The Google Chrome browser has been hit by its first zero-day attack of 2023, and Google has begun rolling out an emergency update as of today to address the exploit.
Google detailed on its Chrome Release blog that it is aware that an exploit for CVE-2023-2033 exists in the wild. It has likely been circulating since the beginning of the year, according to Bleeping Computer.
The exploit was discovered and reported by Clement Lecigne of Google’s Threat Analysis Group (TAG). The group is known for locating government-sponsored bad actors that intend to hack Google to get access to high-profile people, such as journalists and rival politicians, so they can infect their accounts and devices with spyware, the publication noted.
The CVE-2023-2033 vulnerability is considered high-severity and is detailed as a “confusion weakness in the Chrome V8 JavaScript engine.” However, Google has shared few other details about the attack at this time, particularly about how the CVE-2023-2033 vulnerability has been used in actual attacks. The name “zero-day” indicates that the vulnerability still exists in the wild, despite Google having addressed it with an update.
“Access to bug details and links may be kept restricted until a majority of users are updated with a fix,” Google said. “We will also retain restrictions if the bug exists in a third-party library that other projects similarly depend on, but haven’t yet fixed.”
The update version 112.0.5615.121 addressing CVE-2023-2033 is currently available for Chrome users in the Stable Desktop channel and will roll out to all users over several days and weeks. The update is compatible with Windows, Mac, and Linux systems. BleepingComputer noted it was able to access the update immediately by accessing Chrome menu > Help > About Google Chrome. The update will also hit Chrome browsers automatically when available after a restart.
In March 2022, a similar zero-day vulnerability called CVE-2022-1096 affected Chrome’s V8 JavaScript engine specifically on Mac devices.
A major zero-day vulnerability that affected Windows programs in June 2022, called CVE-2022-30190, Follina, was traced to a Chinese TA413 hacking group and was aimed at the Tibetan diaspora, as well as U.S. and EU government agencies.
Phishing campaigns — where a fraudulent website or email is made to look like it comes from a legitimate source — have caused a huge amount of destruction, leading to untold numbers of virus infections and money lost through scams. Google has just rolled out a powerful way to fight phishing in its Chrome browser, however, and it could help you avoid falling victim.
As part of Chrome’s 15th-anniversary update, Google will be pushing its Enhanced Safe Browsing feature to all users in the coming weeks. This checks website URLs against a list of malicious sites stored on Google’s cloud servers, all in real time. If a match is found, the website is blocked and a warning is displayed to users.
To mark the 15th anniversary of its popular web browser, Google is releasing a brand new update for Chrome. The biggest change will be a redesign for the browser that will now adhere to Google’s Material You design language. There is also an update for the Chrome Web Store, alongside enhanced search features and some tweaks to Safe Browsing.
Material You is Google’s unified design language, which was first introduced with Android 12. According to a blog post shared by Chrome Vice President Parisa Tabriz, Chrome will be the latest product from the company that will be getting a design overhaul featuring new icons that place a strong emphasis on legibility. On top of that, there will be fresh color palettes that will expand to the tabs and toolbar.
Although we know all of the details about Intel’s Lunar Lake architecture, the processors themselves have been shrouded in mystery. Now, we have our first taste of what these processors could look like, including a critical spec that Intel has kept under wraps: power draw.
Specs for the full lineup of Lunar Lake CPUs were shared by VideoCardz citing its own sources. As usual, it’s important to handle these specs with a healthy dose of skepticism. According to the outlet, Intel is set to share more about the CPUs in the coming weeks, so it shouldn’t be long until we have confirmed specs.
Upgrade your lifestyleDigital Trends helps readers keep tabs on the fast-paced world of tech with all the latest news, fun product reviews, insightful editorials, and one-of-a-kind sneak peeks.
