Serious vulnerability in Google Chrome and Microsoft Edge browsers

What has happened?

Google has reported a serious security vulnerability with the Chrome browser which also affects the Microsoft Edge browser. Google has warned that it is actively exploited by cyber attackers. As this could potentially lead to systems compromise and data loss/leakage, we urge you to take action immediately.

Which Google Chrome and Microsoft Edge versions are vulnerable?
  • Google Chrome on Windows version 104.0.5112.81 or earlier
  • Google Chrome on Mac and Linux version 0.5112.81 or earlier
  • Microsoft Edge on Windows and Mac version 0.1293.60 or earlier
What do I need to do?

Check that your Google Chrome and Microsoft Edge browsers are the latest versions and if not, update immediately using the instructions below:

For Google Chrome on Windows, Mac and Linux

  1. Verify you are on version 0.5112.101 or later using Menu [] -> Help -> About Google Chrome:
  2. If you are not, select Update Google Chrome, wait for the update to complete and restart your browser.

Detailed instructions available at https://support.google.com/chrome/answer/95414

For Microsoft Edge on Windows and Mac

  1. Verify you are on version 0.1293.63 or later using Menu [] -> Help and Feedback -> About Microsoft Edge
  2. If you are not, select Download and install, wait for the update to complete and restart your browser.

Detailed instructions available at https://support.microsoft.com/en-us/topic/microsoft-edge-update-settings-af8aaca2-1b69-4870-94fe-18822dbb7ef1

For more information

Please refer to the official advisory from SingCERT: https://www.csa.gov.sg/en/singcert/Alerts/al-2022-041
Please contact NUS IT Care at 6516 2080 or ITCare@nus.edu.sg should you have any queries.

 

 

Let’s all work together to keep NUS secure, bIT by bIT.