Experts from the security firm EdgeSpot have discovered a new zero-day vulnerability affecting Google Chrome web browser. This flaw allows hackers to steal personal data from users when they open malicious PDF files using Google Chrome browser.
A new vulnerability was already spotted in the wild and is being exploited by hackers. To make things worse, it seems that the fix won’t be coming until late April. Luckily, if the malicious PDF files are opened with Adobe Acrobat or Microsoft Edge browser, no data will be compromised. Another good thing is that the default app for opening PDF files on Windows 10 is Microsoft Edge, so most users shouldn’t be affected by this exploit.
Let’s explain how this exploit works. When a user opens an infected PDF file, outbound traffic redirects the user data to two domains (readnotify.com and burpcollaborator.com). These two websites then collect exposed user information which includes IP address, Operating System and Google Chrome version used on the PC. Along with this, a full path of the PDF file on the user’s computer is also collected.
Unfortunately, infected PDF files are able to bypass Google Chrome’s integrated protection along with third-party anti-virus tools that might be used on the user’s PC. For now, the best advice to stay on the safe side is not to use the Chrome browser for opening PDF files until Google releases Chrome 74 that is planned for April 23.