InfoSecBulletin Cybersecurity for mankind
Google released an urgent security update for Chrome browser. The update fixes a critical vulnerability that is already being exploited by hackers. The vulnerability, known as CVE-2024-4671, is a bug in the browser’s Visuals component.
CVE-2024-4671 is a type of vulnerability referred to as “use after free” in the Visuals component of the Chrome browser. This vulnerability occurs when dynamic memory is not properly handled during program operation. If a memory location is freed but the pointer to that memory is not cleared, an attacker can take advantage of this to run code on the system. This can result in unauthorized access or manipulation of data, or even control over the affected system.
WhatsApp banned on all US House of Representatives devices
Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store
OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems
Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform
Hackers Bypass Gmail MFA With App-Specific Password Reuse
Russia detects first SuperCard malware attacks via NFC
Income Property Investments exposes 170,000+ Individuals record
ALERT (CVE: 2023-28771)
Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs
CISA Flags Active Exploits in Apple iOS and TP-Link Routers
10K Records Allegedly from Mac Cloud Provider’s Customers Leaked Online
An anonymous researcher found a vulnerability and reported it to Google. The company quickly acknowledged the threat and released updates within two days to protect users.
Emergency updates have been released for Chrome users on the Stable Desktop channel. The updates are available for Mac, Windows, and Linux, with versions 124.0.6367.201 and 124.0.6367.202 for Mac and Windows, and version 124.0.6367.201 for Linux. The purpose of these updates is to fix a vulnerability and prevent potential exploits.
