MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
chrome
Search

Google Patches Chrome Sandbox Escape Zero-Day Caught By Kaspersky

Wednesday March 26, 2025. 11:00 AM , from Slashdot
Google Patches Chrome Sandbox Escape Zero-Day Caught By Kaspersky
wiredmikey shares a report from SecurityWeek: Google late Tuesday rushed out a patch for a sandbox escape vulnerability in its flagship Chrome browser after researchers at Kaspersky caught a professional hacking operation launching drive-by download exploits. The vulnerability, tracked as CVE-2025-2783, was chained with a second exploit for remote code execution in what appears to be a nation-state sponsored cyberespionage campaign [dubbed Operation ForumTroll] targeting organizations in Russia.

Kaspersky said it detected a series of infections triggered by phishing emails in the middle of March and traced the incidents to a zero-day that fired when victims simply clicked on a booby-trapped website from a Chrome browser. The Russian anti-malware vendor said victims merely had to click on a personalized, short-lived link, and their systems were compromised when the malicious website was opened in Chrome. Kaspersky said its exploit detection tools picked up on the zero-day, and after reverse-engineering the code, the team reported the bug to Google and coordinated the fix released on Tuesday.

Read more of this story at Slashdot.
Read more at Slashdot
https://slashdot.org/story/25/03/26/0143210/google-patches-chrome-sandbox-escape-zero-day-caught-by-...

Related News

chrome Google Discontinues Nest Protect, and Apple’s WWDC Gets a Date—Here’s Your Gear News of the Week Wired: Tech.Mar 29
kaspersky Google introduces Gemini 2.5 reasoning models InfoWorldMar 29
zero-day Again and Again, NSO Group's Customers Keep Getting Their Spyware Operations Caught SlashdotMar 28
google OpenAI, Google AI data centers are under stress after new genAI model launches ComputerWorldMar 28
said 4 Best Smart Displays (2025): Google Assistant and Amazon Alexa Wired: Tech.Mar 28
caught After Chrome patches zero-day used to target Russians, Firefox splats similar bug TheRegisterMar 28
sandbox Google Maps Can Soon Scan Your Screenshots To Plan Your Vacation SlashdotMar 27
escape Even Google struggles to balance fast-but-pricey flash and cheap-but-slow hard disks TheRegisterMar 27
its Google Will Develop the Android OS Fully In Private SlashdotMar 26
victims Google: Gemini 2.5 is the company’s ‘most intelligent AI model yet’ ComputerWorldMar 26
browser Google moves all Android development behind closed doors OS NewsMar 26
website Microsoft patches patch that broke USB printing in Windows 11 TheRegisterMar 26
exploit Apple Barred From Google Antitrust Trial, $20 Billion Search Deal at Risk SlashdotMar 26
code 10 Best Smart Speakers (2025): Alexa, Google Assistant, Siri Wired: Tech.Mar 26
operation India ditches its 'Google Tax', perhaps to tickle Trump and dodge tariffs TheRegisterMar 26
chrome Google Unveils Gemini 2.5 Pro, Its Latest AI Reasoning Model With Significant Benchmark Gains SlashdotMar 25
kaspersky Google unveils Gemini 2.5 in a desperate bid to catch up with ChatGPT BetaNewsMar 25
zero-day New ‘Share screen with Live’ option appears in Google Gemini so the AI assistant can view your screen and see through your camera BetaNewsMar 25
google Google acquires Wiz: A win for multicloud security InfoWorldMar 25
said Google to White House: Boost AI Investments, Streamline Policies, and Lead Global Collaboration eWeekMar 24
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
Mar, Sat 29 - 16:02 CET