Tidio Live Chat Software - Add Tidio live chat software to your website in minutes. Contact visitors and turn them into happy customers. Enhance their experience and boost your sales. Get it for Free

Must Read

Google researchers have discovered four zero-day vulnerabilities in Chrome browser, Microsoft’s Internet Explorer, and Apple’s Safari that might have put users’ data at risk.

After the vulnerabilities were disclosed by Google’s Threat Analysis Group (TAG), Apple, Microsoft, and Google quickly patched those bugs.

Also Read

Zero-day vulnerabilities are unknown software flaws. Until they’re identified and fixed, they can be exploited by attackers.

“The four exploits were used as a part of three different campaigns. As is our policy, after discovering these zero-days, we quickly reported to the vendor, and patches were released to users to protect them from these attacks,” Google said in a statement.

Elegant Themes - The most popular WordPress theme in the world and the ultimate WordPress Page Builder. Get a 30-day money-back guarantee. Get it for Free

“We assess three of these exploits were developed by the same commercial surveillance company that sold these capabilities to two different government-backed actors,” the company informed.

In the first six months this year, there have been 33 zero-day exploits used in attacks that have been publicly disclosed this year — 11 more than the total number from 2020.

There is not a one-to-one relationship between the number of zero-days being used in the wild and the number of zero-days being detected and disclosed as in the wild.

“The attackers behind zero-day exploits generally want their zero-days to stay hidden and unknown because that’s how they’re most useful,” Google said.

This year, Apple began annotating vulnerabilities in their security bulletins to include notes if there is reason to believe that a vulnerability may be exploited in the wild. Google added these annotations to their Android bulletins.

“When vendors don’t include these annotations, the only way the public can learn of the in-the-wild exploitation is if the researcher or group who knows of the exploitation publishes the information themselves,” the TAG team added.

Google said that improvements in detection and a growing culture of disclosure likely contribute to the significant uptick in zero-days detected in 2021 compared to 2020 but reflect more positive trends.

“Increasing our detection of zero-day exploits is a good thing — it allows us to get those vulnerabilities fixed and protect users, and gives us a fuller picture of the exploitation that is actually happening so we can make more informed decisions on how to prevent and fight it,” the researchers noted.

Save up to 60% on OptinMonster

Stay updated

Subscribe to our newsletter and never miss an update on the latest tech, gaming, startup, how to guide, deals and more.

- Advertisement -
- Advertisement -

Latest

Grow Your Business

Place your brand in front of tech-savvy audience. Partner with us to build brand awareness, increase website traffic, generate qualified leads, and grow your business.

- Advertisement -

Grow Your Business

Get these business solutions, tools and services to help your business grow.
Elementor

Elementor -Join 5,000,000+ Professionals Who Build Better Sites With Elementor. Build your website with 100% visual design that loads faster and speeds up the process of building them.

WP Rocket

WP Rocket - Speed up your website with the most powerful caching plugin in the world. The website speed increase means better SEO ranking, user experience, and conversation. It’s a fact that Google loves a fast site.

Kinsta

Kinsta - If you are looking for WordPress managed hosting, Kinsta is in the leading front. Kinsta provides WordPress hosting for a small or large business that helps take care of all your needs regarding your website with cutting-edge technology.

OptinMonster

OptinMonster - Instantly boost leads and grow revenue with the #1 most powerful conversion optimization toolkit in the world. 700,000+ websites are using OptinMonster to turn their traffic into leads, subscribers, and sales.

Related

- Advertisement -
- Advertisement -