Microsoft Edge

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2026-5281)

0-day, Chrome, Don't miss, Hot stuff, Microsoft Edge, News, Vivaldi /

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2026-5281) 2026-04-01 at 14:31 By Zeljka Zorz Google has fixed 21 vulnerabilities affecting its popular Chrome browser, among them a zero-day (CVE-2026-5281) with an in-the-wild exploit. About CVE-2026-5281 As per usual, information about the fixed zero-day is limited, and there’s no details about the exploit (or how/if it’s […]

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2026-5281) Read More »

Microsoft Edge 146 adds IP privacy and local network access controls

browser, Microsoft, Microsoft Edge, News, Privacy, update /

Microsoft Edge 146 adds IP privacy and local network access controls 2026-03-16 at 15:10 By Anamarija Pogorelec Microsoft Edge version 146 (Stable) became available on March 13, 2026, bringing updates to tracking protection, IP privacy, and enterprise network security policies. One change affects tracking prevention in InPrivate browsing. InPrivate windows use the same tracking prevention

Microsoft Edge 146 adds IP privacy and local network access controls Read More »

Fake browser crash alerts turn Chrome extension into enterprise backdoor

browser, Chrome, Chrome Web Store, Don't miss, enterprise, extension, Hot stuff, Huntress, Microsoft Edge, News, Remote Access Trojan, social engineering, Socket /

Fake browser crash alerts turn Chrome extension into enterprise backdoor 2026-01-19 at 17:21 By Zeljka Zorz Browser extensions are a high-risk attack vector for enterprises, allowing threat actors to bypass traditional security controls and gain a foothold on corporate endpoints. Case in point: A recently identified malicious extension called NexShield proves that a single user

Fake browser crash alerts turn Chrome extension into enterprise backdoor Read More »

Update Google Chrome to fix actively exploited zero-day (CVE-2025-6558)

0-day, Chrome, Don't miss, Hot stuff, Microsoft Edge, News, security update /

Update Google Chrome to fix actively exploited zero-day (CVE-2025-6558) 2025-07-16 at 16:32 By Zeljka Zorz For the fifth time this year, Google has patched a Chrome zero-day vulnerability (CVE-2025-6558) exploited by attackers in the wild. About CVE-2025-6558 CVE-2025-6558 is a high-severity vulnerability that stems from incorrect validation of untrusted input in ANGLE – the Almost

Update Google Chrome to fix actively exploited zero-day (CVE-2025-6558) Read More »

Microsoft fixes critical wormable Windows flaw (CVE-2025-47981)

Don't miss, Hot stuff, Ivanti, Microsoft Edge, MS Office, News, Patch Tuesday, Qualys, SharePoint, Tenable, Trend Micro, Windows, Windows Server /

Microsoft fixes critical wormable Windows flaw (CVE-2025-47981) 2025-07-09 at 14:31 By Zeljka Zorz For July 2025 Patch Tuesday, Microsoft has released patches for 130 vulnerabilities, among them one that’s publicly disclosed (CVE-2025-49719) and a wormable RCE bug on Windows and Windows Server (CVE-2025-47981). CVE-2025-49719 and CVE-2025-49717, in Microsoft SQL Server CVE-2025-49719 is an uninitialized memory

Microsoft fixes critical wormable Windows flaw (CVE-2025-47981) Read More »

Google patches actively exploited Chrome (CVE‑2025‑6554)

0-day, Brave, Chrome, Don't miss, Hot stuff, Microsoft Edge, News, Opera, security update, Vivaldi /

Google patches actively exploited Chrome (CVE‑2025‑6554) 2025-07-01 at 13:15 By Zeljka Zorz Google has released a security update for Chrome to address a zero‑day vulnerability (CVE-2025-6554) that its Threat Analysis Group (TAG) discovered and reported last week. “Google is aware that an exploit for CVE-2025-6554 exists in the wild,” the company said. About CVE-2025-6554 CVE-2025-6554

