Update Google Chrome to Protect your Business from this Zero Day Threat
Google’s Chrome browser, used by over three billion users worldwide, recently encountered its first Zero-Day exploit of the year. In response, Google has issued an urgent update to address the discovered vulnerability, CVE-2023-2033, which affects Chrome on Windows, Mac, and Linux platforms. The exploit, identified as a “Type Confusion in V8,” occurs when an incompatible method accesses a resource initialised by a different method, potentially exposing the browser’s memory to unauthorised access. The vulnerability was discovered by Google’s Threat Analysis Group, but unfortunately, a patch was not developed before the first exploits began.
To protect your browser, it is crucial to update Chrome immediately. To do so, click the overflow menu bar (three vertical dots) in the browser’s top right corner, then navigate to Help > About Google Chrome. This action will force Chrome to check for browser updates. After the update is complete, be sure to restart the browser to ensure full protection. Google has made significant progress in patching Chrome vulnerabilities this year, as evidenced by the fact that it took until April for the first Zero-Day exploit to emerge. In comparison, Chrome experienced 15 Zero-Day exploits in 2021 and nine in 2022.
Google’s success in reducing vulnerabilities can be attributed to its robust reporting system and high bounties paid for the discovery of security issues, incentivising researchers to disclose their findings to Google rather than hackers. In 2022, Google paid over $12 million in bug bounties, including a record single bounty of $605,000 for a critical exploit. Despite this progress, Chrome’s dominance in the browser market means it remains a prime target for attackers. Google warned in March 2022 that Zero-Day attacks would likely continue to rise, so users must stay vigilant and promptly apply updates to ensure the security of their browsing experience.
To ensure that your business machines are protected from Zero Day Threats such as this one, ensure that you are protected with Endpoint Detection & Response, One2Call’s EDR solution uses artifical inteligence to proactivly monitor your endpoints for unusual or malicious activity to prevent them from being targeted by previously unknown threats. Click the link below to find out more about Endpoint Detection & Response, or contact us to discuss your business Cyber Security.
Latest News Stories
How ITDR can help protect you from the latest Cyber Security Threats
Attacks targeting the identity layer have become a prominent cyber security threat, as attackers adapt to the consolidated corporate IT world of Access Management. Duo's algorithm research team aligns with Gartner's Identity Threat Detection and Response (ITDR) to...
Protect yourself from Stealthy Cyber Attacks
State-sponsored hackers from China have developed sophisticated techniques that allow them to infiltrate government and business networks and spy on victims for long periods without being detected by common cybersecurity tools, according to researchers at Google's...
Charities are being targeted with Phishing and Ransomware Attacks
A recent threat report released in January 2023 highlights the susceptibility of the charity sector to cyber attacks, the tactics employed by cyber criminals, and the optimal strategies for charities to safeguard themselves. The ramifications of cyber attacks on...
Our Customers
Testimonials
Annette, Blastcom
Ryan was very helpful and sorted out the problem for me.
Craig Bowden, Mortgage Advice Hub
Very prompt and excellent service from the whole team!
Pauline, Khepera Business Park
Tenant is very satisfied. They were impressed by Adam’s knowledge and helpfulness.