Today, Google is the only reliable source of information for anything. The risk of a data breach is growing along with acceptance. A popular web browser with billions of users worldwide is Google Chrome. The data of over 2.5 billion users is at risk due to a vulnerability discovered by the cyber security company Imperva Red in Google Chrome and Chromium-based browsers.
According to the organisation, the CVE-2022-3656 vulnerability enables the theft of private information, such as login information for cloud service providers and cryptocurrency wallets. The fault was found, according to the blog, while analysing how the browser communicates with the file system, specifically searching for general problems with how browsers handle symlinks.
According to Imperva Red, a symbolic link is a type of file that points to another file or directory. The operating system can then handle the linked file or directory as if it were physically existent where the symlink is. According to this, a symlink can be useful for creating shortcuts, modifying file paths, or organising files in a more flexible way. These linkages could also be used to reveal vulnerabilities if they are not properly handled.
The business claims that a hacker might create a fake website that advertises a brand-new cryptocurrency wallet service in order to illustrate how the bug affected Google Chrome. The website can then trick the customer into creating a new wallet by requesting them to download their “recovery” keys.
