CISA Warns Google Chrome, Excel Users About Two New Hacking Exploits; Federal Agencies Urged to Take Action

Federal agencies are now urged to take safety measures.

CISA is now warning Google Chrome and Microsoft Excel users over two new exploits that could enable malicious actors to easily get access to computers.

CISA Warns Google Chrome, Excel Users About Two New Hacking Exploits; Federal Agencies Urged To Take Action
Participant hold their laptops in front of an illuminated wall at the annual Chaos Computer Club (CCC) computer hackers' congress, called 29C3, on December 28, 2012 in Hamburg, Germany. Patrick Lux/Getty Images

The Cybersecurity and Infrastructure Security Agency said that the newly discovered security flaws show that there's an urgent need for reinforced digital security.

Aside from civilian users, the operational component of DHS is strongly warning federal agencies since they are the ones that could become the main targets of hackers.

CISA Warns Google Chrome, Excel Users About Two New Hacking Exploits

According to Fox News' latest report, one of the security vulnerabilities was found in a library that reads Microsoft Excel files. It was identified by security firm Barracuda, which claimed that Chinese hackers already used the exploit in December 2023.

Meanwhile, CISA said that the other security vulnerability is a zero-day that comes in the form of cyberhacking on an open-source project.

Hackers are using it to overload browsers, causing the computer to crash. Aside from this, the vulnerability could also give them permission to do whatever they want on the PC.

What's worse about this exploit is that it doesn't only affect Google Chrome. Other open-source web browsers that use WebRTC to communicate are also at risk.

Since these two new exploits are pretty serious, BNN Breaking reported that CISA issued a deadline to federal agencies to take action, which is Jan. 23.

To help federal agencies and civilian users, CISA provided some tips on what to do to prevent hackers, as well as practices in case of an actual security breach.

CISA's Cybersecurity Tips

CISA Warns Google Chrome, Excel Users About Two New Hacking Exploits; Federal Agencies Urged To Take Action
An engineer from the Israeli company "Commun.it" uses his expertise in social media commercial analysis to identify networks of fake users during at the group's office in the Israeli city of Bnei Brak near Tel Aviv on January 23, 2019. JACK GUEZ/AFP via Getty Images

CISA said that federal agencies need to ensure that they are only using trusted open-source applications; install antivirus protection; be cautious when accessing unknown attachments and links; as well as keep software up to date.

Aside from these, here are other safety practices that federal agencies can rely on to prevent hackers from accessing their computers:

Preventing Hackers

  • Always update software and other applications that are installed on PCs.
  • Only install reliable and safe antivirus protection; invest in this cybersecurity software if possible.
  • Never open links and attachments from unknown senders.

What To Do When Hacked

  • Change the passwords of your online accounts immediately. If you are accessing your bank accounts via the compromised computer, contact your bank right away.
  • When your PC is hacked, always monitor your online accounts and transactions.
  • If you are sure that your computer has been compromised, inform your contacts right away to protect them from hackers as well.
  • If you're okay with it, always conduct a factory reset.
Tags
Google
Real Time Analytics