Technology
PUBLISHED
4
Google has issued an urgent upgrade warning to those who use Chrome on Windows, macOS, and Linux. A vulnerability called CVE-2022-1096 in Google Chrome and Microsoft Edge has forced Google to issue a warning urging users to update to the latest version.
The rest of this article is behind a paywall. Please sign in or subscribe to access the full content.The warning comes after the discovery of a zero-day hack (meaning the hack was known to hackers before the vulnerability is patched) was identified, which Google admits is currently "out in the wild". Anyone who does not download the latest security update is vulnerable.
To update your Chrome, go to the three dots in the top right corner, click Settings > About Chrome. The update should automatically install.
To update Microsoft Edge, go to Settings and more > Help and feedback > About Microsoft Edge. If there is an update to install, it will appear here.
Likely owing to the widespread damage the hack could do, Google is keeping tight-lipped about any specific details. However, the company does state that the issue is to do with Chrome’s V8 component, an open-source JavaScript engine, and that the threat level is "high". According to media outlet Bleeping Computer, the exploit allows hackers to run malicious commands of their choice on target machines.
As a result, the US Cybersecurity and Infrastructure Security Agency (CISA) has now ordered federal employees to patch this vulnerability by updating to the latest version within the next three weeks. It has now been added to their Known Exploited Vulnerabilities Catalog.
