Sunday November 17, 2019
Home Lead Story Google Chrome...

Google Chrome Web Browser Has Been Spotted with an Exploited Vulnerability

Certain similarities in the code point to a possible link between this campaign and Lazarus attacks

0
//
Google Chrome
The new exploit in Google Chrome is used in attacks that leverage a waterhole-style injection in a Korean-language news portal. Pixabay

A new exploited vulnerability in Google Chrome web browser called “CVE-2019-13720”, which is a zero-day vulnerability, has been spotted by Russian cyber security firm Kaspersky. The firm has reported it Google and a patch has been released.

Zero-day vulnerabilities are essentially previously unknown software bugs that can be exploited by attackers to inflict serious and unexpected damage.

The detected exploit was used in what the cyber security firm calls ‘Operation WizardOpium’.

Certain similarities in the code point to a possible link between this campaign and Lazarus attacks.

“The finding of a new Google Chrome zero-day in the wild once again demonstrates that it is only collaboration between the security community and software developers, as well as constant investment in exploit prevention technologies, that can keep us safe from sudden and hidden strikes by threat actors,” Anton Ivanov, Security Expert at Kaspersky, said in a statement.

The new exploit is used in attacks that leverage a waterhole-style injection in a Korean-language news portal.

Google Chrome
A new exploited vulnerability in Google Chrome web browser called “CVE-2019-13720”, which is a zero-day vulnerability, has been spotted by Russian cyber security firm Kaspersky. Pixabay

A malicious JavaScript code is inserted in the main page, which in turn, loads a profiling script from a remote site to further check if the victim’s system could be infected by examining versions of the browser’s user credentials.

The vulnerability tries to exploit the bug through the Google Chrome browser and the script checks if version 65 or later is being used.

ALSO READ: 300 Teams in the Field in Delhi to Fight Air Pollution

The exploit gives an attacker a Use-After-Free (UaF) condition, which is very dangerous because it can lead to code execution scenarios. (IANS)

Next Story

Google To Unveil New Feature that Allows Users to Check Their Pronounciation

Presently, it is available on mobile in American English and is coming soon in Spanish

0
Google
Google is also improving its word translations and definitions with visual prompts. Pixabay

Google search is rolling out a new feature that will let users check their pronunciation of unfamiliar words with the help of machine learning.

With this new feature, a user will be able to speak into their microphone and then Google’s AI will analyze the snippet and compare it against the word’s correct pronunciation.

Then, the user will receive feedback on how each syllable matches Google’s expected pronunciation.

‘For example, if you are practicing how to say “asterisk,” the speech recognition technology analyzes how you said the word and then, it recognizes that the last soundbite was pronounced ‘rict’ instead of ‘hsk,’ Google said in a statement recently.

Presently, it is available on mobile in American English and is coming soon in Spanish.

Google is also improving its word translations and definitions with visual prompts.

Google search is rolling out a new feature that will let users check their pronunciation of unfamiliar words with the help of machine learning.
Pixabay

Google
Google search is rolling out a new feature that will let users check their pronunciation of unfamiliar words with the help of machine learning. Pixabay

“Starting rolling out today, when you look up the translation of a word or its definition, you will start seeing images that give you additional context. This can be useful with words that have multiple meanings like “seal,” or words like “avocado” that aren’t commonly used in all languages or regions,” the company added.

ALSO READ: Google Probe to Expand into Search and Android

According to Google, these new features give a creative, more effective way to practice, visualize and remember new words and the company is planning to expand these features to more languages, accents and regions in the future. (IANS)