Author: Kevin

Surfers beware, the latest in the Pandora’s box is the Google Chrome vulnerability codenamed CVE-2022-3656. The new vulnerability allowed for theft of crypto wallets and cloud data/credentials, essentially allowing for easy theft of sensitive data and files on the system. It’s specifically related to symlinks and the way how browsers treat them. The vulnerability was discovered through a review of the ways the browser interacts with the file system, specifically looking for common vulnerabilities related to the way browsers process symlinks. How careful do you need to be? This vulnerability does not affect users who surf the internet just for…