Google patches actively exploited Chrome (CVE‑2025‑6554) Read More »

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419)

0-day, Chrome, Don't miss, Google, Hot stuff, Microsoft Edge, News /

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419) 2025-06-04 at 14:17 By Zeljka Zorz Google has fixed two Chrome vulnerabilities, including a zero-day flaw (CVE-2025-5419) with an in-the-wild exploit. About CVE-2025-5419 CVE-2025-5419 is a high-severity out of bounds read and write vulnerability in V8, the JavaScript and WebAssembly engine developed by Google for the Chromium

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419) Read More »

CISA: Recently fixed Chrome vulnerability exploited in the wild (CVE-2025-4664)

Chrome, CISA, Don't miss, Google, Hot stuff, Microsoft Edge, News, security update, vulnerability, vulnerability disclosure /

CISA: Recently fixed Chrome vulnerability exploited in the wild (CVE-2025-4664) 2025-05-16 at 13:47 By Zeljka Zorz A high-severity Chrome vulnerability (CVE-2025-4664) that Google has fixed on Wednesday is being leveraged by attackers, CISA has confirmed by adding the flaw to its Known Exploited Vulnerabilities catalog. About CVE-2025-4664 CVE-2025-4664 stems from insufficient policy enforcement in Google

CISA: Recently fixed Chrome vulnerability exploited in the wild (CVE-2025-4664) Read More »

Patch Tuesday: Microsoft fixes 5 actively exploited zero-days

Don't miss, Hot stuff, Immersive, Microsoft, Microsoft Edge, News, Patch Tuesday, SharePoint, Tenable, Trend Micro /

Patch Tuesday: Microsoft fixes 5 actively exploited zero-days 2025-05-13 at 23:00 By Zeljka Zorz On May 2025 Patch Tuesday, Microsoft has released security fixes for 70+ vulnerabilities, among them five actively exploited zero-days and two publicly disclosed (but not exploited) vulnerabilities. The zero-days and the publicly disclosed flaws Among the zero-days patched is a memory

Patch Tuesday: Microsoft fixes 5 actively exploited zero-days Read More »

Seraphic Attracts $29M Investment to Chase Enterprise Browser Business

Enterprise Browser, Funding/M&A, Google Chrome, Identity & Access, Microsoft Edge, Safari, Seraphic Security /

Seraphic Attracts $29M Investment to Chase Enterprise Browser Business 2025-01-30 at 18:18 By Ryan Naraine Seraphic Security banks $29 million investment as VCs remain bullish on startups with security-themed browsers for corporate defenders. The post Seraphic Attracts $29M Investment to Chase Enterprise Browser Business appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Seraphic Attracts $29M Investment to Chase Enterprise Browser Business Read More »

New Chrome zero-day actively exploited, patch quickly! (CVE-2024-7971)

0-day, Chrome, CVE, Don't miss, Google, Hot stuff, Microsoft, Microsoft Edge, News /

New Chrome zero-day actively exploited, patch quickly! (CVE-2024-7971) 2024-08-22 at 12:01 By Zeljka Zorz A new Chrome zero-day vulnerability (CVE-2024-7971) exploited by attackers in the wild has been fixed by Google. About CVE-2024-7971 CVE-2024-7971 is a high-severity vulnerability caused by a type confusion weakness in V8, the open-source JavaScript and WebAssembly engine developed by Google

New Chrome zero-day actively exploited, patch quickly! (CVE-2024-7971) Read More »

Microsoft fixes 6 zero-days under active attack

0-day, CVE, Don't miss, Hot stuff, Immersive Labs, Microsoft, Microsoft Edge, MS Office, News, Patch Tuesday, security update, Tenable, Trend Micro, Windows /

Microsoft fixes 6 zero-days under active attack 2024-08-13 at 23:16 By Zeljka Zorz August 2024 Patch Tuesday is here, and Microsoft has delivered fixes for 90 vulnerabilities, six of which have been exploited in the wild as zero-days, and four are publicly known. The zero-days under attack CVE-2024-38178 is a Scripting Engine Memory Corruption Vulnerability

