Beware! 2 bn Google Chrome users warned of HUGE threat; here's how to stay safe

    Google Chrome zero day hack: Chrome users have just got some really bad news. Google, in its blog said, "Google is aware that an exploit for CVE-2021-37973 exists in the wild." This is a zero-day exploit and what it refers to is the fact that cybercriminals were able to exploit it before Google found out.
    By HT TECH
    | Updated on Sep 27 2021, 08:23 AM IST
    Google Chrome zero day hack: Google Chrome users on Windows, macOS or Linux are under hacking threat. REUTERS/Dado Ruvic/Illustration
    Google Chrome zero day hack: Google Chrome users on Windows, macOS or Linux are under hacking threat. REUTERS/Dado Ruvic/Illustration (REUTERS)
    Google Chrome zero day hack: Google Chrome users on Windows, macOS or Linux are under hacking threat. REUTERS/Dado Ruvic/Illustration
    Google Chrome zero day hack: Google Chrome users on Windows, macOS or Linux are under hacking threat. REUTERS/Dado Ruvic/Illustration (REUTERS)

    Over 2 billion Google Chrome users have been warned to update their browsers after a critical hack was discovered. This attack puts almost all Google Chrome users under threat of being hacked. Google itself has confirmed the hack in a blog post after a new zero-day exploit was found in Google Chrome. We had earlier issued a warning about a zero-day exploit dubbed CVE-2021-30563 and now another one has surfaced and it is just as dangerous if not more. This one is called CVE-2021-37973. In its blog, Google said, "Google is aware that an exploit for CVE-2021-37973 exists in the wild."

    This is a zero-day exploit and what it refers to is the fact that cybercriminals were able to exploit it before Google found out and before it could release a patch for Google Chrome to stop them. Also, considering that there are as many as 2.65 bn Google Chrome users, the scale of the problem can well be imagined.

    The big takeaways from the Google blog about the Google Chrome hack is that it was found by Google employees and not any third party. And, most importantly, that a Google Chrome upgrade is essential for all users and the sooner they do it, the better. Google also provided its threat perception or ranking of the exploit.

    Google revealed threat ranking on its blog:

    "High CVE-2021-37973 : Use after free in Portals. Reported by Clement Lecigne from Google TAG, with technical assistance from Sergei Glazunov and Mark Brand from Google Project Zero on 2021-09-21."

    It also added a feel-good part, "We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel."

    More importantly, for the 2 billion Google Chrome users, Google has released a fix for everyone.

    How to check if your Google Chrome browser is protected:

    * Go to Settings

    * Help

    * About Google Chrome

    * Check your Google Chrome version

    * Those with Google Chrome version 94.0.4606.61 or more are safe

    * If you do not have this version, then you can do absolutely nothing about it but wait.

    Or else switch off your machine.

    In its note at the bottom of the blog, Google told users that it will keep the details secret till everyone gets the upgrade. It said, "Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed."

    One more thing before you go. After carrying out the Google Chrome upgrade, do restart the machine again to get everything in order. Doing this is as critical as the upgrade itself.

    Follow HT Tech for the latest tech news and reviews , also keep up with us on Twitter, Facebook, and Instagram. For our latest videos, subscribe to our YouTube channel.

    First Published Date: 26 Sep, 09:09 PM IST
    NEXT ARTICLE BEGINS
    keep up with tech