Google has released a security update to address a critical flaw in its Chrome browser for Windows, which hackers had been exploiting to gain unauthorized access to victims’ computers.
Security Flaw and Exploit Details
On Tuesday, Google announced that it had fixed the vulnerability, identified as CVE-2025-2783, which was initially discovered by cybersecurity researchers at Kaspersky earlier this month. The company confirmed that the flaw had been actively exploited in real-world attacks before the patch was issued, classifying it as a zero-day vulnerability—a type of bug that attackers exploit before developers have a chance to fix it.
According to Kaspersky, this security flaw was a key element in an attack campaign known as “Operation ForumTroll.” Hackers targeted Windows users running Chrome, using phishing emails to lure victims. These emails invited recipients to a Russian political summit, containing malicious links that directed them to a compromised website. Once victims clicked the link, the site exploited the Chrome vulnerability, allowing attackers to access data on the affected computer.
Impact and Targeted Attacks
Kaspersky revealed that the vulnerability allowed attackers to bypass Chrome’s sandbox protections, which are designed to prevent the browser from interacting with sensitive data on a user’s system. Additionally, they noted that other browsers built on Google’s Chromium engine were also affected by the flaw.
Further analysis by Kaspersky suggested that the hacking operation was likely part of an espionage campaign aimed at discreetly monitoring and stealing data from specific targets over time. The firm indicated that the attackers focused on Russian media professionals and employees in educational institutions, sending them highly personalized phishing emails.
While the exact identity of those behind the attacks remains unknown, Kaspersky attributed the campaign to a state-sponsored or government-backed hacking group based on the nature of the targets and the sophistication of the exploit.
High Demand for Zero-Day Exploits
Chrome, as one of the most widely used browsers, is a frequent target for both cybercriminals and government-backed groups. Vulnerabilities that can bypass browser security protections are highly valuable, with brokers offering millions of dollars for functional exploits. In 2024, some zero-day brokers were reportedly willing to pay up to $3 million for similar vulnerabilities.
Google’s Response
Google has assured users that Chrome updates are rolling out gradually over the coming days and weeks. To stay protected, users are advised to update their browsers immediately to the latest version.
