Google, Apple squash exploitable browser bugs theregister.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from theregister.com Daily Mail and Mail on Sunday newspapers.
Google’s latest Chrome 88 update fixes a security issue being actively exploited in the wild
February 06, 2021
×
Google has released the latest update for its Chrome Browser version 88.0.4324.150 which fixes a security issue that is being actively exploited in the wild.
The update is being rolled out for Windows, Mac and Linux over the coming days/weeks, Google said.
The tech giant has fixed a security bug with a high severity rating as part of the update. It did not provide much details about the vulnerability dubbed CVE-2021-21148.
“Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed,” it said.
Just recently, Google’s Threat Analysis Group (TAG) said North Korean hackers used multiple profiles on various social networks, such as Twitter, LinkedIn, Telegram, Discord, and Keybase, to reach out to security researchers using fake personas.
In a blog post by Adam Weidemann from Google’s Threat Analysis Group (TAG), he said: “In order to build credibility and connect with security researchers, the actors established a research blog and multiple Twitter profiles to interact with potential targets. They’ve used these Twitter profiles for posting links to their blog, posting videos of their claimed exploits and for amplifying and retweeting posts from other accounts that they control.”
Google s Threat Analysis Group uncovers an ongoing campaign targeting security researchers neowin.net - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from neowin.net Daily Mail and Mail on Sunday newspapers.
minute read
Share this article:
Hackers masquerade as security researchers to befriend analysts and eventually infect fully patched systems at multiple firms with a malicious backdoor.
Hackers linked to North Korea are targeting security researchers with an elaborate social-engineering campaign that sets up trusted relationships with them and then infects their organizations’ systems with custom backdoor malware.
That’s according to Google’s Threat Analysis Group (TAG), which issued a warning late Monday about a campaign it has tracked over the last several months that uses various means to interact with and attack professionals working on vulnerability research and development at multiple organizations.