The Indian Computer Emergency Response Team (CERT-In) has issued a high-priority security alert regarding critical vulnerabilities in Google Chrome for macOS, Windows, and Linux. Identified under Vulnerability Note CIVN-2025-0024, these security flaws could allow cybercriminals to execute malicious code, gain unauthorized access, and potentially compromise sensitive user data.

The severity of these vulnerabilities raises significant concerns for both individual users and organizations, as they could lead to identity theft, financial fraud, or large-scale data breaches. Businesses and government institutions using outdated Chrome versions are particularly at risk of cyberattacks. CERT-In has strongly advised all Chrome users to update their browsers immediately to mitigate potential threats.

CERT Issues Security Warning to Google Chrome Users

The security vulnerabilities identified by CERT-In affect users running outdated versions of Google Chrome across various operating systems. Specifically, the impacted versions are:

• Google Chrome versions earlier than 133.0.0043.59/.99 for Windows and Mac
• Google Chrome versions earlier than 133.0.6943.98 for Linux

Users operating these older versions are at a high risk of cyberattacks, which could lead to unauthorized access, data theft, and system compromise. This threat is not limited to individuals but also extends to businesses and organizations that rely on Google Chrome for daily operations. Hackers exploiting these vulnerabilities can target users storing passwords, banking details, and confidential business data in Chrome, increasing the risk of severe security breaches.

Potential Risks and Consequences

If left unpatched, these security flaws could lead to serious consequences, including:

• Remote Code Execution (RCE): Hackers can remotely control an affected system, injecting malicious scripts or running unauthorized programs.
• Unauthorized Access: Attackers may gain access to personal or corporate data, leading to identity theft or financial fraud.
• Phishing and Malware Attacks: Cybercriminals could exploit these vulnerabilities to install malware, steal login credentials, or deploy phishing scams.
• Data Breaches: Organizations may suffer large-scale data leaks, leading to reputational damage and legal consequences.

Update Google Chrome to Protect Your System

CERT-In and Google have strongly advised users to update their Chrome browsers immediately to the latest stable version. Here’s how you can protect your system:

• Open Google Chrome on your computer.
• Click on the three-dot menu in the top-right corner of the browser.
• Go to Help > About Google Chrome.
• Chrome will automatically check for updates and install the latest version.
• Restart the browser to apply the updates.

Alternatively, users can manually download the latest version by visiting the official Google Chrome update page.

In addition to updating Chrome, users should follow these cybersecurity best practices:

• Enable automatic updates to receive the latest security patches promptly.
• Avoid downloading unverified extensions that could exploit security vulnerabilities.
• Use strong, unique passwords and enable two-factor authentication (2FA) for added security.
• Stay alert for phishing emails and suspicious links that may attempt to exploit browser vulnerabilities.

With cyber threats evolving rapidly, keeping software up to date is crucial for protecting personal and organizational data. Chrome users are strongly encouraged to install the latest updates immediately to safeguard their devices and sensitive information from potential cyberattacks.

Join the community of 2M+ industry professionals

Subscribe to our newsletter to get the latest insights & analysis.

Download ETCISO App

• Get Realtime updates
• Save your favourite articles

Scan to download App