MOUNTAIN VIEW, Calif.—Credit unions might want to review their own operations and also warn their members that Google has just issued its second urgent upgrade warning in a week.
Google has confirmed a serious security problem in its Chrome web browser.
In an official blog post, Google has confirmed that a new ‘zero-day’ exploit has been found in Chrome after an anonymous tip-off. Most security flaws are discovered and patched before they get out into the wild, but a zero-day classification means the vulnerability is known to hackers and is actively being exploited, Forbes explained.
Little is known about the vulnerability (CVE-2021-30554) other than it being found in WebGL, a JavaScript API for rendering. It is standard practice for Google to keep zero-day details to a minimum to buy Chrome users more time to upgrade, Forbes said.
“Google is aware that an exploit for CVE-2021-30554 exists in the wild,” Chrome technical program manager Srinivas Sista has said.