As per the latest buzz in the media, the Cybersecurity researchers had found a new flaw in Google Chrome, which may allow attackers to remotely run malicious code inside the popular web browser. As per reports, the SQLite vulnerabilities are five in total and have been known as “Magellan 2.0”, which are disclosed by the Tencent Blade security team. Both Google and the group SQLite have given the confirmation about this issue and have confirmed about the same along with fixing the issue and thus they are not seen helping several other vendors as much as they can. The company, however, claim that they are yet to find any kind of proof for the wild abuse of the bug and thus would not going to disclose any details about the same came the tweet from Chinese Tencent Blade Team.
Meanwhile, the bug Magellan 2.0 seems to be on its way claimed the Blade researcher @leonwxqian found another set of vulnerabilities in #SQLite which can only result in remote code execution with the WebSQL, the leaking programme memory or via the possible programme crashes claimed the tweet from the team. All the applications, which are seen using the SQLite database are seen getting vulnerable to the said bug or Magellan 2.0. However, the reports claimed that the threat looms are less exploiting in nature and much smaller when we compare the same with the Chrome where we see the feature known as ‘WebSQL API’ coming in the form of remote attack for the users.
The same team dealing with Tencent Blade Security shared the idea along with unleashing the“Magellan SQLite” vulnerabilities as seen in December 2018. An attacker can easily craft an SQL operation, which comprises of the malicious code. As per the same team, there have been more than five Magellan 2.0 vulnerabilities, which seemed to be fixed in Google Chrome “79.0.3945.79” version. Meanwhile, in the latest version of Chrome, we can see a number of users noticing their secondary profiles for losing the names which are known as “Person 1” instead. The secondary profiles are seen acting like second browser thus allowing the families having their Google accounts that are synced the separate history and many more things. In Chrome 79, the bug seems to have hampered the profile in a big way.
It is not deleting any profile or wiping out their data but at the same time simply rename the profile in order to remove the personalized Google based name claimed the team. With this bug coming into the picture, the tech giant is seen issuing the warning about data breach for the users found in India and globally after fixing yet another Chrome 79 with the help of reissuing the same this week. With this, one can find the alert pop ups are seen starting emerging over the computer or mobile screens that are seen focussing over the users in India along with reading the warnings, which their passwords that have been stolen like a data leak. The pop up coming from the Chrome gave the idea about the data breach over the site which came as exposed the password. Hence the message is asking to change the password as soon as possible.