Stay updated with the latest Chrome security features, vulnerabilities, and updates to safeguard your information online.
Search across headline titles and summaries.
Background for this topic.
Chrome is both a web browser developed by Google and a term often associated with the Google Chrome browser when discussing its security features and vulnerabilities. In the context of information security, Chrome is a critical point of focus due to its widespread usage, which makes it a target for cyber threats such as hacking, phishing, and the distribution of malware.
Security professionals pay close attention to Chrome's security updates, extension ecosystem, and privacy controls to protect user data and mitigate risks. Chrome frequently releases security patches to address identified vulnerabilities and enhance the browser’s defenses against potential cyber attacks. Discussions around Chrome in information security also involve topics like secure browsing practices, understanding the implications of browser permissions, and the impact of third-party plugins on user privacy and security.
Weekly headline count for the current query.
Google on Thursday released security updates for its Chrome web browser to address 21 vulnerabilities, including a zero-day flaw that it said has been exploited in the wild
Google on Friday released security updates for its Chrome browser to address a security flaw that it said has been exploited in the wild
Google on Wednesday released security updates for the Chrome web browser to address four vulnerabilities, including one that it said has been exploited in the wild
Google on Tuesday rolled out fixes for six security issues in its Chrome web browser, including one that it said has been exploited in the wild
A now-patched security flaw in Google Chrome was exploited as a zero-day by a threat actor known as TaxOff to deploy a backdoor codenamed Trinper
Google has released out-of-band fixes to address a high-severity security flaw in its Chrome browser for Windows that it said has been exploited in the wild as part of attacks targeting organizations in Russia. The vulnerability, tracked as CVE-2025-2783, has been described as a case of "incorrect handle provided in unspecified circumstances in Mojo on Windows." Mojo refers to a
The North Korean Lazarus hacking group exploited a Google Chrome zero-day tracked as CVE-2024-4947 through a fake decentralized finance (DeFi) game targeting individuals in the cryptocurrency space. [...]
North Korean hackers have exploited a recently patched Google Chrome zero-day (CVE-2024-7971) to deploy the FudModule rootkit after gaining SYSTEM privileges using a Windows Kernel exploit. [...]
Google has revealed that a security flaw that was patched as part of a software update rolled out last week to its Chrome browser has come under active exploitation in the wild
Google has rolled an emergency patch for CVE-2024-4947, the third Chrome zero-day it's addressed in the past week.
Exploit code is circulating for CVE-2024-4761, disclosed less than a week after a similar security vulnerability was disclosed as being used in the wild.
Google on Monday shipped emergency fixes to address a new zero-day flaw in the Chrome web browser that has come under active exploitation in the wild
CVE-2023-7024, exploited in the wild prior to patching, is a Chrome vulnerability that allows remote code execution within the browser's WebRTC component.
The high-severity security vulnerability (CVE-2022-2856) is due to improper user-input validation.
CVE-2022-1096 - another mystery in-the-wild 0-day in Chrome... check your version now!