Microsoft fixes 6 zero-days under active attack Read More »

Chrome, Edge users beset by malicious extensions that can’t be easily removed

add-ons, adware, Chrome, cybercrime, Don't miss, extension, Hot stuff, Malware, Microsoft Edge, News, Reason Labs /

Chrome, Edge users beset by malicious extensions that can’t be easily removed 2024-08-12 at 16:31 By Zeljka Zorz A widespread campaign featuring a malicious installer that saddles users with difficult-to-remove malicious Chrome and Edge browser extensions has been spotted by researchers. “The trojan malware contains different deliverables ranging from simple adware extensions that hijack searches

Chrome, Edge users beset by malicious extensions that can’t be easily removed Read More »

Island Secures $175M Investment as Enterprise Browser Startups Defy Tech Giants

cloud security, Data Protection, Enterprise Browser, Funding/M&A, Google Chrome, Island, Microsoft Edge /

Island Secures $175M Investment as Enterprise Browser Startups Defy Tech Giants 2024-04-30 at 20:46 By Ryan Naraine Despite competitive pressures from industry behemoths like Microsoft and Google, investors are still betting big on startups in the specialized enterprise browser space. The post Island Secures $175M Investment as Enterprise Browser Startups Defy Tech Giants appeared first

Island Secures $175M Investment as Enterprise Browser Startups Defy Tech Giants Read More »

Google fixes actively exploited Chrome zero-day (CVE-2024-0519)

0-day, Chrome, Don't miss, Hot stuff, Microsoft Edge, News, security update /

Google fixes actively exploited Chrome zero-day (CVE-2024-0519) 2024-01-17 at 12:01 By Zeljka Zorz In the new stable release of the Chrome browser, Google has fixed three security vulnerabilities affecting the V8 engine, including one zero-day (CVE-2024-0519) with an existing exploit. About CVE-2024-0519 V8 is an open-source JavaScript and WebAssembly engine developed by the Chromium Project

Google fixes actively exploited Chrome zero-day (CVE-2024-0519) Read More »

Ducktail Malware Focuses on Targeting HR and Marketing Professionals

Avalon Organics, Brave Browser, cybercrime, darkweb, Data leak, Dropbox, DuckTail, fake app, Google Chrome, Human Resources, infostealer, L'Oreal, Malware, Marketing, Microsoft Edge, Mozilla Firefox, NIVEA, Olay /

Ducktail Malware Focuses on Targeting HR and Marketing Professionals 17/05/2023 at 15:37 By cybleinc CRIL analyzes DuckTail, a malware infostealer actively targeting HR and Marketing executives to exploit their Social Media Business Accounts. The post Ducktail Malware Focuses on Targeting HR and Marketing Professionals appeared first on Cyble. This article is an excerpt from Cyble

Ducktail Malware Focuses on Targeting HR and Marketing Professionals Read More »

New KEKW Malware Variant Identified in PyPI Package Distribution

.whl, 7Star, Amigo, Bitcoin, Brave, Cent Browser, Chrome, Clipper, cryptocurrecy, cybercrime, darkweb, Epic browser, fake app, Firefox, Google Chrome, Grabber, Info stealer, Iridium, KEKW, Kometa, Malware, Microsoft, Microsoft Edge, Minecraft, Orbitum, PyPI, Python, pythonsqlitetool, Roblox, Sputnik, Threat Intelligence, Torch, Video games, Vivaldi, Windows, Yandex /

New KEKW Malware Variant Identified in PyPI Package Distribution 07/05/2023 at 18:24 By cybleinc CRIL analyzes a new KEKW Malware variant with stealer & Clipper functionalities being distributed via PyPI Packages. The post New KEKW Malware Variant Identified in PyPI Package Distribution appeared first on Cyble. This article is an excerpt from Cyble View Original

New KEKW Malware Variant Identified in PyPI Package Distribution Read More »

Scroll to Top