News

Google Chrome Exploit Results In Attack On Lebanese Journalists

According to antivirus company Avast, there is evidence that an Israeli spyware firm called Candiru used a vulnerability in Google Chrome to spy on journalists in Lebanon.

Published

3 years ago

July 22, 2022

Joanna Melki

google chrome exploit results in attack on lebanese journalists

In early July 2022, Google patched a previously unknown vulnerability in its Chrome browser, known as CVE-2022-2294. The zero-day Chrome exploit only came to light after it was apparently used to spy on journalists in Lebanon.

Antivirus company, Avast, collated a report, which it delivered to Google detailing the zero-day exploit. In this report, Avast claims that Israeli spyware firm, Candiru, used the exploit to install spyware on the journalist’s computers.

It equally believes that the firm has used similar exploits to target Avast users in Turkey, Lebanon, Palestine and Yemen beginning in March of this year.

A zero-day exploit is, in short, a vulnerability in a piece of software that is unknown to the developers. They are typically discovered in the wild for this reason, and are known as zero-day because the developers have zero days in which to address the issue. This is because the vulnerability has the potential to cause damage from the moment it is discovered.

Avast alleges that Candiru used the above-mentioned exploit to gain access to user’s computers. It is believed to have compromised a website, which it used to redirect users to a server that could collect their data. If the data – collected on 50 data points such as location, language, time zone, etc. – met their requirements, the server would establish an encrypted channel.

Despite not claiming responsibility, Candiru is the prime suspect in the attack because the CVE-2022-2294 exploit was used to install the DevilsTongue spyware. This is a piece of malware previously linked to the group by Microsoft in a separate string of attacks.

devilstongue exploit

In its report, Avast claims that the zero-day exploit was used alongside another vulnerability capable of bypassing the sandbox security function in Chromium. However, Avast has (as yet) been unable to determine the second exploit used by the alleged attackers.

Also Read: DDoS Attacks Are A Growing Threat In Gaming

Luckily, Google released a patch for the exploit on July 4. As such, there is no need for Chrome users to be concerned, providing browsers are kept up to date. Microsoft and Apple have released patches for their Edge and Safari browsers, too, as they also use WebRTC.

Candiru has not yet been officially connected to the incident, so its involvement is currently (albeit well-informed) speculation. However, the tools used and computers targeted matches its previous spyware attempts dating from 2021 and early 2022. As the company has no public online presence, this fact is unlikely to change anytime soon.

Related Topics:Cybersecurity Google Google Chrome Hacking Israel Lebanon

Up Next

SpyBuster Helps Identify iOS Apps With Servers In Russia And Belarus

Don't Miss

Dubai Introduces Its Metaverse Strategy

Click to comment

News

Checkout.com Brings Visa Direct Push-To-Card To The UAE

The payment company is the first acquirer in the UAE to launch Visa Direct’s solution, enabling safe, instant money transfers.

Published

10 hours ago

February 17, 2025

Nour Nasir

checkout.com brings visa direct push-to-card to the uae

Checkout.com has taken the UAE a step closer to its goal of a fully digital economy by becoming the first acquirer in the country to offer Visa Direct’s Push-to-Card solution. The new service will streamline money transfers for both businesses and consumers, enabling near-instant transactions across local and international markets.

Visa Direct connects over 190 markets and supports over 8.5 billion endpoints, including cards, bank accounts, and digital wallets. Push-to-Card transactions enhance efficiency for business users and consumers by allowing money to be sent quickly and easily to eligible Visa cards while leveraging the company’s secure network for reliability.

checkout and visa uae partnership

“Visa Direct is transforming the way money moves globally, and we are excited to see Checkout.com leverage this technology to meet the evolving demands of businesses and individuals alike by offering them a faster, more convenient, and secure way to send and receive funds,” said Shahebaz Khan, Senior Vice President and Head of Commercial and Money Movement Solutions, CEMEA.

The UAE has been at the forefront of digital payment adoption, driven by a national push toward a cashless economy. Remo Giovanni Abbondandolo, General Manager for MENA at Checkout.com, emphasized this shift: “By providing seamless, secure, and real-time payout capabilities, we’re empowering merchants with the agility to thrive in this fast-evolving landscape, while effectively meeting the growing consumer demand for speed and convenience. The Push-to-Card solution not only reinforces our commitment to powering payment performance but also showcases our agility in bringing yet another innovation to the UAE market.”

Also Read: Qareeb Partners With Pantheon For GCC Bitcoin Mining Expansion

Checkout.com’s latest MENA eCommerce data highlights the region’s increasing engagement with financial technologies, with around 80% of consumers participating in activities beyond basic online payments, such as money transfers and personal wealth management. The growing demand for real-time financial transactions has made fast, seamless payment solutions a priority.

To meet this demand, Account Funding Transactions (AFTs) have gained traction in the UAE. By integrating AFTs with Visa’s Push-to-Card services, Checkout.com is helping merchants offer secure, real-time account top-ups. Currently processing over one million AFTs per month with Visa, Checkout.com is now playing a leading role in modernizing financial transactions in the region.