The National Information Technology Development Authority (NITDA) has issued an urgent public alert regarding critical security vulnerabilities identified in the Google Chrome browser.
The agency said the vulnerability, tagged CVE-2024-797, was discovered by Google and is currently being actively exploited by cyber attackers targeting online users.
The flaw, classified as a “type confusion” vulnerability, exists within Chrome’s V8 JavaScript engine, which plays a key role in how the browser handles JavaScript files. This vulnerability is caused by the browser’s misinterpretation of data types, resulting in memory corruption.
This could allow an attacker to run malicious programs on devices that have not yet been updated to the latest version of Chrome.
significant impactNITDA, through its Emergency Response Team (CERRT), has warned that the impact of this vulnerability is severe as an attacker could gain complete control of the affected system.
“This vulnerability could allow an attacker to exploit memory corruption caused by misinterpretation of data types to gain complete control of an affected system.
“This could allow an attacker to bypass security protocols and measures, execute malicious code, or even cause a system crash.
“This vulnerability is particularly dangerous because it can be triggered simply by visiting a malicious website,” NITDA said.
precautionary measuresIn response to this threat, NITDA advises all Google Chrome users to immediately update their browser to the latest version.
Recommended versions are 128.0.6613.84/.85 for Windows and macOS and 128.0.6613.84 for Linux.
Users can check for updates by going to the Chrome menu, selecting (Help), clicking (About Google Chrome), and applying available updates.
Additionally, users of Chromium-based browsers such as Microsoft Edge, Brave, Opera, and Vivaldi are also encouraged to apply required updates as soon as they become available.
The agency emphasizes that timely updates are important to protect against potential exploits and maintain the security of personal and organizational systems.
What you need to know
This warning from NITDA is the latest in a series of warnings about growing cyber threats targeting internet users in Nigeria and around the world.
In recent months, the number of security advisories issued by cybersecurity agencies has increased, highlighting the growing sophistication and frequency of cyberattacks. Exploiting browser vulnerabilities has become a common tactic used by cybercriminals to break into systems and steal sensitive information.
This trend highlights the importance of keeping software up to date as cyber threats continue to evolve.
As attackers become increasingly adept at identifying and exploiting vulnerabilities, the need for vigilance and proactive cybersecurity measures is more important than ever.
Follow us to get the latest news and market information.