Google: New Chrome Zero-Day Being Exploited


The search advertising giant released a Chrome security refresh overnight with a warning that malicious hackers are actively exploiting a critical type confusion vulnerability to launch malware attacks.

“Google is aware of reports that an exploit for CVE-2021-30563 exists in the wild,” the company said in a cryptic line added to its advisory.

The vulnerability was anonymously reported to Google’s security response team.

As is customary, Google did not share additional details on the in-the-wild exploitation, the target OS, or indicators of compromise (IOCs) to help defenders look for signs of infection.