Active Stocks
Mon Mar 04 2024 09:07:08
  1. Tata Steel share price
  2. 155.25 0.06%
  1. ITC share price
  2. 412.20 0.00%
  1. NTPC share price
  2. 348.00 1.80%
  1. Tata Motors share price
  2. 992.95 0.46%
  1. Power Grid Corporation Of India share price
  2. 287.95 0.37%
Business News/ Technology / News/  CERT-In issues high-severity warning on Google Chrome OS vulnerabilities: How to stay safe
BackBack

CERT-In issues high-severity warning on Google Chrome OS vulnerabilities: How to stay safe

Indian CERT-In warns of high-severity vulnerabilities in Google Chrome OS that could be exploited by remote attackers, urging users to update to version 114.0.5735.350 or later.

Representational image (HT_PRINT)Premium
Representational image (HT_PRINT)

In a recent development, the Indian Computer Emergency Response Team (CERT-In) has issued a high-severity warning concerning vulnerabilities detected in Google Chrome OS. The security alert, designated as CIVN-2024-0031 and released on February 8, 2024, emphasizes the critical nature of the risks associated with versions of Google Chrome OS preceding 114.0.5735.350 on the LTS channel.

CERT-In has pinpointed vulnerabilities in Google Chrome OS that could potentially be exploited by remote attackers, allowing them to execute arbitrary code, attain elevated privileges, circumvent security restrictions, or induce denial of service conditions on impacted systems. The root causes of these vulnerabilities lie in a "use after free" flaw within the Side Panel Search feature and inadequate data validation in extensions. These issues pose a significant threat to system integrity, making it imperative for users to address them promptly.

The security agency highlights that remote attackers can exploit these vulnerabilities by luring users to visit specially crafted web pages, activating the identified vulnerabilities upon access. To address these concerns, CERT-In strongly advises users to update their Google Chrome OS to version 114.0.5735.350 or later, as these updates include crucial patches addressing the identified vulnerabilities.

CERT-In's Recommended Actions:

  • Users are urged to exercise caution while browsing the internet, especially when encountering unfamiliar or suspicious websites.
  • Avoid interacting with links from untrusted sources or unsolicited emails and messages.
  • Implement security best practices, including the use of reputable antivirus software, regular updates of software and applications, and enabling firewalls for enhanced defense mechanisms against potential threats.

In conjunction with the warning, CERT-In has initiated a "Cyber Swachhta Fortnight" from February 1 to 15, 2024, aimed at securing cyberspace from botnets, which pose a significant threat to end-user systems. As part of this campaign, CERT-In, in collaboration with eScan, has introduced the 'Cyber Swachhta Kendra' (CSK), providing the eScan Botnet Scanning & Cleaning Toolkit for laptops, desktops, and smartphones.

 

Unlock a world of Benefits! From insightful newsletters to real-time stock tracking, breaking news and a personalized newsfeed – it's all here, just a click away! Login Now!

Catch all the Technology News and Updates on Live Mint. Check all the latest action on Budget 2024 here. Download The Mint News App to get Daily Market Updates & Live Business News.
More Less
Published: 09 Feb 2024, 07:19 PM IST
Next Story footLogo
Recommended For You
Switch to the Mint app for fast and personalized news - Get App