Global, November 12, 2024 —Urgent Chrome update required to patch severe vulnerabilities, preventing data theft and system compromise risks.
Users are urged to update Google Chrome immediately following revelations of two critical vulnerabilities, CVE-2024-10826 and CVE-2024-10827, which leave systems at risk of hacks and data breaches.
Discovered by CERT-In, these flaws exploit a “use-after-free” issue in Chrome’s Family Experiences and Serial components, affecting Windows, macOS, and Linux versions before 130.0.6723.116/117. Without the latest update, users are vulnerable to data theft, arbitrary code execution, and even complete system crashes.
Cybersecurity expert Ashish Khaitan explained the urgency:
These vulnerabilities give attackers an entry point to execute malicious code remotely. Users must update immediately to shield themselves from possible exploitation.
Attackers can activate the flaw by tricking users into visiting crafted websites, potentially seizing control of affected systems. The Family Experiences component in Chrome, intended for managing family accounts, and the Serial component, which handles device communication, are both impacted.
This situation is especially concerning because the vulnerabilities could lead to denial-of-service attacks or full control over users’ sensitive data. As Axel Vaiselbuh, a researcher, noted:
These types of vulnerabilities can quickly snowball into far-reaching security risks if left unpatched.
Google has since released an update to address these issues, available for all major operating systems. Users on Linux should update to version 130.0.6723.116, while Windows and macOS users should move to version 130.0.6723.116 or 117. The company has credited anonymous security researchers for flagging these vulnerabilities in September and October 2024.
Other News At VPNRanks
- Newpark Battles Ransomware as Energy Sector Faces Surge
- Massive WordPress Flaw Exposes Over 4M Sites to Attacks
- AI on YouTube: Remix Your Music into Any Genre
- Critical Flaws in Palo Alto Tools Spark Active Exploits
- GAO Uncovers Critical Cybersecurity Gaps in U.S. Healthcare
- Ford Breach Exposes Data of 44K Customers Globally
- 100 Million Health Records Leaked, Dark Web ‘Goldmine’ Exposed
- Amazon Employee Data Breach Exposes Work Locations & Contacts
- Intesa Slammed by Watchdog for Downplaying Data Breach
Hey, wait!
Stay informed on the latest privacy updates, cybersecurity insights, and internet freedom news by following VPNRanks news daily! As your primary resource for critical updates in online security, we ensure you’re always in the know. Make VPNRanks your go-to guide for safeguarding your digital life!
