Government warns Google Chrome users on Windows and Mac of severe security risks
CERT-in — The Indian Computer Emergency Response Team — under the Ministry of Electronics and Information Technology (MeitY), has issued a high-severity security alert for users of Google Chrome on computer platforms. This includes Chrome users on Windows, macOS and Linux systems. The advisory warns that certain security flaws in older versions of the browser could allow attackers to remotely take control of a user's computer. One of these vulnerabilities is already being exploited by attackers in the wild, which makes this a serious and time-sensitive threat. If you use Chrome on your laptop or PC, you are strongly advised to update it immediately to avoid falling victim to these potential cyberattacks.advertisementAccording to CERT-In, the affected Chrome versions are those prior to 136.0.7103.113 on Linux, and prior to 136.0.7103.113 or 136.0.7103.114 on Windows and Mac. These older builds contain flaws linked to two key components in the browser — one is called the Loader, and the other is Mojo, which is used for inter-process communication in Chromium-based browsers. The agency explained that the vulnerabilities arise due to insufficient policy enforcement in the Loader, and improper handling in Mojo. These gaps can be exploited by attackers to execute arbitrary code on a device, essentially giving them access to everything on your system.What makes this even more concerning is that one of the vulnerabilities, labelled CVE-2025-4664, is already being actively used by cybercriminals. This means attackers are not just preparing to use it — they already are. This flaw can be triggered simply by luring users to visit a malicious website or clicking on a dangerous link. Once exploited, it can allow the attacker to take control of the device, inject malware, steal sensitive information, or crash the system altogether.advertisementTo prevent this from happening, CERT-In has recommended that all users and organisations running Google Chrome on desktops should upgrade to the latest version without delay. Google has confirmed that the issues have been patched in versions 136.0.7103.113 and 136.0.7103.114, and that the updated builds are being rolled out via the Stable channel. These updates will become available to all users over the coming days or weeks.You don't need to download anything manually — Chrome has a built-in update mechanism. Simply open Google Chrome on your desktop, click on the three-dot icon in the top-right corner, go to Help and then click About Google Chrome. Your browser will automatically start checking for updates and install them if available. After the update is installed, restart the browser to complete the process.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Economic Times
2 hours ago
- Economic Times
CrowdStrike hit by weak forecast, US government request for information
Nearly a year after CrowdStrike's botched cybersecurity update crippled airlines, banks and hospitals for hours, the company is still reeling from the fallout. Its shares fell more than 5% in afternoon trading. The program ended in the fourth quarter but continues to weigh on subscription growth, as it let customers pick more products or extend usage. The incentives reduced first-quarter revenue by about $11 million and will have a $10 million to $15 million impact each quarter for the rest of the fiscal year. The outlook underscores the lingering impact of the Windows outage that hurt CrowdStrike's brand and triggered lawsuits, including one from Delta seeking compensation for canceled flights. Still, CrowdStrike's shares have advanced more than 40% this year, after a 34% gain in 2024. That has given it a lofty valuation, with shares trading at 123.69 times forward earnings estimates, compared with Palo Alto Networks' 54.01. The steep valuation left little room for any "unexpected slip-ups", said Russ Mould, investment director at AJ Bell. "Momentum stocks like CrowdStrike need to generate positive earnings surprises to maintain their upward share price trajectory." CrowdStrike was on track on lose nearly $6 billion from its market value of about $122 billion. The company reported a first-quarter loss on Tuesday, compared with a year-ago profit. But several analysts said efforts to repair its reputation and attract clients in the competitive industry were working. At least 23 brokerages have raised price targets after its in-line first-quarter revenue and better-than-expected adjusted profit per share. "We believe CrowdStrike is taking share from other vendors across their product offerings," Truist Securities said.
