J1 ​​Rapid Response: Another Google Chrome Zero-Day exploit and How to Determine if You're Affected

September 27, 2021
by
Sounil Yu

Last week, we published an article on a recent Chrome zero-day exploit (worth reading if you want see the history of the issue). There was a new announcement this Saturday, announcing another Chrome exploit, with the recommendation that everyone update their browser.

We have updated the J1 Query that will help you determine if anyone in your company is running an older version of the browser, prior to version 94.0.4606.61.

How to determine the potential impact of the Chrome Zero-Day exploit

For existing JupiterOne users who have enabled an endpoint integration, you can verify the status of company wide updates by running the following J1 query. Not a current JupiterOne user? You can run the query immediately when you register for our free, lifetime license. You'll get immediate visibility to Chrome users in your company who have not updated to the latest version.

The return results will show all users who have not updated their browser and help accelerate your company's response to the exploit.

FIND Person as person
THAT OWNS Device
(THAT (MANAGES|MONITORS) HostAgent)?
THAT (IDENTIFIED|INSTALLED) as i Application as app
WHERE
app.name ~= ('Chrome' or 'Chromium') AND
i.version != "94.0.4606.61"
RETURN
person.displayName,
person.email,
i.version as chromeVersion

 

Stay safe. Know more, fear less. Reach out if you have any questions.

Sounil Yu
Sounil Yu

Before Sounil Yu joined JupiterOne as CISO and Head of Research, he was the CISO-in-Residence for YL Ventures, where he worked closely with aspiring entrepreneurs to validate their startup ideas and develop approaches for hard problems in cybersecurity. Prior to that role, Yu served at Bank of America as their Chief Security Scientist and at Booz Allen Hamilton where he helped improve security at several Fortune 100 companies and government agencies.

More blog posts by
Sounil Yu

SUBSCRIBE TO OUR NEWSLETTER

Stay up-to-date on emerging threats and security news

  • Checkmark
    Day-zero vulnerabilities & solutions
  • Checkmark
    Best practices for asset management
  • Checkmark
    Streamlining compliance and audit
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Keep Reading

Redesigning the Widget Editor: A Faster, More Intuitive Way to Visualize Insights | JupiterOne
March 5, 2025
Blog
Redesigning the Widget Editor: A Faster, More Intuitive Way to Visualize Insights

The new Widget Editor delivers a more intuitive experience. Edit widgets in place, declutter your workspace, and get insights faster.

Streamlining Workflows with JupiterOne and Jira Cloud | JupiterOne
February 27, 2025
Blog
Streamlining Workflows with JupiterOne and Jira Cloud

Streamline security with JupiterOne and Jira. Automate issues, enhance collaboration, and track risks to boost efficiency and response times.

Unified Device: Simplifying the Complex | JupiterOne
January 8, 2025
Blog
Unified Device: Simplifying the Complex

Unified Device creates a cohesive view of assets with advanced correlation and self-healing for simplified, actionable security insights.

15 Mar 2022
Blog
One line headline, one line headline

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud eiut.

15 Mar 2022
Blog
One line headline, one line headline

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud eiut.

15 Mar 2022
Blog
One line headline, one line headline

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud eiut.