Security News

Google Drops Cookie Prompt in Chrome, Adds IP Protection to Incognito
2025-04-23 05:19

Google on Tuesday revealed that it will no longer offer a standalone prompt for third-party cookies in its Chrome browser as part of its Privacy Sandbox initiative. "We've made the decision to...

Cookie-Bite attack PoC uses Chrome extension to steal session tokens
2025-04-22 15:02

A proof-of-concept attack called "Cookie-Bite" uses a browser extension to steal browser session cookies from Azure Entra ID to bypass multi-factor authentication (MFA) protections and maintain...

Chrome extensions with 6 million installs have hidden tracking code
2025-04-17 16:50

A set of 57 Chrome extensions with 6,000,000 users have been discovered with very risky capabilities, such as monitoring browsing behavior, accessing cookies for domains, and potentially executing...

Chrome 136 fixes 20-year browser history privacy risk
2025-04-13 14:18

​Google is fixing a long-standing privacy issue that, for years, enabled websites to determine users' browsing history through the previously visited links. [...]

Chrome to patch decades-old flaw that let sites peek at your history
2025-04-07 14:04

After 23 years, the privacy plumber has finally arrived to clean up this mess A 23-year-old side-channel attack for spying on people's web browsing histories will get shut down in the forthcoming...

⚡ Weekly Recap: Chrome 0-Day, IngressNightmare, Solar Bugs, DNS Tactics, and More
2025-03-31 11:25

Every week, someone somewhere slips up—and threat actors slip in. A misconfigured setting, an overlooked vulnerability, or a too-convenient cloud tool becomes the perfect entry point. But what...

Week in review: Chrome sandbox escape 0-day fixed, Microsoft adds new AI agents to Security Copilot
2025-03-30 08:00

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft’s new AI agents take on phishing, patching, alert fatigue Microsoft is rolling out a new...

After Chrome patches zero-day used to target Russians, Firefox splats similar bug
2025-03-28 06:34

Single click on a phishing link in Google browser blew up sandbox on Windows Google pushed out an emergency patch for Chrome on Windows this week to stop attackers exploiting a sandbox-breaking...

Mozilla Patches Critical Firefox Bug Similar to Chrome’s Recent Zero-Day Vulnerability
2025-03-28 05:44

Mozilla has released updates to address a critical security flaw impacting its Firefox browser for Windows, merely days after Google patched a similar flaw in Chrome that came under active...

Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks
2025-03-26 11:10

Google has released out-of-band fixes to address a high-severity security flaw in its Chrome browser for Windows that has been exploited in the wild as part of attacks targeting organizations in...