The Indian government’s cyber agency, CERT-In (Indian Computer Emergency Response Team), has issued an important warning for users of Google Chrome and Mozilla Firefox.
The agency discovered serious security vulnerabilities in both browsers that hackers could exploit to steal personal data or crash systems.
Who Is Most at Risk?
According to CERT-In:
Google Chrome: Mainly affects Chrome OS and ChromeOS Flex users.
Mozilla Firefox: Affects Firefox, Firefox ESR (Extended Support Release), and the Thunderbird email client.
Vulnerable Versions
Mozilla Firefox: All versions before v144
Mozilla Firefox ESR: Version 115.29 and earlier than 140.4
Mozilla Thunderbird: Version 140.4 and earlier than 144
Google Chrome OS: Versions before 16404.45.0
What Are the Risks?
Mozilla Firefox vulnerabilities:
Hackers can breach your system and steal sensitive data.
Issues include:
Use-after-free bug in MediaTrack-GraphImpl::GetInstance()
Memory corruption
Problems in the Web Extension API
Address Bar Spoofing (Android): Hackers can trick users by showing fake websites.
Google Chrome vulnerabilities:
Related to a Heap Buffer Overflow in Video, Sync, and WebGPU components.
Hackers can create fake websites to trick users into clicking and attack their system.
How to Protect Yourself
CERT-In advises users to update their browsers immediately. Both Google Chrome and Mozilla Firefox have released security patches to fix these issues.
Additional Safety Tips:
Enable Auto-Update for your browser.
Avoid using outdated versions.
Do not click on suspicious website or email links.
Keep your system security software updated.
