​​J1 Rapid Response: How to determine if your company is affected by the Chrome Zero-Day exploits

circle
circle

Google issued a Zero-Day exploit warning for the Chrome browser on Monday, September 13, recommending that everyone using Chrome run an immediate update. From the status update: “Google is aware that exploits for CVE-2021-30632 and CVE-2021-30633 exist in the wild.” These were two anonymously submitted exploits that have been patched in the latest release. 

How to determine the potential impact of the Chrome Zero-Day exploit

For existing JupiterOne users who have enabled an endpoint integration, you can verify the status of company wide updates by running the following J1 query. Not a current JupiterOne user? You can run the query immediately when you register for our free, lifetime license. You’ll get immediate visibility to Chrome users in your company who have not updated to the latest version.

The return results will show all users who have not updated their browser and help accelerate your company’s response to the exploit.

FIND Person as person
THAT OWNS Device
(THAT (MANAGES|MONITORS) HostAgent)?
THAT (IDENTIFIED|INSTALLED) as i Application as app
WHERE
 app.name ~= ('Chrome' or 'Chromium') AND
 i.version != "93.0.4577.82"
RETURN
 person.displayName,
 person.email,
  i.version as chromeVersion

 

Stay safe. Know more, fear less. Reach out if you have any questions.

avatar

Posted By Sounil Yu

Before Sounil Yu joined JupiterOne as CISO and Head of Research, he was the CISO-in-Residence for YL Ventures, where he worked closely with aspiring entrepreneurs to validate their startup ideas and develop approaches for hard problems in cybersecurity. Prior to that role, Yu served at Bank of America as their Chief Security Scientist and at Booz Allen Hamilton where he helped improve security at several Fortune 100 companies and government agencies.

To hear more from Sounil, get our newsletter. No spam, just the good stuff once or twice a month. Sign up below.

PREVIOUS ARTICLE

cyber-security 1

Ad Title Placeholder

Lorem ipsum dolor sit amet, consectetur adipiscing elit.