By Marty Hetzel
Senior Director, Information Security
As part of your company’s cybersecurity solution, we want to bring to your attention a recent security vulnerability that has been discovered in the Chrome Web browser and Apple’s operating systems (MacOS, iOS). Google has rated this vulnerability at the highest risk level, a 10/10. It has been noted that an exploit was active in the wild, however, its scale remains unknown at this time.
The Good News
Many leading web browser companies, including Google Chrome, Microsoft Edge, Mozilla Firefox, and Apple Safari, have already issued emergency updates to address this issue. Moreover, the latest versions of MacOS and iOS have fixes for this vulnerability.
What can you do?
Work with your IT teams to ensure your operating systems and browsers are always kept up-to-date. For Apple devices, make sure that you’re running the most recent version of the OS. Also, always keep third-party applications updated.
Are there ways to detect the malware?
Yes! Most next-generation antivirus and EDR solutions already detect the spyware containing these exploits. However, for effective detection, it’s essential to have these solutions installed on every device.
Is ComplyAuto impacted?
The ComplyAuto web portal does not use any of the vulnerable libraries. Furthermore, we are in active communication with our providers to make sure their software is not impacted.
If you would like to view the CVE for Google Chrome its here:
Or a very in-depth write up can be found here:
Stay safe and secure!