Google, IT giant, has released Chrome 108.0.5359.94/.95 for Windows, Mac, and Linux users to fix a ninth zero-day vulnerability that is exploited in the wild. According to a security advisory published on 2nd December 2022, Google is aware of the CVE-2022-4262 which is being exploited in the wild. This zero-day vulnerability (CVE-2022-4262), which has been reported by a threat analyst Clement Lecigne, is caused due to a high-severity type confusion weakness in Google's Chrome V8 JavaScript engine. However, even though type confusion security flaws generally lead to browser crashes after successful exploitation by reading or writing memory out of buffer bounds, attackers can also exploit them for arbitrary code execution. In addition, Google has acknowledged detecting attacks exploiting this zero-day, but it has not provided any technical details or information as many users are yet to apply the fixes. Google also claimed that they will retain restrictions if the bug exists in a third-party library that other projects similarly rely on, but haven't yet fixed.
A significant data breach has affected an unknown number of serving UK military personnel, according to reports from the BBC. The breach targeted a payroll system used by the Minis...
A new malware targeting both Intel and ARM-based Mac computers has been discovered by cybersecurity firm Kandji. Dubbed "Cuckoo," the malware disguises itself as legitimate...
Google Cloud’s Mandiant reported that the Iranian state-sponsored cyberespionage group APT42 has deployed two new backdoors in recent attacks against NGOs, government bodies, and...