House › Vulnerabilities

Google Paid Out $90,000 for Vulnerabilities Patched by Chrome 104

By Eduard Kovacs on August 03, 2022

Tweet

Google has patched 27 vulnerabilities with the discharge of Chrome 104 on Tuesday, and the researchers who reported a few of these safety holes earned hundreds of {dollars} in bug bounties.

The web large has paid out a complete of roughly $90,000 for the issues patched within the newest model of Chrome, however it has but to find out the rewards for 2 of the problems, together with a high-severity bug.

The very best bug bounty, $15,000, was earned by an nameless researcher who found a use-after-free vulnerability within the Omnibox element.

Use-after-free vulnerabilities are generally present in Chrome. A majority of these flaws can usually be exploited to flee the browser’s sandbox, however they’re in lots of circumstances solely helpful to attackers when mixed with different flaws.

Researchers Nan Wang and Guang Gong of 360 Alpha Lab earned $10,000 for a use-after-free within the Protected Looking element. The white hat hackers have additionally been awarded an extra $7,000 for 2 different vulnerabilities.

Others obtained between $1,000 and $7,000 for his or her findings.

Not one of the vulnerabilities seems to have been exploited in assaults. Google has discovered about 4 actively exploited Chrome flaws this yr, together with CVE-2022-2294, which has been linked to an Israeli adware firm and utilized in focused assaults geared toward entities within the Center East.

Associated: Secretive Israeli Exploit Firm Behind Wave of Zero-Day Exploits

Associated: Google Makes an attempt to Clarify Surge in Chrome Zero-Day Exploitation

Associated: North Korea Gov Hackers Caught Sharing Chrome Zero-Day

Get the Every day Briefing

• Most Current
• Most Learn

• Robinhood Crypto Penalized $30M for Violating NY Cybersecurity Rules
• Energy Electronics Producer Semikron Focused in Ransomware Assault
• Thoma Bravo to Purchase Ping Identification for $2.eight Billion
• Cybersecurity Financing Declined in Q2 2022, However Buyers Optimistic
• Cybersecurity M&A Roundup: 39 Offers Introduced in July 2022
• Google Paid Out $90,000 for Vulnerabilities Patched by Chrome 104
• The Ever-Rising Difficulty of Cyber Threats – and the Zero Belief Reply
• Almost $200 Million Stolen From Cryptocurrency Bridge Nomad
• UK Clears Norton’s $8B Avast Cyber Safety Takeover
• Hacking Fears Delay UK’s Conservative Management Vote

On the lookout for Malware in All of the Improper Locations?

First Step For The Web’s subsequent 25 years: Including Safety to the DNS

Tattle Story: What Your Pc Says About You

Be in a Place to Act By Cyber Situational Consciousness

Report Reveals Closely Regulated Industries Letting Social Networking Apps Run Rampant

2010, A Nice 12 months To Be a Scammer.

Do not Let DNS be Your Single Level of Failure

Find out how to Determine Malware in a Blink

Defining and Debating Cyber Warfare

The 5 A’s that Make Cybercrime so Enticing

Find out how to Defend In opposition to DDoS Assaults

Safety Budgets Not in Line with Threats

Anycast – Three Causes Why Your DNS Community Ought to Use It

The Evolution of the Prolonged Enterprise: Safety Methods for Ahead Pondering Organizations

Utilizing DNS Throughout the Prolonged Enterprise: It’s Dangerous Enterprise

Orbit Brain

http://orbitbrain.com/

Orbit Brain is the senior science writer and technology expert. Our aim provides the best information about technology and web development designing SEO graphics designing video animation tutorials and how to use software easy ways
and much more. Like Best Service Latest Technology, Information Technology, Personal Tech Blogs, Technology Blog Topics, Technology Blogs For Students, Futurism Blog.