Google has issued a warning to billions of Google Chrome users that a high level threat has surfaced and it can affect every user. Find out how to keep yourself safe.
Google has issued an urgent warning for all of the 3.2 billion Google Chrome browser users against multiple new bugs that have surfaced recently. These can be taken advantage of by hackers and they can affect Google Chrome and harm users in a variety of ways. There are 10 confirmed bugs in total and all of them have been labeled as ‘high’ threat level by Google. If you are using Google Chrome, you are at risk, no matter which platform you run it on or the antivirus software you have. But do not worry. Google is already working on a patch to contain any possibility of hacking. In the meantime, what can users do? Read on to find out.
Google Chrome bugs have affected the browser on all major platforms including Windows, Mac and Linux. Chrome has now released information about as many as 10 bugs, explaining the threat level and what they can do. However, it has refrained from sharing details about the Google Chrome bugs. In a post, it stated, “ Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed”. In essence, Google is trying to keep the users safe by not sharing the string of codes that can be misused by hackers.
Google Chrome brwser users face high level of security threat
While our knowledge of these Google Chrome bugs are limited, we do know their names and what these viruses do as shared by Google in the same post. Check out their modus operandi below. To understand them, do note that the format is as explained. First is the threat level, followed up by the name of the hack or bug, then comes its description and what it does and finally the name of the reportee and the date.
1. High CVE-2022-1305: Use after free in storage. Reported by Anonymous on 2022-01-07
2. High CVE-2022-1306: Inappropriate implementation in compositing. Reported by Sven Dysthe on 2022-02-21
3. High CVE-2022-1307: Inappropriate implementation in full screen. Reported by Irvan Kurniawan (sourc7) on 2022-03-01
4. High CVE-2022-1308: Use after free in BFCache. Reported by Samet Bekmezci @sametbekmezci on 2021-12-28
5. High CVE-2022-1309: Insufficient policy enforcement in developer tools. Reported by David Erceg on 2020-07-17
6. High CVE-2022-1310: Use after free in regular expressions. Reported by Brendon Tiszka on 2022-03-18
7. High CVE-2022-1311: Use after free in Chrome OS shell. Reported by Nan Wang(@eternalsakura13) and Guang Gong of 360 Alpha Lab on 2022-03-28
8. High CVE-2022-1312: Use after free in storage. Reported by Leecraso and Guang Gong of 360 Vulnerability Research Institute on 2022-03-30
9. Medium CVE-2022-1313: Use after free in tab groups. Reported by Thomas Orlita on 2021-11-16
10. Medium CVE-2022-1314: Type Confusion in V8. Reported by Bohan Liu (@P4nda20371774) of Tencent Security Xuanwu Lab on 2022-03-09
To protect users against these Google Chrome bugs, Google has released Chrome 100.0.4896.88 version. But this security patch will be made available to users in batches and will be rolled out entirely in the coming weeks. So, what can users do in the meanwhile? Check the following steps to protect yourselves.