Latest news with #GoogleThreatAnalysisGroup
Daily Mirror
2 days ago
- Business
- Daily Mirror
Everyone who uses Chrome urged to quit their browser and restart it immediately
All Chrome user should check their settings without delay and make sure they are running the very latest version. If your chosen web browser happens to be Google's Chrome application, you are advised to restart it without delay. The US technology giant has just confirmed the release of an update that fixes a bug found within this popular internet searching software. That might not sound all that important, but this latest release is urgent and has been given the dreaded "zero-day" rating. For those not up to speed with the latest tech jargon, a zero-day threat means hackers are aware of it and are actively exploiting it in the wild. " Google is aware that an exploit for CVE-2025-5419 exists in the wild," Google said in an update posted on its security pages. It's now vital that you head to the settings and make sure things are fully up to date. If not, you'll need to relaunch the browsers without delay. If you own a Mac or Windows PC, the Chrome version you should be running is 137.0.7151.68/.69. "The Stable channel has been updated to 137.0.7151.68/.69 for Windows, Mac and 137.0.7151.68 for Linux which will roll out over the coming days/weeks," Google added. According to Google's latest update, the CVE-2025-5419 issue is caused by "out of bounds read and write in V8". It was reported by Clement Lecigne and Benoît Sevens of Google Threat Analysis Group. As long as you restart your browser, you won't be affected, so now is a good time to check and make sure everything is up to date.
Forbes
16-04-2025
- Forbes
iOS 18.4.1—Apple Issues New Update Warning To All iPhone Users
Apple has released iOS 18.4.1, fixing two iPhone security flaws, both of which are being used in ... More real-life attacks. Apple has released iOS 18.4.1 and it comes with a warning to update your iPhone now. That's because iOS 18.4.1 fixes two iPhone security flaws, both of which are being used in real-life attacks. Apple doesn't provide a lot of detail about what's fixed in iOS 18.4.1, because the iPhone maker wants to give people as much time to update before more attackers can get hold of the details. The first flaw fixed in iOS 18.4.1 is an issue in the iPhone's CoreAudio tracked as CVE-2025-31200 and reported by Apple and the Google Threat Analysis Group. Processing an audio stream in a maliciously crafted media file may result in code execution, Apple warned on its support page. 'Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on iOS,' the iPhone maker added. The second bug patched in iOS 18.4.1 is a flaw in RPAC tracked as CVE-2025-31201 and reported Apple. The vulnerability could allow an attacker with arbitrary read and write capability to bypass Pointer Authentication, Apple said, adding that the issue may also have been exploited in an 'extremely sophisticated attack.' The iOS 18.4.1 update comes just two weeks after the release of iOS 18.4, which itself patched 62 vulnerabilities, highlighting the importance of the latest upgrade. In March, Apple again addressed an already-exploited flaw in the iOS 18.3.2 update. Apple's iOS 18.4.1 is an emergency security update that comes in between major point upgrades, ahead of iOS 18.5's arrival in May. There is no iOS 17 update for older iPhones, perhaps because the operating system is not affected by this flaw. However, Apple is no longer issuing security updates to iOS 17 users that are able to upgrade to iOS 18. Despite the urgency of the iOS 18.4.1 upgrade, there is no need to panic, because as Apple said, the flaws fixed in iOS 18.4.1 were used in targeted attacks. These are likely against journalists, dissidents, government officials and businesses in certain sectors. Yet if attackers get hold of the details, they can use the flaws more widely. Apple's iOS 18.4.1 also addresses several bugs, including one that prevents wireless CarPlay connection in certain vehicles. The iOS 18.4.1 update is available for the iPhone XS and later, iPad Pro 13-inch, iPad Pro 13.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 7th generation and later, and iPad mini 5th generation and later. So what are you waiting for? Go to your iPhone Settings > General > Software Update and download and install iOS 18.4.1 now.
