Google News Articles
Recent news articles refferecing the vendors vulnerabilities.
Grafana releases critical security update for Image Renderer plugin
Grafana Labs has addressed four Chromium vulnerabilities in critical security updates for the Grafana Image Renderer plugin and Synthetic Monitoring Agent.
4 hours ago
Urgent Update: Microsoft Edge Fixes Actively Exploited Chromium Vulnerability
Microsoft has released a critical security update for Edge Stable Channel on July 1, 2025, addressing a severe vulnerability.
6 hours ago
Active Exploitation of Zero-Day Vulnerability in Google Chrome
Google has released security updates to address a zero-day vulnerability in its Chrome browser. Users and administrators of affected products are advised to...
1 day ago
CVE-2025-6554 is the fourth Chrome zero-day patched by Google in 2025
Google released security patches to address a Chrome vulnerability, tracked as CVE-2025-6554, for which an exploit exists in the wild.
1 day ago
Chrome Zero-Day, 'FoxyWallet' Firefox Attacks Threaten Browsers
Separate threats to popular browsers highlight the growing security risk for enterprises presented by the original gateway to the Web, which remains an integral tool for corporate users.
2 days ago

Google Patches Critical Zero-Day Flaw in Chrome’s V8 Engine After Active Exploitation
Google releases an update for Chrome’s CVE-2025-6554, a critical zero-day flaw, to prevent exploitation
2 days ago

Chrome 0-Day Flaw Exploited in the Wild to Execute Arbitrary Code
Google has issued an urgent security update for its Chrome browser, addressing a critical zero-day vulnerability that is being actively exploited by attackers.
3 days ago

Chrome 0-Day Vulnerability Exploited in the Wild to Execute Arbitrary Code - Patch Now
Google has issued an urgent security update for Chrome browser users worldwide, addressing a critical zero-day vulnerability that is actively being exploited by cybercriminals.
3 days ago
Chrome 138 Update Patches Zero-Day Vulnerability
Google has released a Chrome 138 update that patches a high-severity vulnerability with an exploit in the wild.
3 days ago

Google Chrome Zero-Day CVE-2025-2783 Exploited by TaxOff to Deploy Trinper Backdoor
Chrome and Yandex zero-days exploited to deploy Trinper backdoor via phishing; Russian entities targeted.
2 weeks ago

Hackers Exploiting Chrome Zero‑Day Vulnerability in the Wild
CVE-2025-2783 is a high-severity vulnerability in Google Chrome’s Mojo component on Windows systems. Mojo is a runtime library for IPC.
2 weeks ago

Google Issues Emergency Update For All 3 Billion Chrome Users
Update now warning for all users, with attacks confirmed underway.
1 month ago
Emergency Chrome Update! One Click Could Save Your Personal Data
A newly discovered critical vulnerability in Google Chrome—CVE-2025-5419—has put an estimated 3 billion users at significant risk of cyberattacks. Google has issued an emergency update to fix the flaw, but experts warn that threat actors have already begun exploiting it in the wild. Another severe b...
1 month ago
Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419) - Help Net Security
Google has fixed two Chrome vulnerabilities, including a zero-day flaw (CVE-2025-5419) with an in-the-wild exploit.
1 month ago
Google pushes emergency fix for high-severity Chrome 0-day
Google revealed Monday that it had quietly deployed a configuration change last week to block active exploitation of a Chrome zero-day. Google Threat Analysis Group (TAG) team members Clement Lecigne and...

3B Google Chrome users at risk. Update now!
Google has issued an emergency update for Chrome, addressing a severe vulnerability discovered by its Threat Analysis Group and used in cyber attacks.

Google Issues Emergency Update For All 3 Billion Chrome Users
Update now warning for all users, with attacks confirmed underway.

New Chrome Zero-Day Actively Exploited; Google Issues Emergency Out-of-Band Patch
Google fixed CVE-2025-5419 in Chrome after detecting active exploitation, affecting all platforms using V8 engine.

Google Chrome 0-Day Vulnerability Exploited in the Wild to Execute Arbitrary Code
Google has released an emergency security update for Chrome after confirming that a critical zero-day vulnerability is being actively exploited by attackers in the wild.
Google Researchers Find New Chrome Zero-Day
Google released a fresh Chrome 137 update to address three vulnerabilities, including a high-severity bug exploited in the wild.
VulDB Recent Entries | Security
CVE-2025-5283 | Google Chrome up to 136.0.7103.113 libvpx use after free (Nessus ID 237344)(link is external) 11 hours 7 minutes ago A vulnerability was found in Google Chrome and...
Chrome Security Patch Addresses High-Severity Vulnerabilities Enabling Code Execution
This update, version 137.0.7151.55/56, brings a host of security improvements, bug fixes, and technical enhancements.

