The National Computer Emergency Response Team (NCERT) has released a warning about a newly found zero-day vulnerability in Google Chrome, known as CVE-2025-2783.
This flaw is currently being exploited in Advanced Persistent Threat (APT) campaigns, including one referred to as ‘Operation ForumTroll.’ The vulnerability allows attackers to circumvent Chrome’s sandbox protections, which could lead to system compromises when users visit harmful websites. Media outlets, educational institutions, and government entities are among the main targets.
The advisory states that exploiting this vulnerability could result in remote code execution, unauthorized access to sensitive data, and privilege escalation, giving attackers extended control over affected systems. Security experts caution that such control could enable espionage and large-scale data theft to remote command-and-control servers. The consequences observed include malware installation, lateral movement within networks, and the introduction of additional payloads.
The attack typically starts with phishing emails disguised as invitations to legitimate events, like the Primakov Readings forum. When a victim clicks the link in Chrome, the vulnerability activates, downloading and executing malicious code without any further action from the user. This exploit arises from a logical flaw between Chrome and the Windows operating system, allowing attackers to bypass browser security measures.
All versions of Google Chrome before 134.0.6998.177/.178 for Windows are vulnerable, especially in environments where users are prone to phishing attacks. NCERT strongly advises users to update to the latest browser version released on March 25, 2025, and to enhance their security settings, monitor for signs of compromise, and implement strong endpoint detection and response solutions.
NCERT has highlighted the importance of isolating compromised systems, performing forensic analysis, and restoring affected devices from secure backups. It’s crucial to enhance email security, activate Enhanced Safe Browsing in Chrome, and ensure all relevant software is updated to mitigate risks. Due to the seriousness and continued exploitation of the vulnerability, prompt action is vital to avert further intrusions and data loss.
For more daily updates, please visit our News Section.