Tag: chrome
-
Chrome 134 Launches with Patches for 14 Crash-Inducing Vulnerabilities
by
in SecurityNewsGoogle has rolled out Chrome 134 to the stable channel for Windows, macOS, and Linux, addressing14 security vulnerabilities”, including high-severity flaws that could enable remote code execution or crashes. The update, version 134.0.6998.35 for Linux, 134.0.6998.35/36 for Windows, and 134.0.6998.44/45 for macOS, follows weeks of testing and includes critical fixes for vulnerabilities in components like…
-
Google Cuts Off uBlock Origin on Chrome as Firefox Stands Firm on Ad Blockers
by
in SecurityNewsThe problem started with Manifest V3, Chrome’s new extension specification, which is supposed to improve privacy. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/chrome-extension-firefox-ublock-origin/
-
Firefox continues Manifest V2 support as Chrome disables MV2 ad-blockers
by
in SecurityNewsMozilla has renewed its promise to continue supporting Manifest V2 extensions alongside Manifest V3, giving users the freedom to use the extensions they want in their browser. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/firefox-continues-manifest-v2-support-as-chrome-disables-mv2-ad-blockers/
-
Widespread Chrome Malware: 16 Extensions Infect Over 3.2 Million Users
by
in SecurityNewsA recent cybersecurity investigation has uncovered a cluster of 16 malicious Chrome extensions that have compromised at least 3.2 million users. These extensions, which include functionalities like screen capture, ad blocking, and emoji keyboards, were found to inject code into browsers, facilitating advertising and search engine optimization fraud. The threat actor behind this campaign is…
-
Google Chrome disables uBlock Origin for some in Manifest v3 rollout
by
in SecurityNewsGoogle continues its rollout of gradually disabling uBlock Origin and other Manifest V2-based extensions in the Chrome web browser as part of its efforts to push users to Manifest V3-based extensions. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/google/google-chrome-disables-ublock-origin-for-some-in-manifest-v3-rollout/
-
Snake Keylogger Targets Chrome, Edge, and Firefox Users in New Attack Campaign
by
in SecurityNewsA new variant of the Snake Keylogger, also known as 404 Keylogger, has been detected targeting users of popular web browsers such as Google Chrome, Microsoft Edge, and Mozilla Firefox. FortiGuard Labs identified this threat using FortiSandbox v5.0 (FSAv5), a cutting-edge malware detection platform powered by advanced artificial intelligence (AI) and machine learning. This malicious…
-
Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities
by
in SecurityNewsGoogle and Mozilla resolve high-severity memory safety vulnerabilities with the latest Chrome and Firefox security updates. The post Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/chrome-133-firefox-135-updates-patch-high-severity-vulnerabilities/
-
Chrome Buffer Overflow Flaws Let Hackers Execute Arbitrary Code Gain System Access
by
in SecurityNewsGoogle has rolled out an urgent security update for its Chrome browser, patching three vulnerabilities”, including two critical heap buffer overflow flaws”, that could enable attackers to execute arbitrary code and seize control of affected systems. The update (version 133.0.6943.126/.127 for Windows/Mac and 133.0.6943.126 for Linux) follows the discovery of exploits in Chrome’s V8 JavaScript…
-
Highly Obfuscated .NET sectopRAT Mimic as Chrome Extension
by
in SecurityNewsSectopRAT, also known as Arechclient2, is a sophisticated Remote Access Trojan (RAT) developed using the .NET framework. This malware is notorious for its advanced obfuscation techniques, making it challenging to analyze and detect. Recently, cybersecurity researchers uncovered a new campaign where sectopRAT disguises itself as a legitimate Google Chrome extension named >>Google Docs,
-
XCSSET macOS malware reappears with new attack strategies, Microsoft sounds alarm
by
in SecurityNewsXcode developers targeted through infected projects: Microsoft reported that XCSSET continues to spread via compromised Xcode projects, a technique that has been in use since the malware’s discovery in 2020. Once an infected project is cloned or downloaded, the malware can embed itself within the developer’s system and further propagate when the infected code is…
-
Safe Browsing: KI-Feature in Google Chrome ab sofort verfügbar
by
in SecurityNewsDas Surfen mit Chrome soll sicherer werden. Dabei spielt KI die zentrale Rolle. Der Schutz ist standardmäßig aber nicht aktiv. First seen on heise.de Jump to article: www.heise.de/news/Google-Chrome-KI-Schutz-vor-Phishing-Websites-Co-ab-sofort-aktivierbar-10284604.html
-
Google Chrome Introduces AI to Block Malicious Websites and Downloads
by
in SecurityNewsGoogle has taken a significant step in enhancing internet safety by integrating artificial intelligence (AI) into its >>Safe Browsing
-
Google Chrome’s AI-powered security feature rolls out to everyone
by
in SecurityNewsGoogle Chrome has updated the existing “Enhanced protection” feature with AI to offer “real-time” protection against dangerous websites, downloads and extensions. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/google/google-chromes-ai-powered-security-feature-rolls-out-to-everyone/
-
Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability
by
in SecurityNewsGoogle has released a Chrome 133 update to address four high-severity vulnerabilities reported by external researchers. The post Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/google-pays-out-55000-bug-bounty-for-chrome-vulnerability/
-
Google Chrome’s Safe Browsing Now Protects 1 Billion Users Worldwide
by
in SecurityNewsGoogle’s Safe Browsing technology now ensures enhanced protection for over 1 billion Chrome users worldwide. Launched in 2005, Safe Browsing is a robust system designed to safeguard users from phishing, malware, scams, and other cyber threats. By leveraging advanced artificial intelligence (AI) and machine learning, this cutting-edge technology has become a cornerstone of web security,…
