Chrome

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419)

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419) 2025-06-04 at 14:17 By Zeljka Zorz Google has fixed two Chrome vulnerabilities, including a zero-day flaw (CVE-2025-5419) with an in-the-wild exploit. About CVE-2025-5419 CVE-2025-5419 is a high-severity out of bounds read and write vulnerability in V8, the JavaScript and WebAssembly engine developed by Google for the Chromium […]

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419) Read More »

Chrome to Distrust Chunghwa Telecom and Netlock Certificates

Chrome to Distrust Chunghwa Telecom and Netlock Certificates 2025-06-02 at 14:16 By Ionut Arghire Patterns of concerning behavior led Google to remove trust in certificates from Chunghwa Telecom and Netlock from Chrome. The post Chrome to Distrust Chunghwa Telecom and Netlock Certificates appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Chrome to Distrust Chunghwa Telecom and Netlock Certificates Read More »

Chrome 137, Firefox 139 Patch High-Severity Vulnerabilities

Chrome 137, Firefox 139 Patch High-Severity Vulnerabilities 2025-05-28 at 14:50 By Ionut Arghire Google and Mozilla released patches for Chrome and FireFox to address a total of 21 vulnerabilities between the two browsers, including three rated high severity. The post Chrome 137, Firefox 139 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an

Chrome 137, Firefox 139 Patch High-Severity Vulnerabilities Read More »

CISA: Recently fixed Chrome vulnerability exploited in the wild (CVE-2025-4664)

CISA: Recently fixed Chrome vulnerability exploited in the wild (CVE-2025-4664) 2025-05-16 at 13:47 By Zeljka Zorz A high-severity Chrome vulnerability (CVE-2025-4664) that Google has fixed on Wednesday is being leveraged by attackers, CISA has confirmed by adding the flaw to its Known Exploited Vulnerabilities catalog. About CVE-2025-4664 CVE-2025-4664 stems from insufficient policy enforcement in Google

CISA: Recently fixed Chrome vulnerability exploited in the wild (CVE-2025-4664) Read More »

Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’

Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’ 2025-05-15 at 11:33 By Ionut Arghire Google has rolled out a Chrome 136 update that resolves a high-severity vulnerability for which a public exploit exists. The post Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’ appeared first on SecurityWeek. This article is an

Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’ Read More »

What your browser knows about you, from contacts to card numbers

What your browser knows about you, from contacts to card numbers 2025-05-09 at 13:06 By Anamarija Pogorelec Chrome and Safari are the most popular browser apps, accounting for 90% of the mobile browsers market share, according to Surfshark. They also collect the most data. Chrome: the most data-hungry browser (Source: Surfshark) The most data-hungry browsers

What your browser knows about you, from contacts to card numbers Read More »

Chrome 136, Firefox 138 Patch High-Severity Vulnerabilities

Chrome 136, Firefox 138 Patch High-Severity Vulnerabilities 2025-04-30 at 11:04 By Ionut Arghire Chrome 136 and Firefox 138 were released in the stable channel with patches for multiple high-severity vulnerabilities. The post Chrome 136, Firefox 138 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Chrome 136, Firefox 138 Patch High-Severity Vulnerabilities Read More »

Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities

Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities 2025-04-16 at 14:01 By Ionut Arghire Chrome 135 and Firefox 137 updates have been rolled out with patches for critical- and high-severity vulnerabilities. The post Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities Read More »

Browser extensions make nearly every employee a potential attack vector

Browser extensions make nearly every employee a potential attack vector 2025-04-16 at 07:12 By Help Net Security Despite being present on virtually every employee’s browser, extensions are rarely monitored by security teams or controlled by IT, according to LayerX. Most extensions have access to sensitive data 99% of enterprise users have at least one extension

Browser extensions make nearly every employee a potential attack vector Read More »

