If you have any software that utilizes the WebP codec, such as Chrome, Firefox, Safari, Edge and many others, you are at serious risk of a breach to your system. WebP is a common image format that provides lossless and lossy compression for images on the web, similar to JPG, PNG, SVG, etc. The exploit, CVE-2023-5129, presents an edited WebP lossless file to your chosen software (ie. receiving an image to Microsoft Teams on Chrome), and as soon as you open the photo, attackers can take control of your entire system.
B4 Networks is aware and actively monitoring the vulnerability for our B4 Cyber Shield and Managed Client's systems. As updates are released by each software vendor affected, B4 Networks will deploy those updates to affected systems after they have been tested by an independent 3rd party.
For more information, check out Huntress or NinjaOne's blogs.
If you do not currently have an IT provider or would like a second opinion on your network security, please don’t hesitate to reach out to our team. We are here to serve you in the Niagara Region and Simcoe County, 24/7/365.
Niagara: 905-346-4966
Barrie: 705-885-0993
Email: help@b4networks.ca