-
Privacy Roundup: Week 6 of Year 2025
by
in SecurityNews
Tags: access, ai, api, apple, backdoor, breach, browser, cctv, chrome, control, credit-card, cybersecurity, data, data-breach, encryption, exploit, firmware, framework, germany, government, group, leak, malware, monitoring, phishing, privacy, regulation, risk, router, scam, service, software, spy, technology, threat, tool, update, vpn, vulnerability, windowsThis is a news item roundup of privacy or privacy-related news items for 2 FEB 2025 – 8 FEB 2025. Information and summaries provided here are as-is for warranty purposes. Note: You may see some traditional “security” content mixed-in here due to the close relationship between online privacy and cybersecurity – many things may overlap;…
-
How to Remove Your Saved Passwords in Chrome
by
in SecurityNewsGiven Chrome’s frequent security issues, you shouldn’t be saving your passwords to Google’s browser. Learn how to delete and prevent passwords from re-syncing in Chrome. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/remove-saved-passwords-chrome/
-
Google’s 7-year slog to improve Chrome extensions still hasn’t satisfied developers
by
in SecurityNewsMakers of content blockers, privacy add-ons say promises weren’t kept First seen on theregister.com Jump to article: www.theregister.com/2025/02/07/google_chrome_extensions/
-
Flesh Stealer Malware Attacking Chrome, Firefox, and Edge Users to Steal Passwords
by
in SecurityNewsA newly identified malware, Flesh Stealer, is rapidly emerging as a significant cybersecurity threat in 2025. Designed to extract sensitive data such as passwords, cookies, and browsing history, the malware targets widely used browsers like Google Chrome, Mozilla Firefox, Microsoft Edge, and Opera. Additionally, it infiltrates messaging applications like Telegram and Signal to exfiltrate stored…
-
Fake Google Chrome Sites Distribute ValleyRAT Malware via DLL Hijacking
Bogus websites advertising Google Chrome have been used to distribute malicious installers for a remote access trojan called ValleyRAT.The malware, first detected in 2023, is attributed to a threat actor tracked as Silver Fox, with prior attack campaigns primarily targeting Chinese-speaking regions like Hong Kong, Taiwan, and Mainland China.”This actor has increasingly targeted key roles…
-
MacOS Ferret operators add a deceptive bite to their malware family
by
in SecurityNewsThe macOS Ferret family, variants of malware used by North Korean APTs for cyber espionage, has received a new member as samples of a detection-resistant variant, Flexible-Ferret, appear in the wild.The discovery of the samples was made by SentinelOne researchers who noted the variant’s capability to evade the recent XProtect signature update that Apple pushed…
-
Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities
by
in SecurityNewsChrome 133 and Firefox 135 were released with patches for multiple high-severity memory safety vulnerabilities. The post Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/chrome-133-firefox-135-patch-high-severity-vulnerabilities/
-
New ValleyRAT Malware Variant Spreading via Fake Chrome Downloads
Morphisec uncovers a new ValleyRAT malware variant with advanced evasion tactics, multi-stage infection chains, and novel delivery methods… First seen on hackread.com Jump to article: hackread.com/valleyrat-malware-variant-fake-chrome-downloads/
-
FleshStealer: A new Infostealer Attacking Chrome Mozilla Users
A newly identified strain of information-stealing malware, FleshStealer, is making headlines in 2025 due to its advanced evasion techniques and targeted data extraction capabilities. Flashpoint analysts have shed light on its operation, revealing a sophisticated tool that poses significant risk to organizations worldwide. Designed to bypass traditional defenses and target sensitive data, FleshStealer is emerging…
-
SLAP, Apple, and FLOP: Safari, Chrome at risk of data theft on iPhone, Mac, iPad Silicon
It’s another cousin of Spectre, here to read your email, browsing history, and more First seen on theregister.com Jump to article: www.theregister.com/2025/01/29/flop_and_slap_attacks_apple_silicon/
-
Google to kill Chrome Sync on older Chrome browser versions
by
in SecurityNewsGoogle announced that the Chrome Sync feature will be discontinued in early 2025 for Chrome versions older than four years. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/google/google-to-kill-chrome-sync-on-older-chrome-browser-versions/
-
Chrome Security Update Patch for 3 High-Severity Vulnerabilities
by
in SecurityNewsGoogle has released a critical update for the Chrome browser, addressing three high-severity security vulnerabilities. This patch, part of the latest Stable channel release, ensures users remain protected from potential threats. The new version rolled out progressively, underscores Chrome’s commitment to providing a secure browsing environment. Users are urged to update their browsers promptly to…
-
Google launches customizable Web Store for Enterprise extensions
by
in SecurityNewsGoogle has officially launched its Chrome Web Store for Enterprises, allowing organizations to create a curated list of extensions that can be installed in employees’ web browsers. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/google/google-launches-customizable-web-store-for-enterprise-extensions/
-
New Supply Chain Attack Targeting Chrome Extensions to Inject Malicious Code
by
in SecurityNewsA sophisticated supply chain attack targeting Chrome browser extensions has come to light, potentially compromising hundreds of thousands of users. The attack, which unfolded in December 2024, involved phishing campaigns aimed at extension developers and the injection of malicious code into legitimate Chrome extensions. Sensitive user data, including API keys, session cookies, and authentication tokens…