Update Google Chrome to Protect your Business from this Zero Day Threat
Google’s Chrome browser, used by over three billion users worldwide, recently encountered its first Zero-Day exploit of the year. In response, Google has issued an urgent update to address the discovered vulnerability, CVE-2023-2033, which affects Chrome on Windows, Mac, and Linux platforms. The exploit, identified as a “Type Confusion in V8,” occurs when an incompatible method accesses a resource initialised by a different method, potentially exposing the browser’s memory to unauthorised access. The vulnerability was discovered by Google’s Threat Analysis Group, but unfortunately, a patch was not developed before the first exploits began.
To protect your browser, it is crucial to update Chrome immediately. To do so, click the overflow menu bar (three vertical dots) in the browser’s top right corner, then navigate to Help > About Google Chrome. This action will force Chrome to check for browser updates. After the update is complete, be sure to restart the browser to ensure full protection. Google has made significant progress in patching Chrome vulnerabilities this year, as evidenced by the fact that it took until April for the first Zero-Day exploit to emerge. In comparison, Chrome experienced 15 Zero-Day exploits in 2021 and nine in 2022.
Google’s success in reducing vulnerabilities can be attributed to its robust reporting system and high bounties paid for the discovery of security issues, incentivising researchers to disclose their findings to Google rather than hackers. In 2022, Google paid over $12 million in bug bounties, including a record single bounty of $605,000 for a critical exploit. Despite this progress, Chrome’s dominance in the browser market means it remains a prime target for attackers. Google warned in March 2022 that Zero-Day attacks would likely continue to rise, so users must stay vigilant and promptly apply updates to ensure the security of their browsing experience.
To ensure that your business machines are protected from Zero Day Threats such as this one, ensure that you are protected with Endpoint Detection & Response, One2Call’s EDR solution uses artifical inteligence to proactivly monitor your endpoints for unusual or malicious activity to prevent them from being targeted by previously unknown threats. Click the link below to find out more about Endpoint Detection & Response, or contact us to discuss your business Cyber Security.
Latest News Stories
How did the MOVEit Cyber Security Breach Target so many Business?
We have recently posted a few article about the MOVEit Cyber Security Breach which has effected thousands of customers, and hundres of thousands of individuals around the world, including; British Airways, Transport for London, the BBC, Boots, Minnesota Department of...
Reddit Hackers Threaten to Release Stolen Data Unless API Changes Reversed
The BlackCat ransomware criminal group, also known by the alias ALPHV, has demanded a $4.5 million ransom and the revocation of planned API pricing changes from Reddit. The group has warned that failure to meet their demands will result in the publication of 80GB of...
U.S. Energy Department and Other Agencies Compromised in MOVEit Cyber Attack
Several U.S. government agencies, including the U.S. Energy Department, have announced that they are among the businesses who have fallen victim to the MOVEit Cyber Attack. Officials reported on Thursday June 15th that data was compromised at two entities within the...
Our Customers
Testimonials
Mark, Modern Creatives
Local, extremely helpful, prompt. Quick to react when there have been issues (not caused by One2call). Have recommended in the past to clients.
Pete Richardson, DALP
Always provide very prompt support. Excellent.
Dave, Kier
Always willing to help/go the extra mile.