Security News

Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783)
2025-03-26 10:58

Google is in the process of rolling out Chrome v134.0.6998.178 to Windows users to fix CVE-2025-2783, a zero-day vulnerability that allowed attackers to to bypass Chrome sandbox protections. The...

Google fixes Chrome zero-day exploited in espionage campaign
2025-03-26 06:42

​Google has fixed a high-severity Chrome zero-day vulnerability exploited to escape the browser's sandbox and deploy malware in espionage attacks targeting Russian organizations. [...]

Malicious Chrome extensions can spoof password managers in new attack
2025-03-06 14:19

A newly devised "polymorphic" attack allows malicious Chrome extensions to morph into browser extensions, including password managers, crypto wallets, and banking apps, to steal sensitive...

Google Cuts Off uBlock Origin on Chrome as Firefox Stands Firm on Ad Blockers
2025-03-05 00:11

The problem started with Manifest V3, Chrome’s new extension specification, which is supposed to improve privacy.

Firefox continues Manifest V2 support as Chrome disables MV2 ad-blockers
2025-02-25 20:28

Mozilla has renewed its promise to continue supporting Manifest V2 extensions alongside Manifest V3, giving users the freedom to use the extensions they want in their browser. [...]

Google Chrome disables uBlock Origin for some in Manifest v3 rollout
2025-02-21 21:23

Google continues its rollout of gradually disabling uBlock Origin and other Manifest V2-based extensions in the Chrome web browser as part of its efforts to push users to Manifest V3-based...

Google Chrome's AI-powered security feature rolls out to everyone
2025-02-17 00:01

Google Chrome has updated the existing "Enhanced protection" feature with AI to offer "real-time" protection against dangerous websites, downloads and extensions. [...]

How to Remove Your Saved Passwords in Chrome
2025-02-10 11:00

Given Chrome's frequent security issues, you shouldn't be saving your passwords to Google's browser. Learn how to delete and prevent passwords from re-syncing in Chrome.

Fake Google Chrome Sites Distribute ValleyRAT Malware via DLL Hijacking
2025-02-06 14:34

Bogus websites advertising Google Chrome have been used to distribute malicious installers for a remote access trojan called ValleyRAT. The malware, first detected in 2023, is attributed to a...

New Syncjacking attack hijacks devices using Chrome extensions
2025-01-30 14:33

A new attack called 'Browser Syncjacking' demonstrates the possibility of using a seemingly benign Chrome extension to take over a victim's device through the browser. [...]