Cybersecurity firm Imperva Red has detected a flaw in Google Chrome and Chromium-based browsers that puts the data of over 2.5 billion users at risk. Dubbed CVE-2022-3656, the vulnerability allows for the theft of sensitive files such as crypto wallets and cloud provider credentials.
The issue arose from the way the browser interacted with symlinks (symbolic links) when processing files and directories. Specifically, the browser did not properly check if the symlink was pointing to a location that was not intended to be accessible, which allowed for the theft of sensitive files.
An attacker could create a fake website that offers a new crypto wallet service and trick the user into creating a new wallet by requesting that they download their ‘recovery’ keys.
These keys would actually be a zip file containing a symlink to a sensitive file or folder on the user’s computer, such as a cloud provider credential.
When the user unzips and uploads the ‘recovery’ keys back to the website, the symlink would be processed and the attacker would gain access to the sensitive file.
Imperva Red notified Google of the vulnerability and the issue was fully resolved in Chrome 108. It is advisable for users to always keep their software up to date in order to protect against such vulnerabilities.
With a high-severity vulnerability affecting as many as 2 billion Google Chrome users, it is important for users to take steps to protect themselves from hackers.