On April 2, Kaspersky Security Company announced that it had discovered and supported patching a serious zero-day vulnerability in the Google Chrome browser (CVE-2025-2783).
Specifically, in mid-March, Kaspersky detected a wave of infections that occurred when users clicked on personalized phishing links sent via email.
Once the link is clicked, the user's system is immediately compromised, even if the person does not perform any further actions.
After analyzing and confirming that the attack was exploiting a previously undiscovered vulnerability in the latest version of Chrome, the Kaspersky team immediately alerted Google's security team.
A security patch for this vulnerability was later released on March 25, 2025.
Security firm Kaspersky said it has discovered and helped patch a serious zero-day vulnerability in the Google Chrome browser.
Kaspersky named this campaign "Operation ForumTroll", because the attackers used the form of sending emails inviting victims to attend the "Primakov Readings" forum to carry out fraud.
Key targets include media outlets,educational institutions, and government agencies in Russia. More sophisticated, the malicious links are short-lived to avoid detection.
And in most cases, the links will redirect to the legitimate Primakov Readings website to cover the tracks after the scam is complete.
Kaspersky's analysis suggests that the campaign is primarily for espionage purposes. Evidence gathered points to the campaign being linked to an APT group.
“This vulnerability is significantly more dangerous than the dozens of zero-day vulnerabilities we have discovered over the years,” said Boris Larin, Head of Security Research at Kaspersky’s GReAT.
Attackers exploit this vulnerability to bypass Chrome's sandbox protection mechanism without performing any explicit actions, as if the browser's security system is almost non-existent."
He recommends that all users update Google Chrome and other Chromium-based browsers to the latest version to avoid the risk of being attacked.
Kaspersky security experts recommend taking the following measures to protect against complex threats such as updating operating systems and web browsers, considering using solutions such as Kaspersky Next XDR Expert, AI/ML applications...
Previously, Kaspersky's GReAT team also discovered another zero-day vulnerability in Chrome (CVE-2024-4947). This vulnerability was exploited by the Lazarus APT group in a cryptocurrency theft campaign.
Source: https://nld.com.vn/nguoi-dung-chrome-can-biet-lo-hong-nay-de-khong-bi-hack-196250402201803688.htm
Comment (0)