CERT-In: India’s cyber security agency Indian Computer Emergency Response Team or CERT-In has issued a serious warning for those using macOS and Google Chrome. According to the agency, if the flaws found in these software are not resolved in time, then users’ data may be stolen or the entire system may go under the control of hackers.
Dangerous files can cause cyber attack
CERT-In’s advisory states that some of Apple’s productivity apps and Google Chrome browser have vulnerabilities that can be exploited by cyber criminals to attack. This attack can be done through a special type of file or malicious request. For this reason, the agency has advised everyone from common users to institutions to install the latest update without any delay.
Flaw found in Apple Pages and Keynote
In an advisory issued on January 29, CERT-In has identified several security vulnerabilities in Apple Pages and Keynote apps running on macOS. These flaws were present in versions prior to Pages 15.1 and Keynote 15.1. According to the agency, a technical fault has been found in Pages, while a weakness has also been revealed in the QuickLook feature used in Keynote.
If the user accidentally opens a fake or specially prepared file, then the hacker can access sensitive information from that system. Apple has fixed these problems in a new update released on January 28, which works on macOS Sequoia 15.6 and newer.
High-risk security flaw in Google Chrome
CERT-In has also expressed concern about the desktop version of Google Chrome. This serious flaw has been found in older versions of Chrome running on Linux, Windows and macOS. According to the agency, this problem is related to Chrome’s Background Fetch API, in which the code was implemented incorrectly.
If this weakness is taken advantage of, a hacker can run dangerous code on the system remotely. This means that the entire computer can be taken under control or essential services can be stopped. Google has fixed this problem in the Stable Channel update released on January 27.
Why is it important to update immediately?
CERT-In has clearly said that the safest solution is to immediately install new updates released by Apple and Google. Along with this, users have been advised to read the official security notes also, so that they can understand which device and which software is affected.
Easy way to stay safe online
Cyber ​​security agencies believe that most attacks occur due to outdated software. In such a situation, updating from time to time, avoiding opening unknown files and keeping the browser on the latest version is the easiest and most effective way to stay safe online.
Also read:
One mistake of UPI and money is lost? If transferred to wrong account, will you get it back or not? Know the complete rules
