Google’s Threat Analysis Group (TAG) released updates on the four 0-days that are being exploited by threat actors in the wild.
Three of the four exploits were developed by the same organization and were sold to government-backed actors. CVE-2021-21166 and CVE-2021-30551 in Chrome were delivered via emails as one-time links. Once the victim clicked on the link, they were redirected to a page that infected their systems and collected information from the system.
For more information on Patches, updates, and remediation techniques visit the Rewterz advisories at https://www.rewterz.com/threat-advisory