Patch, Patch, Patch! Google Chrome Zero Day Vulnerability Uncovered!


June 11, 2021

Are you a Chrome user? If so you better update your software. Google has just announced a new software update that’s designed to take care of a critical flaw in the software’s Javascript engine (among other things).

The vulnerability, labeled as CVE-2021-30551, deals with something referred to as “type confusion in V8.” V8 is a Chrome element that runs JavaScript. Type confusion is when you input V8 a specific sort of data but trick JavaScrip into processing it as if it were something else. This could potentially bypass security on the end-point (i.e. running unauthorized code like a drive-by download).

JavaScript exploits are fairly popular and can cause a substantial amount of damage. For example, a drive-by download (as mentioned above) is when a user visits a compromised website and bad guys run rogue code in the background, most likely to install malware.

How to Upgrade

Thank goodness, this is an easy problem to avoid. Here’s how:

  1. Check which version of Chrome you’re operating. Click the three vertically aligned dots in the upper left-hand corner of the Chrome window.
  2. Select Help>About Google Chrome. This is where the version you’re using will be displayed. If it’s 91.0.447.101 you’re good to go.
  3. If it’s NOT 91.0.447.101 you’ll be prompted to update and restart your browser. Just follow the prompts.

Like our blog? Subscribe using the CTA in the upper right-hand corner of this page. Feel like sharing your thoughts with us? Use the comment section below.

Carl Keyser is the Content Manager at Integris.

Keep reading

Strong Cybersecurity Postures: How to Unleash their Power

Strong Cybersecurity Postures: How to Unleash their Power

In the vast digital landscape where virtual dragons and sneaky trolls roam a strong cybersecurity posture has never been more important. Imagine a band of modern-day knights led by our protagonist, Alex. Armed with a trusty laptop and a cup of coffee, Alex navigates...

How to Spot a Phishing Attack in 2023

How to Spot a Phishing Attack in 2023

In 2023 cyber threats lurk behind every tree trunk in today's digital jungle, and cybersecurity awareness is more critical than ever. Among the craftiest of these threats are phishing attacks. Phishing attacks are cunningly engineered with social manipulation at their...

How to Choose an IT Consultant in Boulder, CO

Regardless of industry size or type, Boulder IT consultants play a massive role in the way companies in the Boulder area do business. While most companies may have their own in-house IT department, many of these departments are small and cannot handle all the...