SINGAPORE - Users of Google's Chrome browser on Windows, Mac and Linux computers are advised to install the latest update immediately, the Cyber Security Agency of Singapore (CSA) said on Thursday (Aug 18).
Google has rolled out a security update to its Chrome browser that addresses multiple vulnerabilities.
The 11 flaws include a high-severity one, which is being exploited "in the wild" - meaning hackers might already be using it to target ordinary devices - the tech giant said in its update notes on Tuesday (Aug 16).
Besides a brief technical description of each fix in the update, Google did not provide further information about the vulnerabilities.
“Google typically does not reveal many technical details about critical vulnerabilities until a majority of users have had the chance to update their browser,” said Dr Stas Protassov, co-founder and technology president of cyber-security firm Acronis.
It usually discloses information about 90 days after a vulnerability has been reported, he added.
Noting that the high-severity flaw was reported on July 19, he expects details on the vulnerability to be revealed in October.
Mr Biswajit De, senior technical consultant at Trend Micro, noted from the flaw’s brief description that it involves a feature in the browser which enables the launching of applications and Web services directly from a webpage.
“As the world’s No. 1 browser, it is of utmost importance for users to... download the necessary security updates to avoid falling victim to malicious attacks,” he added.
The Chrome browser on a computer usually updates automatically after it has been closed and reopened.
But users can check if they are using the latest version by clicking on the three dots in the top right corner of the browser, accessing “Help”, and then clicking on “About Chrome”.
An “Update Google Chrome” button will be present if the browser has not been updated with the latest patch. Clicking it will apply the update.