It’s the first of the year. Google regularly identifies zero-day flaws, hitherto unsuspected security breaches, in its Chrome browser. This time, it is a malfunction detected by Clément Lecigne, a member of Google’s threat analysis group.
This division of the group has as its main objective the defense of the company against attacks from the States. In particular, it prevents attempts to install spyware on the devices of high-risk people, such as journalists, politicians or dissidents from around the world, says the US site Bleeping Computer.
A gap already exploited by hackers
Although Google remains discreet on the subject, the flaw in question comes from a type confusion in the V8 JavaScript engine, details the specialized site 01net. This bug, applicable on Windows, Mac or Linux, can cause the browser to crash, but also the execution of arbitrary code on the compromised machine.
Google simply acknowledged that hackers had already exploited this loophole. There is already a solution available. Despite the automatic installation of updates, it is recommended to force it as soon as possible to avoid any risk.
Source: BFM TV
