Critical vulnerability on Google Chrome puts 3.2 billion users at risk

A warning has been issued to all those who are using Google Chrome browser version prior to that of 100.0.4896.88 and installed across Windows, Mac and Linux desktop platforms. As per the alert, all the 3.2 billion users are at risk of being hacked by cyber criminals located remotely by executing arbitrary code to access sensitive info.

Security experts suggest that the vulnerability was created because of the use of free in Storage, BFCache, and regular expressions, chrome OS, insufficient policy enforcement in developer tools, type Confusion in V8 and Inappropriate Implementation in composting and full screen.

This means, the vulnerability will exploit the JavaScript engine that is usually seen in Microsoft Edge, Brave and Chrome browsers.

According to Google Threat Analysis Group, the flaw was serious and so a fix was released on April 14, a day after it was found.

Usually, all chrome browsers update the patch on an automated note and will take a week to reach to everyone.

Also, ensure to restart the browser as soon as the update is installed to stay out of trouble.

Now to those who are unaware of the auto-capabilities of Chrome browser, here’s an update.

The Alphabet Inc’s subsidiary has issued a new tool that will assist users in configuring their privacy settings.

Dubbed as Google Chrome Privacy Guide, the tool will take the users through the privacy tab at a glance and was developed by Google Safety Engineer Center (GSCE), the privacy and engineering department of the web search giant, in January 2022.

GSEC will take its users on a tour on how cookies are used by the company, details on history sync, safe browsing and make search efforts.

On an overall note, the tool is devised to make browsing better and will be updated on an occasional note based on user experiences and feedback.

Google Chrome’s privacy guide will be available to users from its version 100 on the desktop and can be seen in the “Privacy and Security Tab” that exists in the Chrome settings.


Naveen Goud
Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security

No posts to display