PTA Warns of Critical Google Chrome Security Flaws, Urges Immediate Update to Prevent Cyber Attacks

The Pakistan Telecommunication Authority (PTA) has issued an advisory calling on users to update their Google Chrome browsers immediately following the detection of two critical security flaws. These vulnerabilities affect all versions of Chrome before the latest security patch and could allow remote attackers to take control of targeted systems.
The first security flaw, CVE-2024-4671, allows attacker
PTA has advised users to install Google Chrome version 124.0.6367.207 or later to address these issues. To update, users should open Chrome, navigate to Settings > About Chrome, and restart the browser if prompted. The advisory also recommends activating automatic updates to ensure future security patches are applied without delay.
Users are encouraged to remain watchful for any unusual system behavior that might indicate an attack. PTA has requested individuals and organizations experiencing security incidents to report them via the PTA CERT Portal or through official email channels.
Earlier, on January 26, the National Telecom and Information Technology Security Board (NTISB) also released a cybersecurity warning regarding malicious browser extensions. The advisory highlighted that certain popular extensions, including ChatGPT-4, Gemini for Chrome, Bard AI Chat Extension, VPNCity, and VidHelper Video Downloader, have been compromised by hackers. These extensions, commonly used for AI tools and VPN services, were reportedly injected with malicious code, exposing users’ personal identifiable information (PII) to phishing threats.