Google News Articles

Android zero-day vulnerabilities actively abused. Update as soon as you can

Android's March 2025 security update includes two zero-days which are under active exploitation in targeted attacks.

4 days ago

Google Confirms 2 New Android Zero Day Exploits—Update Now

Update your Android device now as Google confirms two zero day vulnerabilities already exploited by attackers.

5 days ago

Android security update contains 2 actively exploited vulnerabilities

Google’s monthly batch of security fixes addressed 43 vulnerabilities.

6 days ago

Application Development | Cyber security technical information

Preface: Android frameworks deliver an environment where you already have access to libraries, best practices, and extensive help documentation. As a matter of fact, there are well over ten android...

1 week ago

Chrome Security Update - Patch for 3 High-Severity Vulnerabilities

Google has released a critical update for the Chrome browser, addressing three high-severity security vulnerabilities.

Update Chrome immediately: Two high-risk vulnerabilities revealed

Google has identified two high-severity vulnerabilities in its Chrome web browser, specifically CVE-2024-12381 and CVE-2024-12382, prompting an urgent call

Update Chrome Now—Google Warns Of 2 New High-Risk Vulnerabilities

Two new high-severity Chrome browser security vulnerabilities have been confirmed by Google—ensure you update and activate the new protections now.

New Google Chrome Security Warning—Update Now

A rare emergency update for the Google Chrome browser, across all platforms, has just dropped—users must update now.

Multiple Flaws With Android & Google Pixel Devices Let Attackers Elevate Privileges

Several high-severity vulnerabilities have been identified in Android and Google Pixel devices, exposing millions of users to potential security risks.

CISA adds Android zero-day that infected Chinese shopping app to KEV catalog

An Android zero-day that exploited millions of devices via a Chinese ecommerce app was added to CISA's catalog of known exploited vulnerabilities.

Android app from China executed 0-day exploit on millions of devices

Fast-growing e-commerce app Pinduoduo had an EvilParcel stow-away.

Severe Android and Novi Survey Vulnerabilities Under Active Exploitation

U.S. CISA adds two new vulnerabilities to its KEV catalog, warning of active exploitation of Android and Novi Survey flaws.

Cert-In Reports Vulnerabilities In Google Chrome

CERT-In reports critical vulnerabilities in Google Chrome that could lead to code execution, data theft, and system crashes.

Google Android Deadline—You Have 21 Days To Update Your Phone

Government warns all users to act now as attacks are confirmed to be underway.

WebP Zero-Day: Everything You Need to Know About Libwebp  - Upwind

This month, the Citizen Lab at The University of Toronto’s Munk School and Apple Security Engineering and Architecture (SEA) opened two critical vulnerabilities related to WebP images and Google’s webmproject/libwebp library.  So, what is Libwebp?  Libwebp is a commonly used library used to render W...

Google patches actively exploited Android vulnerability (CVE-2024-43093) - Help Net Security

Google delivers fixes for Android vulnerabilities that "may be under limited, targeted exploitation": CVE-2024-43047 and CVE-2024-43093.

Android flaw may be under limited, targeted exploitation

Google warned that a vulnerability, tracked as CVE-2024-43093, in the Android OS is actively exploited in the wild.

Google Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android System

Google warns of CVE-2024-43093, a privilege escalation flaw in Android, now under active exploitation.

Critical Chrome Security Update: Patch for Out-of-Bounds & WebRTC Vulnerability

Google has rolled out a critical security update for its Chrome browser, addressing significant vulnerabilities that attackers could exploit.

Google Patches Critical Chrome Vulnerability Reported by Apple

Google has patched CVE-2024-10487, a critical Chrome vulnerability, and Mozilla has patched high-severity flaws in Firefox.

Lazarus hackers used fake DeFi game to exploit Google Chrome zero-day

The North Korean Lazarus hacking group exploited a Google Chrome zero-day tracked as CVE-2024-4947 through a fake decentralized finance (DeFi) game targeting individuals in the cryptocurrency space.

Lazarus APT steals cryptocurrency and user data via a decoy MOBA game

Kaspersky GReAT experts break down the new campaign of Lazarus APT which uses social engineering and exploits a zero-day vulnerability in Google Chrome for financial gain.

PoC Exploit Released for CVE-2024-7965 Zero-Day Chrome Vulnerability

A PoC exploit has been released for a critical zero-day vulnerability identified as CVE-2024-7965, affecting Google's Chrome browser.

Google Chrome Update Warning Prompts Microsoft To Suggest Using SmartScreen Instead

Attack details confirmed, as 2 billion Chrome users given stark decision to make.

North Korean threat actor Citrine Sleet exploiting Chromium zero-day | Microsoft Security Blog

Microsoft observed North Korean threat actor Citrine Sleet exploiting the CVE-2024-7971 zero-day vulnerability in Chromium. Citrine Sleet targets the cryptocurrency sector for financial gain.

