Google has released a security update for Chrome to address a zero-day vulnerability that was exploited during the Pwn2Own 2024 hacking event. This annual event, held in Vancouver, Canada, brings together security researchers from around the world to compete in hacking different operating systems and software. The goal is to uncover security vulnerabilities in software and hardware and encourage companies to fix them.
A zero-day vulnerability is a security flaw in software that is known to the public and has no patch available. This means that attackers can exploit the vulnerability before the software developer has a chance to fix it.
Google recommends that all Chrome users update their browser to version 123.0.6312.105/106/107 on Windows and Mac operating systems, and version 123.0.6312.105 on Linux operating systems. Chrome-based browsers should also be updated to versions based on the aforementioned versions.
To update:
- Open the browser.
- Open the browser menu.
- Select “About” at the bottom of the menu.
- On the “About” page, you will find the version number. On Windows, you can update the browser from this page.
- On other operating systems, you can update the browser from the app store.
Chrome received an update on March 27, 2024 to address seven security vulnerabilities, including two zero-day vulnerabilities that were also exploited at Pwn2Own 2024.
