Google released an urgent update for Chrome to fix two vulnerabilities that can be exploited by simply visiting malicious web pages. Users should ensure they're on version 143.0.7499.146 or later to stay protected from potential attacks.

Claude is being tested as a Chrome extension to enhance browser-based AI capabilities while addressing security risks like prompt injection. The pilot aims to gather feedback on safety and usability before a broader release, with participants having control over what Claude can do and access.

This article outlines Google's advancements in Chrome's security, specifically addressing the risks associated with agentic browsing. It details measures like the User Alignment Critic, origin gating, and user confirmations to combat threats like indirect prompt injection and unauthorized actions. The goal is to ensure user safety while interacting with AI-driven features.

Google is rolling out new agentic features in Chrome that can perform tasks like booking tickets and shopping. To ensure user security, it employs models that assess actions, restricts access to certain sites, and requires user consent for sensitive tasks. The company is also testing its systems against potential attacks.

Google has introduced new AI tools designed to enhance security for Chrome users, specifically targeting phishing and scam threats. These tools aim to proactively identify and block malicious sites, thereby improving the overall safety of browsing experiences for users worldwide.

Google has introduced Advanced Protection for Android users, enhancing security for at-risk individuals like journalists and public figures. This feature integrates with Chrome to enforce secure connections, implement full site isolation, and reduce attack surfaces by disabling certain JavaScript optimizations, thereby providing greater protection against sophisticated threats. Users can customize these security settings regardless of their participation in the Advanced Protection Program.

Google Chrome has introduced a new feature that prevents browsing history leaks by partitioning link history, allowing links to turn purple only for previously visited sites while keeping them blue on malicious sites. This update aims to enhance user privacy and prevent exploitation by malicious websites.

The article delves into the intricacies of evading security measures within a sandbox environment, highlighting techniques that exploit vulnerabilities in Chrome's architecture. It discusses various methods hackers use to bypass restrictions and emphasizes the ongoing cat-and-mouse game between security experts and malicious actors.

Google is implementing a security feature in Chromium that prevents Google Chrome from running with administrative permissions by automatically "de-elevating" the browser upon launch. This change, inspired by a similar feature in Microsoft's Edge browser, aims to mitigate security risks associated with running the browser as an administrator, which can lead to malicious files executing with full system access.

Google Chrome will introduce an automatic password update feature by 2025, enhancing user security by ensuring passwords are regularly refreshed without manual intervention. This development aims to streamline the management of passwords, reducing the risk of breaches due to outdated credentials.

Google is enhancing Chrome with AI to create a smarter browsing experience that assists users in being more productive and secure online. The new features include an AI browsing assistant named Gemini, smarter search capabilities in the omnibox, and advanced safety measures to protect users from scams and privacy issues. These improvements aim to transform Chrome into a proactive partner that understands user needs and enhances web navigation.

A new zero-day vulnerability in Google Chrome is currently being exploited in the wild, allowing attackers to execute arbitrary code and potentially compromise user systems. Users are advised to update their browsers immediately to mitigate the risk of exploitation.

Google has released a security update for Chrome to address multiple vulnerabilities, including a high-severity sandbox escape flaw (CVE-2025-6558) that is actively being exploited. Users are urged to update to version 138.0.7204.157/.158 to mitigate risks, as the vulnerability allows attackers to execute arbitrary code through specially crafted HTML. This marks the fifth actively exploited flaw fixed in Chrome this year, following several others related to the V8 engine and browser security.

Google Chrome will require user permission by default to access insecure HTTP websites starting with the release of Chrome 154 in October 2026. This change aims to enhance security by encouraging users to connect via HTTPS and reduce the risk of man-in-the-middle attacks. Users will have the option to enable warnings for public or both public and private sites, with the expectation that most websites are already secured with HTTPS.