Google Patches Chrome Zero-Day Used in Targeted Attacks

Google has released a critical security update to address a dangerous zero-day vulnerability in Chrome, actively exploited in targeted cyberattacks. The flaw, listed as CVE-2025-2783, was uncovered by Kaspersky’s Global Research and Analysis Team (GReAT), who linked it to a coordinated attack campaign known as Operation ForumTroll.

What Happened?

The vulnerability allowed hackers to bypass Chrome’s sandbox protection, a key security feature designed to isolate malicious processes. Exploiting the flaw, attackers were able to run malicious code directly on users’ systems with little to no user interaction.

This attack targeted media outlets, government institutions, and academia, primarily in Russia, through deceptive phishing emails that redirected victims to the legitimate “Primakov Readings” forum after silently executing malicious code in the background.

Why This Zero-Day Matters

• Requires minimal user action: Just clicking a link triggered the exploit.
• No downloads necessary: No suspicious files or attachments involved.
• Stealthy execution: Victims rarely realized their devices were compromised.

Boris Larin of Kaspersky noted:

“This zero-day exploit is one of the most sophisticated we’ve seen. It bypassed Chrome’s security architecture without leaving obvious traces.”

Operation ForumTroll: A Deeper Look

This campaign used personalized phishing emails disguised as event invitations to a legitimate geopolitical forum. Once clicked, the link launched the exploit in the background before forwarding the user to the actual event page, increasing credibility and evading suspicion.

The operation has been attributed to an Advanced Persistent Threat (APT) group with the resources and sophistication to target high-value individuals through stealth and precision.

How to Protect Yourself

🔧 Update Google Chrome Immediately

1. Open Chrome.
2. Click the three-dot menu > Help > About Google Chrome.
3. Chrome will check for updates and install the patch.
4. Restart the browser to apply the fix.

📩 Beware of Phishing Emails

• Don’t click links in unexpected emails—even if they appear official.
• Verify sender addresses and check for inconsistencies in domain names.

🛡️ Turn On Enhanced Safe Browsing

• Go to Settings > Privacy and Security > Safe Browsing.
• Select Enhanced Protection for real-time phishing and malware alerts.

Looking Ahead

Google and Kaspersky are continuing to investigate the full scope of the exploit. Chromium-based browsers like Microsoft Edge, Brave, and Opera are expected to release patches soon.

This incident highlights the increasingly advanced nature of cyber threats, particularly against high-profile sectors. While Google strengthens its security framework, user vigilance remains a key defense.

Stay updated. Stay alert. Stay safe.