Club Benefits
You are now subscribed
Your newsletter sign-up was successful
Want to add more newsletters?
Daily (Mon-Sun)
Tom's Guide Daily
Sign up to get the latest updates on all of your favorite content! From cutting-edge tech news and the hottest streaming buzz to unbeatable deals on the best products and in-depth reviews, we’ve got you covered.
Weekly on Thursday
Tom's AI Guide
Be AI savvy with your weekly newsletter summing up all the biggest AI news you need to know. Plus, analysis from our AI editor and tips on how to use the latest AI tools!
Weekly on Friday
Tom's iGuide
Unlock the vast world of Apple news straight to your inbox. With coverage on everything from exciting product launches to essential software updates, this is your go-to source for the latest updates on all the best Apple content.
Weekly on Monday
Tom's Streaming Guide
Our weekly newsletter is expertly crafted to immerse you in the world of streaming. Stay updated on the latest releases and our top recommendations across your favorite streaming platforms.
Join the club
Get full access to premium articles, exclusive features and a growing list of member rewards.
Google has fixed a new zero-day flaw in Chrome that hackers are using in their attacks just days after addressing a similar flaw.
As reported by BleepingComputer, these new emergency security updates fix an out-of-bounds write bug (tracked as CVE-2024-4761) in Chrome’s V8 JavaScript engine. These types of flaws typically occur when a program is allowed to write data outside of a specified array or buffer, which can potentially lead to unauthorized access, arbitrary code execution or even crashes.
In a new security advisory, Google explained that it is aware of the fact that an exploit for this zero-day exists in the wild. However, just like with the use-after-free bug the search giant patched only a few days ago, details about the flaw itself are being “restricted until a majority of users are updated with a fix.”
How to stay safe from zero-day attacks
Unlike with other cyberattacks, there isn’t much you can do to stay safe from attacks that leverage zero-day vulnerabilities besides keeping your browser and other software updated to the latest version.
In Chrome, Google uses a color-coded warning system to inform you that a new update is available for its browser. If you look at your profile picture, a bubble will appear next to it when there’s an update. It will be green for a 2-day-old update, orange for a 4-day-old update and red when an update was released at least a week ago.
For those who don’t want to wait for this bubble to appear, you can also manually check to see if an update for Chrome is available by clicking on the three-dot menu in the upper right-hand corner of your browser. From there, you need to open Settings and then go to About Chrome. If an update is ready to be installed, Chrome will automatically begin downloading it, and it will be applied the next time you restart your browser.
In addition to keeping Chrome up to date, you should also consider using the best antivirus software on your PC, the best Mac antivirus software on your Mac and one of the best Android antivirus apps on your Android smartphone. Combining regular software updates with antivirus software will protect you and your devices from the latest threats.
So far this year, this is the sixth zero-day flaw in Chrome that Google has discovered and subsequently patched. These kinds of stories may seem scary at first, but by finding and fixing these flaws, the search giant is ensuring that users won’t be attacked by hackers when using its browser.
More from Tom's Guide
- This Android malware is stealing passwords by impersonating popular apps
- 3 Google Chrome features to activate now if you want to stay safe online
- Massive Dell data breach hits 49 million users — what you need to know