Google fixed actively exploited Android flaw CVE-2024-32896

Google addressed a security vulnerability in its Android operating system that is actively exploited in attacks in the wild.

Android Users Urged to Install Latest Security Updates to Fix Actively Exploited Flaw

Google releases Android security update to address actively exploited vulnerability CVE-2024-32896. Users urged to install the patch immediately.

Google Chrome Use After Free Flaw Let Attacker Hijack Browser

The latest stable channel update for Google Chrome, version 120.0.6099.199 for Mac and Linux and 120.0.6099.199/200 for Windows.

North Korea-linked APT Citrine Sleet exploit Chrome zero-day to deliver FudModule rootkit - Security Affairs

North Korea-linked APT exploited the recently patched Google Chrome zero-day CVE-2024-7971 to deploy the FudModule rootkit.

Google Chrome Attacks—CISA Tells Users To Update By September 16

U.S. government suddenly issues an emergency update warning for Chrome users.

North Korean Hackers Deploy FudModule Rootkit via Chrome Zero-Day Exploit

North Korean hackers exploited a Google Chrome zero-day flaw to deliver the FudModule rootkit, targeting cryptocurrency platforms.

North Korean Hackers Attack Chromium With FudModule Rootkit

A North Korean threat actor leveraged a zero-day vulnerability in Google's Chromium browser to deploy the FudModule rootkit to target cryptocurrency firms.

Russian Hackers Exploit Safari and Chrome Flaws in High-Profile Cyberattack

Russian hackers exploit patched Safari and Chrome flaws in attacks on Mongolian government websites, targeting mobile users.

Google Issues CVE-2024-7965 Alert due to security flaw in Chrome being actively exploited - CIO News

Google has disclosed that a security vulnerability addressed in a software update for its Chrome browser that was released last week is being actively

Google Issues Emergency Patch for Chrome Zero-Day (CVE-2024-7965) - Upwind

Overview On July 30, 2024, a critical zero-day vulnerability (CVE-2024-7965) was discovered in Google Chrome’s V8 JavaScript engine. Google swiftly responded with an emergency patch after confirming that this flaw was being actively exploited in the wild. On August 26, 2024, Google released a new Ch...

Google Fixes Chrome Zero-Day Vulnerability (CVE-2024-7965)

Google has patched the critical Chrome zero-day vulnerability CVE-2024-7965 to protect against active exploitation and other risks.

Google Warns of CVE-2024-7965 Chrome Security Flaw Under Active Exploitation

Google patches CVE-2024-7965, an actively exploited Chrome vulnerability, urging users to update for security.

Chrome Zero-Day Vulnerability (CVE-2024-7965) Actively Exploited in the Wild

Google has addressed a critical zero-day vulnerability in its Chrome browser, identified as CVE-2024-7965. This high-severity flaw, which affects versions of Chrome prior to 128.0.6613.84

Google Warns of Exploited Chrome Vulnerability

Google flags another high-severity vulnerability patched with the latest Chrome 128 release as exploited in the wild.

Google Chrome Update Fixes Flaw Exploited in the Wild

New Chrome release set to roll out over the next few days addresses 38 security issues in the browser.

Google Fixes Zero-Day Chrome Flaw in V8

The fixed versions of Chrome 128 will roll out over the coming days and weeks, said Google.

New Chrome zero-day actively exploited, patch quickly! (CVE-2024-7971) - Help Net Security

A new Chrome zero-day vulnerability (CVE-2024-7971) exploited by attackers in the wild has been fixed by Google.

Google Fixes High-Severity Chrome Flaw Actively Exploited in the Wild

Google patches high-severity Chrome bug CVE-2024-7971, actively exploited in the wild. Users urged to update immediately.

Chrome Zero-day Vulnerability (CVE-2024-7971) Actively Exploited in The Wild

Google has recently addressed a high-severity zero-day vulnerability in its Chrome browser, identified as CVE-2024-7971. This vulnerability involves a type of confusion issue within the V8 JavaScript engine, which can be exploited to execute arbitrary code.

Google Patches Sixth Exploited Chrome Zero-Day of 2024

Chrome 128 was released in the stable channel with patches for 38 vulnerabilities, including a V8 flaw exploited in the wild.

One Click on a Malicious Site Could Exploit Chrome V8 Engine RCE Vulnerability

A critical security vulnerability identified as CVE-2024-5830 has been discovered in Chrome's V8 JavaScript engine.

Chrome浏览器存在远程代码执行漏洞（CVE-2024-4671）

Chrome浏览器UAF漏洞 （CVE-2024-4671） Google Chrome是一款广泛使用的跨平台Web浏览器，由Google开发。它基于Chromium开源项目，提供快速、安全和用户友好的浏览体验。Chrome浏览器在全球拥有大量用户，是最受欢迎的Web浏览器之一。 01 漏洞描述 漏洞类型：Chrome浏览器UAF漏洞...