Update Chrome: Google patches critical update (3rd this week)

Google has been having quite a week because it just patched its third zero-day vulnerability in Chrome within seven days. The latest culprit? CVE-2024-4947. If you think that sounds technical, you’re right, but stick with me. This affects almost everyone using the internet, so it’s worth unpacking TL;DR Version: CVE-2024-4947 is a zero-day vulnerability in Chrome that’s being actively exploited. This makes it the third vulnerability that has been fixed in Chrome within the past week. In layman’s terms, zero-day means the folks exploiting it found the vulnerability before Google could patch it. Yikes. The Official Statement from Google Google dropped this bombshell in its official blog: “The Stable channel has been updated to 117.0.5938.132 for Windows, Mac, and Linux, which will roll out over the coming days/weeks.” Yup, they’re basically saying update your browser ASAP to avoid falling prey to these exploits because they are, in fact, being used on the greater public right now. The Chain of Events The first zero-day, CVE-2024-4868, was also raised a ruckus earlier in the week followed closely by CVE-2024-4946. And now, CVE-2024-4947 completes this hat-trick of headaches for Google’s security team. Dive Deeper: What is CVE-2024-4947? According to Bleeping Computer, this Zero-day revolves around an exploit discovered in Chrome’s Rendering Engine, which is a pretty key part of the browser. Image: KnowTechie This exploit has been used actively in the wild, meaning bad actors have been taking advantage of it while the rest of us were blissfully unaware. What is CVE-2024-4947 –…Update Chrome: Google patches critical update (3rd this week)

Leave a Reply

Your email address will not be published. Required fields are marked *