Google Chrome is a web browser that is used by people all over the world. According to the latest cyber security firm, a vulnerability in Google Chrome and Chromium-based browsers puts the data of over 2.5 billion users at risk.
Several crypto wallets and other online services require users to download recovery keys to access their accounts. The keys serve as a backup if the user loses access to the account. An attacker could exploit this by sending the user a zip file containing a symlink rather than the actual recovery keys.
Imperva Red, a cyber security firm, revealed the vulnerability dubbed ‘CVE-2022-365’ in a blog post, allowing the theft of sensitive files such as crypto wallets and cloud provider credentials.
Also read: Twitter hacked, private data of 200 million users exposed
The blog refers to a type of file known as a ‘Symlink,’ which refers to another file or directory. This file also instructs the operating system to treat the linked file or directory as if it were the original location.
According to the blog, if these symlinks are not handled properly, they can introduce vulnerabilities. The browser did not check to see if the symlink was pointing to a location that was not intended to be accessible, allowing sensitive files to be stolen.
Several cryptocurrency wallets and other services typically require users to download recovery keys to access their accounts, which serve as a backup if the user loses access to the account. However, an attacker can exploit this by sending the user a zip file containing a symlink rather than the actual recovery key. The attacker can access sensitive files on the user’s computer by processing the symlink if it is uploaded.
Because cryptocurrencies can be extremely valuable, hackers target individuals and organisations that own them. The blog recommends keeping software up to date and avoiding downloading files from malicious websites.