The Indian Computer Emergency Response Team (CERT-In) has issued an important security alert for Google Chrome users on Mac, Windows, and Chromebook devices. This advisory highlights serious vulnerabilities that could leave your device exposed to attacks, risking data theft, system crashes, and unauthorized access to sensitive information. Users are urged to update their software immediately to protect their devices.
What Are the Vulnerabilities?
CERT-In has identified two major security flaws in Google Chrome versions before 132.0.6834.83/8r for Mac and 132.0.6834.110/111 for Windows. These issues, labeled CIVN-2025-0007 and CIVN-2025-0008, can allow attackers to:
- Execute malicious code on your device
- Crash your system (Denial of Service or DoS attack)
- Bypass security measures
These vulnerabilities are mainly related to improper data handling and memory access problems within Chrome’s navigation features. This puts both individual and business users at risk, especially if their devices are running older versions of Chrome.
ChromeOS Devices and Chromebooks Also Affected
Google’s ChromeOS, the operating system used by Chromebooks, is also vulnerable. Devices running versions of ChromeOS older than 16093.68.0 could be targeted by hackers. The flaws could let attackers carry out remote code execution, spoofing, and even cross-site scripting attacks, all of which could compromise your personal data and security.
Who Needs to Act?
While desktop, laptop, and Chromebook users are most affected, mobile users are not as vulnerable. However, CERT-In still recommends that all users stay cautious and ensure their devices are updated regularly.
Why Immediate Action is Needed
If these vulnerabilities are left unchecked, cybercriminals could exploit them to steal sensitive information or crash your system. As these security flaws are actively being targeted by attackers, updating your device’s software is crucial to preventing damage and ensuring your safety online.
How to Protect Your Devices
To protect yourself, update your Google Chrome and ChromeOS as soon as possible. Here’s how:
- Update Google Chrome: Go to Chrome’s menu > Help > About Google Chrome. If there’s an update available, Chrome will automatically start downloading it.
- Update ChromeOS: Make sure your Chromebook is up to date by checking the system settings and installing any available updates.
For users who prefer automatic updates, enabling this feature is a smart way to ensure ongoing protection from future threats.
By taking these simple steps, you can safeguard your device against potential attacks and avoid security risks.
Urgent Warning for Chrome Users: Major Security Flaws Found in Mac, Windows, and Chromebook Devices
The Indian Computer Emergency Response Team (CERT-In) has recently issued an important security alert for users of Google Chrome on Mac, Windows, and Chromebook devices. This warning highlights several critical vulnerabilities that could leave your device exposed to cyberattacks, risking data theft, system crashes, and unauthorized access to sensitive information. CERT-In has emphasized the urgent need for users to update their software immediately to protect their devices from potential threats.
These vulnerabilities affect millions of users worldwide and could cause serious damage if left unaddressed. If you’re using Google Chrome on any of these platforms, it’s important to act fast and ensure your device is fully updated. In this article, we will break down what these vulnerabilities are, how they affect your devices, and what steps you need to take to keep your data safe.
What Are the Vulnerabilities?
CERT-In has flagged two major security flaws affecting Google Chrome on Mac and Windows. These vulnerabilities, identified as CIVN-2025-0007 and CIVN-2025-0008, affect versions of Chrome released before 132.0.6834.83/8r for Mac and 132.0.6834.110/111 for Windows. These flaws allow attackers to execute arbitrary code on the device, which could lead to various types of damage, including:
- System Crashes: Attackers can trigger a Denial of Service (DoS) attack that crashes the system.
- Data Theft: Attackers could gain unauthorized access to sensitive information.
- Bypassing Security Measures: The vulnerabilities allow attackers to bypass security protocols and gain control over the device.
These issues primarily stem from problems with how Google Chrome handles data and memory within the browser’s navigation features. If an attacker successfully exploits these flaws, they could take complete control over the affected device, steal private information, or render the device inoperable by causing crashes.
How Does This Affect Windows and Mac Users?
For Windows users, these vulnerabilities pose a significant threat. If exploited, attackers could use these flaws to gain access to private data, steal login credentials, or launch attacks on other devices connected to the network. The risks are equally severe for Mac users, with attackers able to execute malicious code on the device or cause system crashes.
Both individual and corporate users are at risk. Businesses that rely on Google Chrome for their day-to-day operations need to take immediate action to prevent data breaches, as hackers can use these vulnerabilities to access sensitive business information. If you’re a business owner, the best course of action is to ensure all devices in your organization are updated and protected against these risks.
Also Read:Lakshmi Manchu Slams Indigo Airlines Over Alleged Harassment and Misconduct
Chromebook and ChromeOS Devices Also Vulnerable
Google’s ChromeOS, the operating system used by Chromebooks, is not immune to these vulnerabilities. Devices running older versions of ChromeOS (before 16093.68.0) are also at risk. These flaws, which include stack buffer overflows, integer overflows, and other types of memory access issues, could allow attackers to execute remote code, spoof user identities, or carry out cross-site scripting attacks.
Chromebook users should be aware that malicious websites could exploit these weaknesses to bypass security measures or gain access to private data. The consequences of such attacks could range from data theft to the complete compromise of the device’s security.
While mobile users (smartphones and tablets) are generally less affected by these vulnerabilities, CERT-In advises that all users, regardless of their device, stay cautious and ensure their software is updated regularly. Even if the risk is lower on mobile devices, it’s always a good idea to stay vigilant about security.
Why Immediate Action Is Crucial
If you ignore these vulnerabilities, the consequences can be severe. Cybercriminals are constantly on the lookout for weaknesses in widely-used software like Google Chrome, and they are actively trying to exploit these flaws. If successful, attackers could steal personal information, use your device to launch attacks on other networks, or even render your system unusable by triggering crashes or denial-of-service attacks.
The risks are even more significant for businesses. If an organization’s devices are vulnerable to these exploits, hackers could steal sensitive customer data, disrupt business operations, or even hold data hostage through ransomware attacks. For this reason, immediate action is crucial.
How to Protect Your Devices
To protect yourself from these risks, the most important step you can take is to update Google Chrome and ChromeOS as soon as possible. Here’s how:
- Update Google Chrome:
- Open Google Chrome on your device.
- Click the three dots in the top-right corner and go to Help > About Google Chrome.
- Chrome will check for updates automatically and install the latest version if available. Once the update is complete, restart your browser to ensure the changes take effect.
- Update ChromeOS (for Chromebook users):
- Go to Settings on your Chromebook.
- In the left menu, click About ChromeOS.
- Select Check for updates. If an update is available, ChromeOS will download and install it automatically.
- Restart your Chromebook once the update is complete.
It is also recommended that users set their devices to receive automatic updates. By doing so, your device will always be protected against the latest security threats without needing to manually check for updates.
For businesses, it’s especially important to ensure that all devices, including employee laptops and Chromebooks, are updated promptly. Failing to do so can result in a security breach that could have far-reaching consequences for the company and its customers.
Final Thoughts
The vulnerabilities affecting Google Chrome on Mac, Windows, and ChromeOS devices are serious and must be addressed as soon as possible. Hackers are actively exploiting these flaws to launch attacks, so updating your software is essential to protect your data and ensure your device runs smoothly.
By following the simple steps outlined in this article, you can safeguard your personal information and avoid the risk of falling victim to cyberattacks. Regularly updating your software, enabling automatic updates, and being mindful of security practices will go a long way in keeping your devices secure. Stay safe and ensure your device is up-to-date today!