Skip to main content

Tag: chrome

45 articles

Browser extension icon on a computer screen with a blurred history page in the background on a clean office workspace.

Google and Microsoft Remove ModHeader Extension Exposing Dormant Browsing History Collector

A shocking discovery was made about the popular ModHeader extension, used by 1.6 million Chrome and Edge users, which contained a hidden browsing history collector that thankfully remained dormant. Fortunately, both Google and Microsoft swiftly removed the extension from their stores after it was uncovered.

Analyst 207
Modern workspace with laptop, notepad, and pen near a window.

Google Patches Actively Exploited Chrome Zero-Day Flaw

Google just issued an emergency patch for a major Chrome vulnerability, CVE-2026-11645, that's already being exploited by hackers - and it's urging users to update their browsers ASAP to stay safe. This latest fix is part of a massive update that tackles 74 Chrome vulnerabilities, including a high-severity zero-day flaw.

Analyst 207
Laptop screen on a minimalist desk with a blurred display and a subtle bug icon in the background.

Google Patches Chrome Zero-Day Flaw Exploited in the Wild

Google just dropped an emergency update for Chrome, fixing a whopping 74 vulnerabilities, including a zero-day flaw that's been exploited by hackers in the wild. A security researcher scored a $55,000 reward for reporting the bug, now patched in the latest Chrome update.

Analyst 207
Laptop on a neutral surface with a blank screen displaying a soft gradient, in a clean and minimalist setting.

Google patches Chrome zero-day flaw under active exploitation

Google just released urgent updates to fix a high-severity Chrome flaw that's being actively exploited by hackers - the fifth zero-day vulnerability patched by the company this year. This latest bug, CVE-2026-11645, could let attackers run malicious code and access sensitive data in your browser.

Analyst 207
Cybersecurity Breaches Mount as Exploits Target Key Software

Cybersecurity Breaches Mount as Exploits Target Key Software

This week's cybersecurity breaches are a stark reminder that even the tools we trust can be vulnerable to exploitation - and it's getting easier for hackers to strike. Key software tampering, everyday tool vulnerabilities, and alarmingly simple attack methods have put businesses and individuals on high alert.

Analyst 207
LinkedIn Harvests Browser Data with Secret Chrome Extension Scans

LinkedIn Harvests Browser Data with Secret Chrome Extension Scans

A recent report, dubbed BrowserGate, uncovers LinkedIn's hidden practice of scanning visitors' browsers for installed extensions and harvesting device data, raising serious questions about user privacy. The professional social network reportedly checks for over 6,000 Chrome extensions, leaving users to wonder: what should LinkedIn know about your browser?

Analyst 207
ShadyPanda Stunning Scheme Damages 4.3M Chrome & Edge

ShadyPanda Stunning Scheme Damages 4.3M Chrome & Edge

Think twice before clicking Add to Chrome—a sprawling campaign called ShadyPanda used dozens of seemingly helpful browser extensions to secretly siphon data from an estimated 4.3 million Chrome and Edge users. By cloning listings and routing telemetry to shared command-and-control endpoints, attackers turned legit marketplaces into a stealth distribution network that slipped past detection.

Analyst 207
Chrome Mandates HTTPS in 2026: Exclusive Best Practices

Chrome Mandates HTTPS in 2026: Exclusive Best Practices

Big news: in October 2026 Chrome 154 will default to HTTPS-only connections and refuse to load plain HTTP, risking instant traffic loss for sites that dont upgrade. Our exclusive best practices show how to implement TLS quickly, prevent downtime, and keep your users safe.

Analyst 207
WhatsApp Web automation: Risky Must-Have Threat

WhatsApp Web automation: Risky Must-Have Threat

What looked like handy WhatsApp Web productivity add-ons were actually 131 cloned Chrome extensions hijacked to blast spam across Brazil, reaching about 20,900 users before takedown. Socket’s investigation is a wake-up call—check extension reputations, limit permissions, and treat browser add-ons with the same caution you’d give any app that touches your messages.

Analyst 207
Chrome zero-day: Must-Have Critical Fixes

Chrome zero-day: Must-Have Critical Fixes

From a Chrome zero-day and AI-sped exploit tooling to an npm worm and unsettling DDR5 quirks, this week’s incidents prove attackers are iterating faster than fixes—so prioritize automated patching, supply-chain hygiene, and layered defenses before the next flaw becomes a blueprint.

Analyst 207
Chrome 0-day Emergency: Must-Fix for Risky Flaw

Chrome 0-day Emergency: Must-Fix for Risky Flaw

Google just pushed an emergency Chrome patch for a high‑severity zero‑day being actively exploited — please check your Chrome version and update now. This is the latest in a string of browser flaws that remind users and admins alike to stay vigilant and tighten protections.

