Tech Desk 
Apr 15, 2025
An undated image. — Canva
The National Computer Emergency Response Team (NCERT) has issued an important warning about a dangerous Google Chrome security vulnerability, identified as CVE-2025-2783.
This flaw is already being used in real cyber-attacks and puts millions of users at risk. If not fixed, hackers can take control of your computer just by making you visit a harmful website.
NCERT warns of Chrome bug CVE-2025-2783
The vulnerability is present in all versions of Chrome before 134.0.6998.177/.178 on Windows. NCERT advises users to immediately update Google Chrome to prevent targeting. The fix was released in the update on March 25, 2025.
This Chrome security flaw is being exploited today in a cyberattack campaign named Operation ForumTroll. Malicious emails that mimic invitations to events such as the "Primakov Readings" are being sent by the hackers.
If one clicks the link on Chrome, the vulnerability allows hackers to implant malware on the system without even realising it. After gaining access, they can steal files, monitor activities, and propagate the virus to other systems in the network.
NCERT alerts that media houses, schools, and government offices have already been targeted with this vulnerability. Experts explain that the attackers are attempting to steal sensitive information and potentially operate spying activities. It's a zero-day vulnerability, which means Google was not aware of it until hackers began exploiting it.
NCERT guidelines to stay safe
To remain secure, NCERT recommends that all users update Chrome, enable Enhanced Safe Browsing, employ robust email filters, and scan systems for any suspicious activity. Businesses must isolate infected computers, perform a security scan, and restore from clean backups.
