Chrome - Security Ticks

Chrome, Firefox Updates Resolve High-Severity Memory Bugs

Chrome, Firefox, Vulnerabilities, vulnerability / SecurityTicks

Chrome, Firefox Updates Resolve High-Severity Memory Bugs 2025-06-11 at 13:33 By Ionut Arghire Google and Mozilla have released patches for a combined total of four high-severity memory bugs in Chrome and Firefox. The post Chrome, Firefox Updates Resolve High-Severity Memory Bugs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source […]

React to this headline:

Chrome, Firefox Updates Resolve High-Severity Memory Bugs Read More »

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419)

0-day, Chrome, Don't miss, Google, Hot stuff, Microsoft Edge, News / SecurityTicks

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419) 2025-06-04 at 14:17 By Zeljka Zorz Google has fixed two Chrome vulnerabilities, including a zero-day flaw (CVE-2025-5419) with an in-the-wild exploit. About CVE-2025-5419 CVE-2025-5419 is a high-severity out of bounds read and write vulnerability in V8, the JavaScript and WebAssembly engine developed by Google for the Chromium

React to this headline:

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419) Read More »

Google Researchers Find New Chrome Zero-Day

Chrome, Vulnerabilities, Zero-Day / SecurityTicks

Google Researchers Find New Chrome Zero-Day 2025-06-03 at 12:06 By Ionut Arghire Reported by the Google Threat Analysis Group, the vulnerability might have been exploited by commercial spyware. The post Google Researchers Find New Chrome Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Google Researchers Find New Chrome Zero-Day Read More »

Chrome to Distrust Chunghwa Telecom and Netlock Certificates

CA, certificates, Chrome, Chunghwa, Data Protection, Google, Netlock, remove, TLS / SecurityTicks

Chrome to Distrust Chunghwa Telecom and Netlock Certificates 2025-06-02 at 14:16 By Ionut Arghire Patterns of concerning behavior led Google to remove trust in certificates from Chunghwa Telecom and Netlock from Chrome. The post Chrome to Distrust Chunghwa Telecom and Netlock Certificates appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Chrome to Distrust Chunghwa Telecom and Netlock Certificates Read More »

Chrome 137, Firefox 139 Patch High-Severity Vulnerabilities

Chrome, Firefox, patch, Vulnerabilities / SecurityTicks

Chrome 137, Firefox 139 Patch High-Severity Vulnerabilities 2025-05-28 at 14:50 By Ionut Arghire Google and Mozilla released patches for Chrome and FireFox to address a total of 21 vulnerabilities between the two browsers, including three rated high severity. The post Chrome 137, Firefox 139 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an

React to this headline:

Chrome 137, Firefox 139 Patch High-Severity Vulnerabilities Read More »

CISA: Recently fixed Chrome vulnerability exploited in the wild (CVE-2025-4664)

Chrome, CISA, Don't miss, Google, Hot stuff, Microsoft Edge, News, security update, vulnerability, vulnerability disclosure / SecurityTicks

CISA: Recently fixed Chrome vulnerability exploited in the wild (CVE-2025-4664) 2025-05-16 at 13:47 By Zeljka Zorz A high-severity Chrome vulnerability (CVE-2025-4664) that Google has fixed on Wednesday is being leveraged by attackers, CISA has confirmed by adding the flaw to its Known Exploited Vulnerabilities catalog. About CVE-2025-4664 CVE-2025-4664 stems from insufficient policy enforcement in Google

React to this headline:

CISA: Recently fixed Chrome vulnerability exploited in the wild (CVE-2025-4664) Read More »

Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’

Chrome, exploited, PoC, Vulnerabilities, vulnerability / SecurityTicks

Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’ 2025-05-15 at 11:33 By Ionut Arghire Google has rolled out a Chrome 136 update that resolves a high-severity vulnerability for which a public exploit exists. The post Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’ appeared first on SecurityWeek. This article is an

React to this headline:

Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’ Read More »

What your browser knows about you, from contacts to card numbers

Bing, Brave, browser, Chrome, cybersecurity, DuckDuckGo, Edge, News, Opera, Privacy, report, Safari, Surfshark, Tor / SecurityTicks

What your browser knows about you, from contacts to card numbers 2025-05-09 at 13:06 By Anamarija Pogorelec Chrome and Safari are the most popular browser apps, accounting for 90% of the mobile browsers market share, according to Surfshark. They also collect the most data. Chrome: the most data-hungry browser (Source: Surfshark) The most data-hungry browsers

React to this headline:

What your browser knows about you, from contacts to card numbers Read More »

Chrome 136, Firefox 138 Patch High-Severity Vulnerabilities

Chrome, Firefox, patch, Vulnerabilities / SecurityTicks

Chrome 136, Firefox 138 Patch High-Severity Vulnerabilities 2025-04-30 at 11:04 By Ionut Arghire Chrome 136 and Firefox 138 were released in the stable channel with patches for multiple high-severity vulnerabilities. The post Chrome 136, Firefox 138 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Chrome 136, Firefox 138 Patch High-Severity Vulnerabilities Read More »

Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities

Chrome, Firefox, Vulnerabilities, vulnerability / SecurityTicks

Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities 2025-04-16 at 14:01 By Ionut Arghire Chrome 135 and Firefox 137 updates have been rolled out with patches for critical- and high-severity vulnerabilities. The post Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities Read More »

Browser extensions make nearly every employee a potential attack vector

browser, Chrome, cyber risk, Edge, Firefox, LayerX, News, report, survey / SecurityTicks

Browser extensions make nearly every employee a potential attack vector 2025-04-16 at 07:12 By Help Net Security Despite being present on virtually every employee’s browser, extensions are rarely monitored by security teams or controlled by IT, according to LayerX. Most extensions have access to sensitive data 99% of enterprise users have at least one extension

React to this headline:

Browser extensions make nearly every employee a potential attack vector Read More »

Chrome 135, Firefox 137 Patch High-Severity Vulnerabilities

Chrome, Firefox, Vulnerabilities, vulnerability / SecurityTicks

Chrome 135, Firefox 137 Patch High-Severity Vulnerabilities 2025-04-02 at 12:05 By Ionut Arghire Chrome 135 and Firefox 137 were released on Tuesday with fixes for several high-severity memory safety vulnerabilities. The post Chrome 135, Firefox 137 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Chrome 135, Firefox 137 Patch High-Severity Vulnerabilities Read More »

Critical Firefox, Tor Browser sandbox escape flaw fixed (CVE-2025-2857)

Chrome, Don't miss, Firefox, Hot stuff, Kaspersky, News, Opera, security update, Tor, vulnerability / SecurityTicks

Critical Firefox, Tor Browser sandbox escape flaw fixed (CVE-2025-2857) 2025-03-28 at 12:57 By Zeljka Zorz Google’s fixing of CVE-2025-2783, a Chrome zero-day vulnerability exploited by state-sponsored attackers, has spurred Firefox developers to check whether the browser might have a similar flaw – and they found it. There’s currently no indication that the Firefox bug (CVE-2025-2857)

React to this headline:

Critical Firefox, Tor Browser sandbox escape flaw fixed (CVE-2025-2857) Read More »

Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia

Chrome, exploited, Featured, Firefox, sandbox escape, Vulnerabilities, Zero-Day / SecurityTicks

Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia 2025-03-28 at 12:26 By Eduard Kovacs Firefox developers have determined that their browser is affected by a vulnerability similar to the recent Chrome sandbox escape zero-day. The post Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia appeared first on SecurityWeek. This

React to this headline:

Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia Read More »

Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783)

0-day, APT, Chrome, Don't miss, exploit, Hot stuff, Kaspersky, News, Windows / SecurityTicks

Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) 2025-03-26 at 13:08 By Zeljka Zorz Google is in the process of rolling out Chrome v134.0.6998.178 to Windows users to fix CVE-2025-2783, a zero-day vulnerability that allowed attackers to to bypass Chrome sandbox protections. The vulnerability was flagged by Kaspersky researchers, who discovered it being exploited by

React to this headline:

Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) Read More »

Chrome 134, Firefox 136 Patch High-Severity Vulnerabilities

Chrome, Firefox, patch, Vulnerabilities, vulnerability / SecurityTicks

Chrome 134, Firefox 136 Patch High-Severity Vulnerabilities 2025-03-05 at 13:15 By Ionut Arghire Chrome 134 and Firefox 136 are rolling out across desktop and mobile with patches for multiple high-severity vulnerabilities. The post Chrome 134, Firefox 136 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Chrome 134, Firefox 136 Patch High-Severity Vulnerabilities Read More »

Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities

Chrome, Firefox, Vulnerabilities, vulnerability / SecurityTicks

Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities 2025-02-19 at 15:01 By Ionut Arghire Google and Mozilla resolve high-severity memory safety vulnerabilities with the latest Chrome and Firefox security updates. The post Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities Read More »

Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability

Chrome, Vulnerabilities, vulnerability / SecurityTicks

Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability 2025-02-13 at 13:00 By Ionut Arghire Google has released a Chrome 133 update to address four high-severity vulnerabilities reported by external researchers. The post Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability Read More »

Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities

Chrome, Firefox, patch, Vulnerabilities / SecurityTicks

Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities 2025-02-05 at 13:49 By Ionut Arghire Chrome 133 and Firefox 135 were released with patches for multiple high-severity memory safety vulnerabilities. The post Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities Read More »

ExtensionHound: Open-source tool for Chrome extension DNS forensics

Chrome, computer forensics, DNS, Don't miss, GitHub, News, open source, software / SecurityTicks

ExtensionHound: Open-source tool for Chrome extension DNS forensics 2025-01-30 at 07:03 By Mirko Zorz Traditional monitoring tools reveal only traffic from the Chrome process, leaving security teams uncertain about which extension is responsible for a suspicious DNS query. ExtensionHound solves this by analyzing Chrome’s internal network state and linking DNS activity to specific extensions. ExtensionHound

React to this headline:

ExtensionHound: Open-source tool for Chrome extension DNS forensics Read More »