Published: March 30, 2022 on our newsletter Security Fraud News & Alerts Newsletter.
It’s time to update those browsers, especially if you haven’t done it in a while. Several organizations, including Google the Cybersecurity and Infrastructure Security Agency (CISA) are warning users of Google’s Chrome to update it immediately. Users of Edge, Opera, and any browser using a Chromium base (including Samsung Internet and Amazon’s Silk) are also warned to perform an update immediately. Why? A zero-day vulnerability has been found and the organizations know that it’s currently being exploited by bad actors.
Google issued its warning earlier in March, but Microsoft followed up noting that its Edge browser and any browser running on Chromium Open Source Software are included in this. The warnings refer to CVE-2022-1096, if you want to look up more technical details.
To see what version of browser you have, click on the “About” section of whatever browser you’re using. For Chrome, be sure the version number is at or above 99.0.4844.74. If you use Edge, it should be at or above 99.0.1150.553. To be safe, just update whatever you use to the latest version and be sure to restart it to make sure the change takes effect.
This is considered a high or critical risk and CISA has added it to its “Known Exploited Vulnerabilities Catalog.” As a result, all federal agencies are ordered to update immediately.
In the meantime, Google is limiting information about what can happen, should this be exploited. So, don’t take any chances and update now.
Keep up to date: Sign up for our Fraud alerts and Updates newsletter
Want to schedule a conversation? Please email us at email@example.com