Hacker is exploting a zero-day vulnerability in Chrome

If you use Google Chrome, you may have noticed that Google has launched a new version. Normally, Google Chrome should complete an automatic update and upgrade to the latest version (v91.0.4472.114).

But if you use other software to disable the automatic update of Google Chrome, it is best to perform the update manually or use the Google Chrome installation package to upgrade.

The reason is that a high-risk security vulnerability appeared in the previous version of Google Chrome, and this zero-day vulnerability has been exploited by unknown hackers in the wild.

This means that hackers will discover and exploit the vulnerability before the vulnerability is fixed, and users will be affected by the vulnerability if they do not upgrade.

CVE-2021-30554 was discovered by an anonymous security researcher and notified to Google. The vulnerability is located in the WebGL instance attached to the Google browser and can be used to execute arbitrary code.

Based on security considerations, Google strongly recommends that users upgrade to the latest version immediately. If the upgrade is temporarily impossible, they should also raise their security awareness to avoid visiting unknown websites.