Last week Google discovered a zero-day vulnerability in Chrome that the Google Threat Analysis Group determined was being actively exploited in the wild. The vulnerability, tracked as CVE-2019-5786, resides in the web browsing software and impacts all major operating systems, including Windows, Apple macOS and Linux.
Google quickly released a patch for Chrome browsers to address this, so the fix is relatively simple: update Google Chrome immediately to the latest version (72.0.3626.121 (Official Build)) of the web browsing application.
How can Duo help?
On Duo Access and Beyond, Duo’s browser policy allows you to warn or completely block out-of-date browsers and show users which browsers and versions are allowed. Duo’s policies can be applied at various levels, including globally, group specific and application specific, allowing you to choose where best to apply the appropriate controls.
Read the full blog post here: https://duo.com/blog/minimizing-your-exposure-to-chrome-s-zero-day-exploit