Google Chrome users have been warned about two separate security threats that they should take seriously. The first warning is for desktop users on Windows and Mac, as Google has released a security update that includes fixes for three high-severity vulnerabilities. Two of these vulnerabilities are related to Chrome’s JavaScript and WebAssembley engine, which could potentially allow a remote attacker to exploit object corruption through a crafted HTML page. The third fix addresses a use after free issue that could destabilize the platform or device, opening up other vulnerabilities. Users are advised to update their software as soon as possible to protect against potential exploits.
The second warning is for Android users, who are being targeted by a rogue Chrome lookalike trojan called Mamont. This malware is masquerading as Google Chrome and is being promoted through email and messaging platforms, tricking users into downloading and installing it. The trojan is designed to steal contact and credit card details from users by claiming they have won a cash prize that needs to be collected. While this campaign appears to target users in Russia, users worldwide should be cautious and avoid installing apps from random third-party stores. Following basic security measures, such as sticking to official app stores and checking app permissions, can help protect against malicious actors.
Users are reminded to follow five golden rules to ensure the security of their devices and data. These rules include sticking to official app stores and avoiding third-party stores, checking the developer and reviews of apps before installing them, being cautious with app permissions, avoiding clicking links in emails or messages that directly download apps, and not installing apps that link to established apps unless they are legitimate. It is also important to ensure that Google Play Protect is enabled on your device to protect against copycat apps, even if they have been installed from sources outside the official Play Store. By following these rules and staying vigilant, users can reduce the risk of falling victim to malicious software.
