A new security flaw has been revealed within Google Chrome servers that has forced the company's engineers to launch a new update to prevent users' devices from getting a possible infection.
Google has confirmed from its blog that two zero-day vulnerabilities have been discovered in the sound component of the browser that allows third parties to execute malicious code and for that reason a new update has been urgently launched.
Kaspersky has announced that these attacks are known as Operation WizardOpium and that so far it has not been possible to associate with a specific group of hackers, but it was found that the virus contains slight similarities with Lazarus, an organization linked to North Korea .
At the end of 2016, Lazarus was able to subtract tens of millions of dollars from ATMs by committing servers in Asia and Africa affecting thousands of users in various parts of the world.
It is believed that the new Google Chrome vulnerability was exploited by a Korean news portal through a JavaScript code that allows hackers to analyze any user's computer and thus know if it can infect it or not.
Once it is known if it is possible to infect the computer, the hackers proceed to make a series of requests to the attacker's server that allows them to download the exploit code and thus be able to affect the user.
Google has not offered more details of these two vulnerabilities and asks users to update their browser as soon as possible to avoid being infected as the company works on a new security measure.
It is not the first time that Google Chrome faces serious security problems that could put its users' computers at risk, but fortunately the company has always tried to resolve those errors as quickly as possible.