Chrome 0-Day CVE-2025-4664 Exposes Windows, Linux Browser Activity
A Chrome zero-day bug, CVE-2025-4664, exposes login tokens on Windows and Linux. Google has issued a fix, users should update immediately.
U.S. CISA adds Google Chromium, DrayTek routers, and SAP NetWeaver flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Google Chromium, DrayTek routers, and SAP NetWeaver flaws to its Known Exploited Vulnerabilities catalog.
CISA: Recently fixed Chrome vulnerability exploited in the wild (CVE-2025-4664) - Help Net Security
A Chrome vulnerability (CVE-2025-4664) that Google has fixed on Wednesday is being leveraged by attackers, CISA has confirmed.
CISA tags recently patched Chrome bug as actively exploited
On Thursday, CISA warned U.S. federal agencies to secure their systems against ongoing attacks exploiting a high-severity vulnerability in the Chrome web browser.

Google Chrome Update Fixes CVE-2025-4372 & Other Flaws
Google Chrome latest update patches CVE-2025-4372, CVE-2025-4664, and CVE-2025-2783 vulnerabilities.

Google Chrome Update Fixes CVE-2025-4372 & Other Flaws
Google Chrome latest update patches CVE-2025-4372, CVE-2025-4664, and CVE-2025-2783 vulnerabilities.

CISA Warns of Google Chromium 0-Day Vulnerability Actively Exploited in the Wild - Patch Now!
The Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2025-4664 to its Known Exploited Vulnerabilities Catalog as the vulnerability is actively exploited in the wild in attacks.
Chrome vulnerability with exploit in the wild
Google is updating Chrome and plugging security leaks in the process. There is already an exploit for one of them, the company explains.

Google Chrome Zero-Day Vulnerability (CVE-2025-4664) Actively Exploited in The Wild
Google has rolled out a fresh Stable Channel update for the Chrome browser across desktop platforms, including Windows, Mac, and Linux.

New Chrome Vulnerability Enables Cross-Origin Data Leak via Loader Referrer Policy
Chrome flaw CVE-2025-4664 enables cross-origin data leaks; active exploit confirmed; update to 136.0.7103.113.
Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’
Google has rolled out a Chrome 136 update that resolves a high-severity vulnerability for which a public exploit exists.

Critical Google Chrome 136 Audio Bug Lets Hackers Remotely Install Malware
Hackers could use an audio vulnerability to remotely execute malicious code in Google Chrome — you have been warned, take action now.

Critical Chrome Vulnerability Exposes Users to Data Theft and Unauthorized Access
A critical security vulnerability has been discovered in Google Chrome, prompting an urgent update as millions of users worldwide face potential threats.
Microsoft Security Researchers Discover Chromium Vulnerability -- Redmondmag.com
Microsoft last week disclosed a sophisticated cyber campaign by a North Korean threat actor exploiting a zero-day vulnerability in the Chromium browser.

Chrome Use-After-Free Vulnerability Enables Remote Code Attacks
Google has rolled out a critical update for its Chrome browser, addressing a high-severity vulnerability that could allow remote code execution.

Google’s Quick Share for Windows Vulnerability Let Attackers Remote Code
Critical vulnerabilities in Google's Quick Share file transfer utility for Windows allowed attackers to achieve remote code execution (RCE) without user interaction.
Google Quick Share Bug Bypasses Allow 0-Click File Transfer
Google addresses patch bypasses for CVE-2024-38272 and CVE-2024-38271, part of the previously announced "QuickShell" silent RCE attack chain against Windows users.

Google Patches Quick Share Vulnerability Enabling Silent File Transfers Without Consent
Quick Share flaw CVE-2024-10668 bypasses earlier fixes, enabling DoS or unauthorized file delivery.

⚡ Weekly Recap: Chrome 0-Day, IngressNightmare, Solar Bugs, DNS Tactics, and More
Google patched a Chrome 0-day (CVE-2025-2783) used in live attacks on Russian targets via phishing.

CISA Adds One Known Exploited Vulnerability to Catalog | CISA
CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation
Week in review: Chrome sandbox escape 0-day fixed, Microsoft adds new AI agents to Security Copilot - Help Net Security
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft’s new AI agents take on phishing, patching,

New Entries In CISA Known Exploited Vulnerabilities Catalog
CISA adds critical vulnerabilities like CVE-2025-2783, CVE-2019-9874, and CVE-2019-9875 to the Known Exploited Vulnerabilities Catalog.
Chrome, Firefox patch privacy-destroying security flaw
Google pushed out an emergency patch for Chrome on Windows this week to stop attackers exploiting a sandbox-breaking zero-day vulnerability, seemingly used by snoops to target certain folks in Russia. Now...
Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia
Firefox developers have determined that their browser is affected by a vulnerability similar to the recent Chrome sandbox escape zero-day.
Mozilla warns Windows users of critical Firefox sandbox escape flaw
Mozilla has released Firefox 136.0.4 to patch a critical security vulnerability that can let attackers escape the web browser's sandbox on Windows systems.
Google Hastily Patches Chrome Zero-Day Exploited by APT
Researchers at Kaspersky discovered cyber-espionage activity that used the vulnerability in a one-click phishing attack to deliver malware.
Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) - Help Net Security
Google is rolling out Chrome v134.0.6998.178 to Windows users to fix CVE-2025-2783, a zero-day vulnerability exploited by an APT group.