Tag: chrome
45 articles

Google and Microsoft Remove ModHeader Extension Exposing Dormant Browsing History Collector
A shocking discovery was made about the popular ModHeader extension, used by 1.6 million Chrome and Edge users, which contained a hidden browsing history collector that thankfully remained dormant. Fortunately, both Google and Microsoft swiftly removed the extension from their stores after it was uncovered.

Google Patches Actively Exploited Chrome Zero-Day Flaw
Google just issued an emergency patch for a major Chrome vulnerability, CVE-2026-11645, that's already being exploited by hackers - and it's urging users to update their browsers ASAP to stay safe. This latest fix is part of a massive update that tackles 74 Chrome vulnerabilities, including a high-severity zero-day flaw.

Google Patches Chrome Zero-Day Flaw Exploited in the Wild
Google just dropped an emergency update for Chrome, fixing a whopping 74 vulnerabilities, including a zero-day flaw that's been exploited by hackers in the wild. A security researcher scored a $55,000 reward for reporting the bug, now patched in the latest Chrome update.

Google patches Chrome zero-day flaw under active exploitation
Google just released urgent updates to fix a high-severity Chrome flaw that's being actively exploited by hackers - the fifth zero-day vulnerability patched by the company this year. This latest bug, CVE-2026-11645, could let attackers run malicious code and access sensitive data in your browser.

Cybersecurity Breaches Mount as Exploits Target Key Software
This week's cybersecurity breaches are a stark reminder that even the tools we trust can be vulnerable to exploitation - and it's getting easier for hackers to strike. Key software tampering, everyday tool vulnerabilities, and alarmingly simple attack methods have put businesses and individuals on high alert.

LinkedIn Harvests Browser Data with Secret Chrome Extension Scans
A recent report, dubbed BrowserGate, uncovers LinkedIn's hidden practice of scanning visitors' browsers for installed extensions and harvesting device data, raising serious questions about user privacy. The professional social network reportedly checks for over 6,000 Chrome extensions, leaving users to wonder: what should LinkedIn know about your browser?

ShadyPanda Stunning Scheme Damages 4.3M Chrome & Edge
Think twice before clicking Add to Chrome—a sprawling campaign called ShadyPanda used dozens of seemingly helpful browser extensions to secretly siphon data from an estimated 4.3 million Chrome and Edge users. By cloning listings and routing telemetry to shared command-and-control endpoints, attackers turned legit marketplaces into a stealth distribution network that slipped past detection.

Chrome Mandates HTTPS in 2026: Exclusive Best Practices
Big news: in October 2026 Chrome 154 will default to HTTPS-only connections and refuse to load plain HTTP, risking instant traffic loss for sites that dont upgrade. Our exclusive best practices show how to implement TLS quickly, prevent downtime, and keep your users safe.

WhatsApp Web automation: Risky Must-Have Threat
What looked like handy WhatsApp Web productivity add-ons were actually 131 cloned Chrome extensions hijacked to blast spam across Brazil, reaching about 20,900 users before takedown. Socket’s investigation is a wake-up call—check extension reputations, limit permissions, and treat browser add-ons with the same caution you’d give any app that touches your messages.

Chrome zero-day: Must-Have Critical Fixes
From a Chrome zero-day and AI-sped exploit tooling to an npm worm and unsettling DDR5 quirks, this week’s incidents prove attackers are iterating faster than fixes—so prioritize automated patching, supply-chain hygiene, and layered defenses before the next flaw becomes a blueprint.

Chrome 0-day Emergency: Must-Fix for Risky Flaw
Google just pushed an emergency Chrome patch for a high‑severity zero‑day being actively exploited — please check your Chrome version and update now. This is the latest in a string of browser flaws that remind users and admins alike to stay vigilant and tighten protections.

Scattered Spider: Must-Have Defense for Risky Browser Attacks
The browser is now the workplace front door—and groups like Scattered Spider are exploiting it with social engineering and account-takeover tricks. Enterprises can keep cloud-first convenience without handing over the keys by layering phishing‑resistant MFA, locking down extensions and OAuth grants, and monitoring browser telemetry.

FreeVPNOne Risky VPN: Exclusive Screenshot Threat
A popular Chrome VPN extension, FreeVPN.One, was found secretly taking screenshots of users’ browsing and sending them off‑device — and it was still listed in the Chrome Web Store. Check your extensions, review permissions, and prefer system‑level VPNs for truly private browsing.

VPN extension Risky: Stunning Privacy Betrayal
Thought your VPN extension kept you private? Researchers found a popular Chrome add-on quietly turned into spyware, exfiltrating browsing data—time to audit your extensions and stick with reputable, audited tools.

Weekly Cybersecurity Recap: SharePoint Flaw, Chrome Threats, and More
This week’s cybersecurity recap shines a light on alarming vulnerabilities in familiar platforms like SharePoint and Chrome, reminding us that even our trusted digital tools can be breeding grounds for threats. As cybercriminals get craftier, it’s crucial to stay vigilant—because when it comes to online safety, every overlooked detail can spell disaster.

Cybersecurity vulnerabilities: Must-Have Best Practices
This week’s roundup uncovers alarming flaws—from a critical SharePoint bug that can expose entire orgs to a Chrome exploit that makes ordinary browsing risky—showing attackers now target overlooked misconfigurations as much as flashy zero-days. Stay ahead by prioritizing patching, hardening defaults, and boosting monitoring to keep your data safe.

Researchers Expose 18 Malicious Chrome and Edge Extensions
Think your browser extensions are all safe? Think again—researchers just uncovered 18 sneaky Chrome and Edge add-ons hiding in plain sight, putting your privacy and security at serious risk.

18 Deceptive Chrome and Edge Extensions Uncovered by Researchers
Discover 18 deceptive Chrome and Edge extensions identified by researchers that pose security risks and compromise user privacy. Stay informed!

Dangerous Chrome Extensions Discovered on Web Store with 1.7 Million Installs
“Discover dangerous Chrome extensions found on the Web Store, impacting 1.7 million users. Learn how to protect your data and browse safely.”

Google Releases Urgent Update for Fourth Chrome Zero-Day Vulnerability of 2025
Google has issued an urgent update to address the fourth zero-day vulnerability in Chrome for 2025, enhancing security and protecting users.

Urgent Security Update: Google Responds to Active Exploitation of Chrome Zero-Day CVE-2025-6554
Urgent security update: Google addresses active exploitation of Chrome zero-day CVE-2025-6554 to protect users from potential threats.

Google Addresses Fourth Actively Exploited Chrome Zero-Day Vulnerability of 2025
Google addresses the fourth actively exploited Chrome zero-day vulnerability of 2025, enhancing security measures to protect users against potential threats.

Google Fixes Critical Zero-Day Vulnerability in Chrome’s V8 Engine Following Active Exploits
Google addresses a critical zero-day vulnerability in Chrome’s V8 engine after reports of active exploits, ensuring enhanced security for users.

Rust-Powered Myth-Stealer Malware Emerges on Fake Gaming Sites Targeting Chrome and Firefox Users
Rust-Powered Myth-Stealer malware debuts on fake gaming sites, targeting Chrome and Firefox users to steal credentials with advanced tactics.