Yesterday, Google engineers released an urgent update for the Chrome browser to patch an actively exploited zero-day.
The release of Chrome 78.0.3904.87 fix two high severity vulnerabilities, one affecting Chrome’s audio component (CVE-2019-13720) while the other resides in the PDFium (CVE-2019-13721) library, and both could enable remote attackers to gain privileges just by convincing targeted users into visiting a malicious website, allowing them to escape sandbox protections and run arbitrary malicious code.
Kaspersky researchers Anton Ivanov and Alexey Kulaev discovered that the audio component issue is already exploited in a campaign dubbed Operation WizardOpium: some “very weak code similarities” suggest a possible connection to the Lazarus Group, a threat actor linked to North Korea.
- Chrome Releases: Stable Channel Update for Desktop
- Chrome 0-day exploit CVE-2019-13720 used in Operation WizardOpium