CERT-In: India's cybersecurity agency, the Indian Computer Emergency Response Team (CERT-In), has issued a serious warning for users of macOS and Google Chrome. According to the agency, if the vulnerabilities found in these software programs are not addressed promptly, users' data could be stolen or their entire system could fall under the control of hackers.
Cyberattacks possible through malicious files
The CERT-In advisory states that certain Apple productivity apps and the Google Chrome browser have vulnerabilities that cybercriminals can exploit to launch attacks. This attack can be carried out through a specific type of file or a malicious request. Therefore, the agency has advised everyone, from individual users to institutions, to install the latest updates without delay.
Vulnerabilities found in Apple Pages and Keynote
In an advisory issued on January 29, CERT-In identified several security vulnerabilities in the Apple Pages and Keynote apps running on macOS. These vulnerabilities were present in versions prior to Pages 15.1 and Keynote 15.1. According to the agency, a technical flaw was found in Pages, while a vulnerability was also discovered in the QuickLook feature used in Keynote.
If a user accidentally opens a fake or specially crafted file, a hacker could gain access to sensitive information on that system. Apple has fixed these issues in a new update released on January 28, which works on macOS Sequoia 15.6 and later versions.
High-risk security flaw in Google Chrome
CERT-In has also expressed concern regarding the desktop version of Google Chrome. This critical vulnerability was found in older versions of Chrome running on Linux, Windows, and macOS. According to the agency, this problem is related to Chrome's Background Fetch API, where the code was implemented incorrectly. If this vulnerability is exploited, a hacker could remotely execute malicious code on the system. This means the entire computer could be compromised or essential services could be disrupted. Google fixed this issue in the Stable Channel update released on January 27.
Why Immediate Updates Are Crucial
CERT-In has clearly stated that installing the new updates released by Apple and Google immediately is the safest course of action. Users are also advised to read the official security notes to understand which devices and software are affected.
The Easiest Way to Stay Safe Online
Cybersecurity agencies believe that most attacks occur due to outdated software. Therefore, regularly updating your software, avoiding opening unknown files, and keeping your browser updated to the latest version are the easiest and most effective ways to stay safe online.
-
OHRC Declares 'Dahani' Word Criminal Offence; Seeks Tough Law Against Witch-Hunting In Odisha
-
Valentine's Day plans for couples who want romance without crowds or clichés
-
Unlocking Luck: The Astrological Benefits of Saffron
-
Why You Can't Bring Coconuts on a Plane: Understanding Airline Restrictions
-
Uniqlo's sell-out bag that looks a lot like £620 designer brand is back in new colour