Chrome 135, Firefox 137 Patch High-Severity Vulnerabilities

Chrome 135, Firefox 137 Patch High-Severity Vulnerabilities 2025-04-02 at 12:05 By Ionut Arghire Chrome 135 and Firefox 137 were released on Tuesday with fixes for several high-severity memory safety vulnerabilities. The post Chrome 135, Firefox 137 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Chrome 135, Firefox 137 Patch High-Severity Vulnerabilities Read More »

Critical Firefox, Tor Browser sandbox escape flaw fixed (CVE-2025-2857)

Critical Firefox, Tor Browser sandbox escape flaw fixed (CVE-2025-2857) 2025-03-28 at 12:57 By Zeljka Zorz Google’s fixing of CVE-2025-2783, a Chrome zero-day vulnerability exploited by state-sponsored attackers, has spurred Firefox developers to check whether the browser might have a similar flaw – and they found it. There’s currently no indication that the Firefox bug (CVE-2025-2857)

Critical Firefox, Tor Browser sandbox escape flaw fixed (CVE-2025-2857) Read More »

Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia

Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia 2025-03-28 at 12:26 By Eduard Kovacs Firefox developers have determined that their browser is affected by a vulnerability similar to the recent Chrome sandbox escape zero-day. The post Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia appeared first on SecurityWeek. This

Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia Read More »

Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783)

Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) 2025-03-26 at 13:08 By Zeljka Zorz Google is in the process of rolling out Chrome v134.0.6998.178 to Windows users to fix CVE-2025-2783, a zero-day vulnerability that allowed attackers to to bypass Chrome sandbox protections. The vulnerability was flagged by Kaspersky researchers, who discovered it being exploited by

Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) Read More »

Chrome 134, Firefox 136 Patch High-Severity Vulnerabilities

Chrome 134, Firefox 136 Patch High-Severity Vulnerabilities 2025-03-05 at 13:15 By Ionut Arghire Chrome 134 and Firefox 136 are rolling out across desktop and mobile with patches for multiple high-severity vulnerabilities. The post Chrome 134, Firefox 136 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Chrome 134, Firefox 136 Patch High-Severity Vulnerabilities Read More »

Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities

Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities 2025-02-19 at 15:01 By Ionut Arghire Google and Mozilla resolve high-severity memory safety vulnerabilities with the latest Chrome and Firefox security updates. The post Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities Read More »

Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability

Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability 2025-02-13 at 13:00 By Ionut Arghire Google has released a Chrome 133 update to address four high-severity vulnerabilities reported by external researchers. The post Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability Read More »

Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities

Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities 2025-02-05 at 13:49 By Ionut Arghire Chrome 133 and Firefox 135 were released with patches for multiple high-severity memory safety vulnerabilities. The post Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities Read More »

ExtensionHound: Open-source tool for Chrome extension DNS forensics

ExtensionHound: Open-source tool for Chrome extension DNS forensics 2025-01-30 at 07:03 By Mirko Zorz Traditional monitoring tools reveal only traffic from the Chrome process, leaving security teams uncertain about which extension is responsible for a suspicious DNS query. ExtensionHound solves this by analyzing Chrome’s internal network state and linking DNS activity to specific extensions. ExtensionHound

ExtensionHound: Open-source tool for Chrome extension DNS forensics Read More »

Exploited: Cisco, SharePoint, Chrome vulnerabilities

Exploited: Cisco, SharePoint, Chrome vulnerabilities 2024-10-25 at 13:33 By Zeljka Zorz Threat actors have been leveraging zero and n-day vulnerabilities in Cisco security appliances (CVE-2024-20481), Microsoft Sharepoint (CVE-2024-38094), and Google’s Chrome browser (CVE-2024-4947). CVE-2024-20481 (Cisco ASA/FTD) In the past few days, Cisco has released fixes for a slew of vulnerabilities affecting the software powering its

Exploited: Cisco, SharePoint, Chrome vulnerabilities Read More »

Scroll to Top