Google Chrome यूजर्स हो जाएं सावधान, CERT-In ने जारी किया अलर्ट

[{"selector":"#anim-2ca233ad-1cc7-4616-a961-fc85b1d4e6c6 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-10.015624757376356%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] [{"selector":"#anim-1df98f0d-3a87-401b-a47b-64144e370975","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-1d70ef07-12ce-44e5-8ae9-da3eca289283","keyframes":{"transform":["translate3d(-107.84314%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

भारत की साइबर सुरक्षा एजेंसी CERT-In (Indian Computer Emergency Response Team) ने एक बड़ा अलर्ट जारी किया है.

[{"selector":"#anim-bfcded77-040d-4b94-9220-4645e65f96bf [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-10.015624757376356%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] [{"selector":"#anim-1efd857b-f934-453a-baee-c1bd309dffda","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-fa8975c8-bd9d-4dc1-85ef-a475fcfa0152","keyframes":{"transform":["translate3d(-108.12324%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

CERT-In ने ये जानकारी दी है कि Google Chrome डेस्कटॉप ब्राउज़र और डेवलपर्स द्वारा इस्तेमाल किए जाने वाले प्लेटफॉर्म GitLab में सुरक्षा खामियां पाई गई हैं.

[{"selector":"#anim-15d0d77a-9657-4c74-9c02-8c0eb34be1fe [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-10.015624757376356%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] [{"selector":"#anim-e51cd75e-ae98-4323-a67e-9ffaf4af1733","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-49b4d5cd-c6ae-44c8-b85a-cd6be3933e33","keyframes":{"transform":["translate3d(-108.12324%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

जिसका फायदा साइबर अपराधी उठा रहे हैं और वो सिस्टम पर मनमाने कोड चला सकते हैं.

[{"selector":"#anim-d209eb16-79cb-4580-8e3f-d1a9f9a25509 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-10.015624757376356%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] [{"selector":"#anim-fb9ed166-f074-454b-aff8-d34cfc954b17","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-4f8a4bd0-7195-44cd-9886-fb68ea2162bf","keyframes":{"transform":["translate3d(-108.12324%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

CERT-In ने बताया है कि Google और GitLab दोनों ने इन समस्याओं के लिए सिक्योरिटी पैच और अपडेट्स जारी कर दिए हैं जिन्हें इंस्टॉल करने की सलाह दी गई है.

[{"selector":"#anim-6ecc1046-fd85-4871-853d-f2346c2271e2 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-10.015624757376356%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] [{"selector":"#anim-8e777188-c5c2-4736-a787-bea7f7fba920","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-f87bdb9c-3622-4203-a9dd-33d3789d70c8","keyframes":{"transform":["translate3d(-107.84314%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

CERT-In के अनुसार, Google Chrome के डेस्कटॉप वर्ज़न में कई खामियां सामने आई हैं. ये समस्या खासतौर पर उसके JavaScript इंजन में हैं जो वेबसाइट्स पर कोड को रन करता है.

[{"selector":"#anim-c57538b2-d82e-451b-af54-cba088379d7d [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-10.015624757376356%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] [{"selector":"#anim-b06badd8-7658-42e3-a224-063db0d6eda9","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-d0fec5aa-65d0-492f-ad4e-f0ededddcd7e","keyframes":{"transform":["translate3d(-108.12324%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

अगर इन खामियों का दुरुपयोग किया गया तो ये ब्राउज़र की परफॉर्मेंस और सिक्योरिटी दोनों को प्रभावित कर सकता है.

[{"selector":"#anim-177e8b3b-5e0e-41db-b723-d3b595b82b00 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-10.015624757376356%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] [{"selector":"#anim-83c52b79-343e-413c-9ea9-9b685783071e","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-d57e4013-5a67-4cd8-b98b-f87bfad86aa2","keyframes":{"transform":["translate3d(-107.84314%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

एजेंसी ने चेतावनी दी है कि कोई भी दूरस्थ हमलावर यूज़र्स को एक स्पेशल वेबसाइट लिंक भेजकर इन कमजोरियों का फायदा उठा सकता है.

[{"selector":"#anim-0540c51f-f63f-4008-b429-3966bcf123ec [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-10.015624757376356%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] [{"selector":"#anim-8c9fa70f-0887-43ff-a752-90e2e4d44005","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-67af5503-0cca-4dc7-8937-dced7b2bd0d6","keyframes":{"transform":["translate3d(-107.84314%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

इसके ज़रिए हैकर संवेदनशील जानकारी चुरा सकते हैं, सिक्योरिटी बाईपास कर सकते हैं या सिस्टम पर मनमाना कोड चला सकते हैं.

[{"selector":"#anim-8cf406d5-7cfd-44d3-93c6-bad08fa09e8c [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-10.015624757376356%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] [{"selector":"#anim-a5ddb330-5036-4016-9edc-03ba0d7497b4","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-3b798600-2d6c-4902-a066-0d76160d3774","keyframes":{"transform":["translate3d(-107.84314%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

CERT-In ने Chrome और GitLab यूज़र्स को सलाह दी है कि वे अपने सॉफ्टवेयर को तुरंत अपडेट करें और किसी भी संदिग्ध वेबसाइट या लिंक पर क्लिक करने से बचें.

[{"selector":"#anim-a214db71-878c-49be-af98-eacb3638d7d5 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-10.015624757376356%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] [{"selector":"#anim-b062bd08-c628-4ff3-8480-66a6822635f4","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-036e4d5a-1001-4ec8-9d30-a5c6eaba2035","keyframes":{"transform":["translate3d(-107.84314%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]