Time of India
2 hours ago
- Time of India
CrowdStrike hit by weak forecast, US government request for information
Nearly a year after CrowdStrike 's botched cybersecurity update crippled airlines, banks and hospitals for hours, the company is still reeling from the fallout. Its shares fell more than 5% in afternoon trading. Sponsored Links Sponsored Links Promoted Links Promoted Links You May Like 새로 나온 "실비보험" 최적가 가입추천! "月 보험료 낮추고, 보장은 폭넓게"... 굿리치 보험대리점 (등록번호:제2006038313호) 가입하기 Undo The program ended in the fourth quarter but continues to weigh on subscription growth , as it let customers pick more products or extend usage. The incentives reduced first-quarter revenue by about $11 million and will have a $10 million to $15 million impact each quarter for the rest of the fiscal year. The outlook underscores the lingering impact of the Windows outage that hurt CrowdStrike's brand and triggered lawsuits, including one from Delta seeking compensation for canceled flights. Live Events Still, CrowdStrike's shares have advanced more than 40% this year, after a 34% gain in 2024. That has given it a lofty valuation, with shares trading at 123.69 times forward earnings estimates, compared with Palo Alto Networks' 54.01. Discover the stories of your interest Blockchain 5 Stories Cyber-safety 7 Stories Fintech 9 Stories E-comm 9 Stories ML 8 Stories Edtech 6 Stories The steep valuation left little room for any "unexpected slip-ups", said Russ Mould, investment director at AJ Bell. "Momentum stocks like CrowdStrike need to generate positive earnings surprises to maintain their upward share price trajectory." CrowdStrike was on track on lose nearly $6 billion from its market value of about $122 billion. The company reported a first-quarter loss on Tuesday, compared with a year-ago profit. But several analysts said efforts to repair its reputation and attract clients in the competitive industry were working. At least 23 brokerages have raised price targets after its in-line first-quarter revenue and better-than-expected adjusted profit per share. "We believe CrowdStrike is taking share from other vendors across their product offerings," Truist Securities said.
Time of India
5 hours ago
- Time of India
Microsoft's Satya Nadella reshuffles leadership second time in three months, LinkedIn CEO to lead Office team, says didn't even add ‘Open to Work badge...'
Microsoft is implementing a leadership reshuffle that will see LinkedIn CEO Ryan Roslansky take on additional responsibilities for the company's core Office products, including Word and Excel, and its flagship AI offering, Copilot. Tired of too many ads? go ad free now As per news agency Reuters, the change has been outlined in an internal memo from Microsoft CEO . Key changes at Microsoft Roslansky will maintain his role as CEO of the business-focused social network. Under the new structure, he will now report directly to Rajesh Jha , who heads Microsoft's Windows unit and oversees Teams, among other duties. The memo also indicates that Charles Lamanna, who leads Copilot for business and industrial users, will transition to reporting to Jha. Additionally, existing Office leaders Sumit Chauhan and Gaurav Sareen will also report to Jha. Read LinkedIn CEO Ryan Roslansky's post announcing the change Career Path update… Sixteen years at LinkedIn. Five as CEO. And now, a new chapter. While I continue to be the CEO of LinkedIn, an independent subsidiary of Microsoft, I'll also be stepping into a broader role, leading Microsoft Office and M365 Copilot. And I hadn't even added an 'Open to Work' badge to my profile 🙂 When Microsoft acquired LinkedIn in 2016, we believed in a simple idea: that connecting professionals could create more opportunity for everyone. That bet has paid off. LinkedIn is now one of Microsoft's most successful acquisitions, helping shape how people find work, grow their careers, and build what's next. Office is one of the most iconic product suites in history. It has shaped how the world works, literally. The reach and impact of Office are unmatched. I'm coming into this role in a new, exciting era. Productivity, connection, and AI are converging at scale. Tired of too many ads? go ad free now Both Office and LinkedIn are used daily by professionals globally and I'm looking forward to redefining ourselves in this new world. And on a personal level, and as a product builder at heart, I couldn't be more excited about this squiggly line in my own career path and the chance to lead two of the most impactful professional products in history. Second reshuffle in three months This is the second leadership reshuffle at Microsoft with previous one reported in March. Nadella announced the reshuffle, appointing a new Chief People Officer (CPO) after Kathleen Hogan, who has served as CPO since 2014, transitioned to take up the role of Executive Vice President of the Office of Strategy and Transformation, Business Insider reported. Scam Series: The "Meme Malware" WhatsApp Scam
