These targeted attacks appear to focus on espionage against media outlets, educational institutions, and government organizations, particularly in Russia, suggesting possible state-sponsored involvement.

Exploiting this vulnerability can occur simply by visiting a malicious web page, allowing attackers to execute code, steal sensitive information, or install malware without user awareness.

Google has released a critical patch for a zero-day vulnerability in its Chrome browser for Windows, identified as CVE-2025-2783, which has been actively exploited by hackers.

The vulnerability was discovered by Kaspersky researchers and is linked to the 'Operation ForumTroll' APT group, which employs phishing emails to lure victims to compromised websites.

The exploit was used in conjunction with another exploit for remote code execution, indicating a sophisticated attack strategy employed by the threat actors.

Kaspersky identified the exploit through monitoring phishing attacks in mid-March, where victims were compromised simply by clicking on malicious links.

Patching Chrome will effectively disable the entire exploit chain, mitigating potential attacks that Kaspersky believes were aimed at espionage.

Users can manually check for updates or allow Chrome to update automatically upon the next launch, with the current version being 134.0.6998.117 for Windows.

It's important to note that CVE-2025-2783 specifically affects Windows users, while Mac and Linux users are not impacted by this vulnerability.

In addition to CVE-2025-2783, attackers reportedly utilized a second exploit for remote code execution, although details about this second exploit remain undisclosed.

Google has withheld specific details about the attackers and the nature of the attacks until a majority of users have installed the patch to prevent further exploitation.

This vulnerability has been actively exploited in attacks against organizations in Russia, raising concerns about the security of users and organizations alike.