sharing.
It's been a record year for zero-day attacks with Google patching six such bugs in the Chrome browser.
News URL
Related news
- Google fixes ninth Chrome zero-day exploited in attacks this year (source)
- Google fixes ninth Chrome zero-day tagged as exploited this year (source)
- Week in review: PostgreSQL databases under attack, new Chrome zero-day actively exploited (source)
- Google tags a tenth Chrome zero-day as exploited this year (source)
- Microsoft fixes 6 zero-days under active attack (source)
- Google raps Iran's APT42 for raining down spear-phishing attacks (source)
- Google to Remove App that Made Google Pixel Devices Vulnerable to Attacks (source)
- Google Fixes High-Severity Chrome Flaw Actively Exploited in the Wild (source)
- New Chrome zero-day actively exploited, patch quickly! (CVE-2024-7971) (source)
- New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data (source)