MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
chrome
Recherche

Google Patches Chrome Sandbox Escape Zero-Day Caught By Kaspersky

mercredi 26 mars 2025, 11:00 , par Slashdot
Google Patches Chrome Sandbox Escape Zero-Day Caught By Kaspersky
wiredmikey shares a report from SecurityWeek: Google late Tuesday rushed out a patch for a sandbox escape vulnerability in its flagship Chrome browser after researchers at Kaspersky caught a professional hacking operation launching drive-by download exploits. The vulnerability, tracked as CVE-2025-2783, was chained with a second exploit for remote code execution in what appears to be a nation-state sponsored cyberespionage campaign [dubbed Operation ForumTroll] targeting organizations in Russia.

Kaspersky said it detected a series of infections triggered by phishing emails in the middle of March and traced the incidents to a zero-day that fired when victims simply clicked on a booby-trapped website from a Chrome browser. The Russian anti-malware vendor said victims merely had to click on a personalized, short-lived link, and their systems were compromised when the malicious website was opened in Chrome. Kaspersky said its exploit detection tools picked up on the zero-day, and after reverse-engineering the code, the team reported the bug to Google and coordinated the fix released on Tuesday.

Read more of this story at Slashdot.
Lire la suite sur Slashdot
https://slashdot.org/story/25/03/26/0143210/google-patches-chrome-sandbox-escape-zero-day-caught-by-...

Voir aussi

chrome Google arrête deux produits Nest emblématiques et réduit la voilure sur la domotique 01net29 Mar
kaspersky Google Discontinues Nest Protect, and Apple’s WWDC Gets a Date—Here’s Your Gear News of the Week Wired: Tech.29 Mar
zero-day Comptes Fitbit : migrez vers Google ou perdez tout ! 01net29 Mar
google Google introduces Gemini 2.5 reasoning models InfoWorld29 Mar
said Again and Again, NSO Group's Customers Keep Getting Their Spyware Operations Caught Slashdot28 Mar
caught OpenAI, Google AI data centers are under stress after new genAI model launches ComputerWorld28 Mar
sandbox 4 Best Smart Displays (2025): Google Assistant and Amazon Alexa Wired: Tech.28 Mar
escape Google Maps : les captures d'écran se transforment en itinéraires Génération-NT28 Mar
its Google privatise le développement d'Android pour plus d'efficacité Génération-NT28 Mar
victims After Chrome patches zero-day used to target Russians, Firefox splats similar bug TheRegister28 Mar
browser Google Search : vous pouvez désormais supprimer vos informations personnelles directement à partir du moteur de recherche ZDNet.fr28 Mar
website Google Maps Can Soon Scan Your Screenshots To Plan Your Vacation Slashdot27 Mar
exploit Les AI Overviews de Google s’affichent en Europe, mais pas encore en France 01net27 Mar
code Top 3 du jour : Steelseries Arctis GameBuds à 100€, Google Pixel 9 Pro à 699€, Asus VivoBook S 14 OLED à 570€ Génération-NT27 Mar
operation ZDNET Morning 27/03/2025 : Android en mode furtif, Chiffre d'affaires OpenAI, Google Workspace et IA,... ZDNet.fr27 Mar
chrome Google Workspace muscle son jeu sur les réunions, les vidéos et les traductions ZDNet.fr27 Mar
kaspersky Even Google struggles to balance fast-but-pricey flash and cheap-but-slow hard disks TheRegister27 Mar
zero-day Le mode IA de Google Search est désormais gratuit pour tous - comment l'essayer et ce qu'il peut faire ZDNet.fr27 Mar
google Google Will Develop the Android OS Fully In Private Slashdot26 Mar
said Google: Gemini 2.5 is the company’s ‘most intelligent AI model yet’ ComputerWorld26 Mar
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Date Actuelle
sam. 29 mars - 19:39 CET