Analyst 207
Scattered Spider: Must-Have Defense for Risky Browser Attacks

Scattered Spider: Must-Have Defense for Risky Browser Attacks

The browser is now the workplace front door—and groups like Scattered Spider are exploiting it with social engineering and account-takeover tricks. Enterprises can keep cloud-first convenience without handing over the keys by layering phishing‑resistant MFA, locking down extensions and OAuth grants, and monitoring browser telemetry.

Analyst 207
FreeVPNOne Risky VPN: Exclusive Screenshot Threat

FreeVPNOne Risky VPN: Exclusive Screenshot Threat

A popular Chrome VPN extension, FreeVPN.One, was found secretly taking screenshots of users’ browsing and sending them off‑device — and it was still listed in the Chrome Web Store. Check your extensions, review permissions, and prefer system‑level VPNs for truly private browsing.

Analyst 207
VPN extension Risky: Stunning Privacy Betrayal

VPN extension Risky: Stunning Privacy Betrayal

Thought your VPN extension kept you private? Researchers found a popular Chrome add-on quietly turned into spyware, exfiltrating browsing data—time to audit your extensions and stick with reputable, audited tools.

Analyst 207
Weekly Cybersecurity Recap: SharePoint Flaw, Chrome Threats, and More

Weekly Cybersecurity Recap: SharePoint Flaw, Chrome Threats, and More

This week’s cybersecurity recap shines a light on alarming vulnerabilities in familiar platforms like SharePoint and Chrome, reminding us that even our trusted digital tools can be breeding grounds for threats. As cybercriminals get craftier, it’s crucial to stay vigilant—because when it comes to online safety, every overlooked detail can spell disaster.

Analyst 207
Cybersecurity vulnerabilities: Must-Have Best Practices

Cybersecurity vulnerabilities: Must-Have Best Practices

This week’s roundup uncovers alarming flaws—from a critical SharePoint bug that can expose entire orgs to a Chrome exploit that makes ordinary browsing risky—showing attackers now target overlooked misconfigurations as much as flashy zero-days. Stay ahead by prioritizing patching, hardening defaults, and boosting monitoring to keep your data safe.

Analyst 207
Researchers Expose 18 Malicious Chrome and Edge Extensions

Researchers Expose 18 Malicious Chrome and Edge Extensions

Think your browser extensions are all safe? Think again—researchers just uncovered 18 sneaky Chrome and Edge add-ons hiding in plain sight, putting your privacy and security at serious risk.

Analyst 207
18 Deceptive Chrome and Edge Extensions Uncovered by Researchers

18 Deceptive Chrome and Edge Extensions Uncovered by Researchers

Discover 18 deceptive Chrome and Edge extensions identified by researchers that pose security risks and compromise user privacy. Stay informed!

Analyst 207
Dangerous Chrome Extensions Discovered on Web Store with 1.7 Million Installs

Dangerous Chrome Extensions Discovered on Web Store with 1.7 Million Installs

“Discover dangerous Chrome extensions found on the Web Store, impacting 1.7 million users. Learn how to protect your data and browse safely.”

Analyst 207
Google Releases Urgent Update for Fourth Chrome Zero-Day Vulnerability of 2025

Google Releases Urgent Update for Fourth Chrome Zero-Day Vulnerability of 2025

Google has issued an urgent update to address the fourth zero-day vulnerability in Chrome for 2025, enhancing security and protecting users.

Analyst 207
Urgent Security Update: Google Responds to Active Exploitation of Chrome Zero-Day CVE-2025-6554

Urgent Security Update: Google Responds to Active Exploitation of Chrome Zero-Day CVE-2025-6554

Urgent security update: Google addresses active exploitation of Chrome zero-day CVE-2025-6554 to protect users from potential threats.

Analyst 207
Google Addresses Fourth Actively Exploited Chrome Zero-Day Vulnerability of 2025

Google Addresses Fourth Actively Exploited Chrome Zero-Day Vulnerability of 2025

Google addresses the fourth actively exploited Chrome zero-day vulnerability of 2025, enhancing security measures to protect users against potential threats.

Analyst 207
Google Fixes Critical Zero-Day Vulnerability in Chrome’s V8 Engine Following Active Exploits

Google Fixes Critical Zero-Day Vulnerability in Chrome’s V8 Engine Following Active Exploits

Google addresses a critical zero-day vulnerability in Chrome’s V8 engine after reports of active exploits, ensuring enhanced security for users.

Analyst 207
Darkened gaming room with a single flickering computer screen casting eerie glow, displaying a silhouette of a mythical…

Rust-Powered Myth-Stealer Malware Emerges on Fake Gaming Sites Targeting Chrome and Firefox Users

Rust-Powered Myth-Stealer malware debuts on fake gaming sites, targeting Chrome and Firefox users to steal credentials with advanced tactics.

Analyst 207