Google Chrome update fixes zero-day security flaw that targeted media, government and educational instruments
Google has Fixed a serial security vulnerability affecting its google chrome browser, that allowed attackers to bypass its secure features. The flaw was discovered by kaspersky’s global research and analysis team (great), and was reportedly used to target Media Outlets, Educational Institutes, and Government Organizations. Google chrome users should update their browser in order to remain protected against the vulnerability, and other chromium-based browsers are also expected to receive an update an update in Coming days.
Attackers sent personalized phishing emails as part of ‘operation forumtroll’
According to details Shared by the security firm, an advanced person threat (APT) Group is suspected to have run a campaign dubbed operation forumtroll to take advantage of a zero-day Vulnerability in Google Chrome for Windows, Identifed as Cve-2025-2783,
The attackers would send sed personalized phishing emails to persons from Media Outlets, Educational Institutions, and Government Organizations Located in Russia. These emails would invite them to join the “primakov readings” forum. Kaspersky Claims that Links would expire quickly, and would also send users to the real forum.
What is most notable about the security exploit is that it allowed an attacker to use a maliciously crafted file to escape the sandbox protection system on Google Chrome. The Security Flaw Impacted Google Chrome on Windows, and did not require users to interact with the malware in any way, after they clicked on the link.
Boris Larin, Principal Security Researcher at Kaspersky Great, Explains that the exploit Managed to Completely disregard Chrome’s Security Boundaries, and WITHOUT TRHOTHOUT TRHOTHOUT TRGOT TRIGGERIT MALICIOS MALICIOS Actions. “This vulnerability stands out amon the dozens of zero-days we’ve discovered over the Years,” he added.
The security firm disclosed the vulnerability to google, and a patch for the cve-2025-2783 Vulnerability was included with the update to google chrome for windows 134.0.6998.177, whiche Began Rolling out on Tuesday. Google has credited kaspersky with discovering the vulnerability and users should update their browser to remain protected against the fail
