![]() ![]() For smaller businesses, lessons learned from these attacks can help you prepare your security strategy for any eventuality. Businesses have never been more vulnerable, and even large enterprises with substantial cybersecurity defenses can fall victim. With recent high-profile attacks targeting healthcare, finance, retail, government, manufacturing, and energy, it’s clear that the threat landscape has evolved significantly over the past few years.Īccording to projections, cybercrime is forecast to cost the global economy $10.5 trillion by 2025, reflecting a 15% increase year on year. CyberGhost VPN also helps protect your privacy on the web by hiding your IP address so cybercriminals can’t find your real location and identity.The rate at which companies – large and small alike – are experiencing cybersecurity breaches is alarming. Our VPN encrypts your data with the latest security methods to prevent hackers from gaining access to it. As the cybersecurity war continues, you need to take a few extra steps to protect your privacy and data. No software is safe from vulnerabilities and attacks, including Google Chrome. Protect Yourself from Security Breaches and Exploits If you need to update any of the other Chromium browsers, check the version to see if it’s based on Chromium build 1.127 and you’re good to go. As for Brave, the latest build that fixes the type vulnerability is 1.37.116. Check your Microsoft Edge version to make sure it’s 1.44. Both browsers update automatically and you should already have the latest version installed. This update is available for Windows, Mac, Linux, Android, and iOS and is installed automatically.īrave and Microsoft Edge users can also rejoice as of April 15 since they patched CVE-2022-1364. To patch Chrome against this flaw you need version 1.127 or later. Judging by the pattern of cybersecurity attacks, including the Lapsus$ hacks earlier this year, we are likely to see more vulnerabilities exposed by security breaches in the near future. Since it affected the JavaScript engine for all Chromium-based browsers, Google, Microsoft, and other developers rushed to fix it. The company didn’t offer much information about the flaw and how it was being exploited other than the fact it was high on the severity scale. In March, Google discovered the first Chrome V8 type confusion vulnerability of this year and labeled it CVE-2022-1096. Google patched the vulnerability on Valentine’s Day and observed the attackers making further unsuccessful attempts the days after. They were able to spy on computers through compromised browsers and steal sensitive data. The attackers used the flaw dubbed as CVE-2022-0609 to target the media, IT, cryptocurrency, and fintech sectors through suspected malware uploads. What’s even worse is that the company uncovered successful attacks coming from state-sponsored North Korean hacker groups. On February 10, Google discovered a remote code execution vulnerability that was exploited as early as January 5. Google isn’t dealing with the first zero-day exploit of 2022 Cyberattacks are likely to ramp up until all the browsers have been updated. Security patches have been rolling out for Chrome, Microsoft Edge, and other affected browsers and developers are expecting users to update within the next few weeks. Attackers can exploit the type vulnerability to view or change data. It means Chrome, Microsoft Edge, Vivaldi, Opera, Brave and other browsers that run on the Chromium codebase are vulnerable. This can result in logical errors, out-of-bounds memory access, and browser crashes. ![]() The flaw causes the program to assign a variable or an object using a certain type and then access it using a different type that is incompatible. What Is CVE-2022-1364 and How Serious Is It?ĬVE-2022-1364 is a type confusion vulnerability inside Chrome V8, which is the JavaScript engine for all Chromium-based web browsers. The company urges all Chrome and Chromium users to update their browser as soon as possible. ![]() The company announced on April 13 that “Google is aware that an exploit for CVE-2022-1364 exists in the wild” and released a stable security update on April 15.Īttackers have been exploiting the flaw labeled as CVE-2022-1364 and Google is yet to establish the full repercussions of this security breach. Google released a third security update this year to patch a major vulnerability in the Chrome browser.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |