Google News Articles

Italian-made spyware Dante linked to Chrome zero-day exploitation campaign - Help Net Security

A Chrome zero-day flaw was used by unknown attackers to deliver LeetAgent, suspected commercial spyware with ties to Memento Labs' Dante.

21 hours ago

Chrome Zero-Day Exploited to Deliver Italian Memento Labs' LeetAgent Spyware

Kaspersky reveals Chrome zero-day CVE-2025-2783 exploited to deploy Memento Labs’ LeetAgent spyware.

1 day ago

Memento Labs, the ghost of Hacking Team, has returned — or maybe it was never gone at all.

Kaspersky links the first Chrome zero-day of 2025 to tools used in attacks attributed to Memento Labs, formerly known as the Hacking Team.

2 days ago

Memento Spyware Tied to Chrome Zero-Day Attacks

While investigating the cyberattacks, researchers uncovered a new spyware product from Memento Labs, the successor to the infamous Hacking Team.

2 days ago

Italian spyware vendor linked to Chrome zero-day attacks

A zero-day vulnerability in Google Chrome exploited in Operation ForumTroll earlier this year delivered malware linked to Italian spyware vendor Memento Labs, born after IntheCyber ​​Group acquired the infamous Hacking Team.

2 days ago

Italian spyware vendor linked to Chrome zero-day attacks

A zero-day vulnerability in Google Chrome exploited in Operation ForumTroll earlier this year delivered malware linked to Italian spyware vendor Memento Labs, born after IntheCyber ​​Group acquired the infamous Hacking Team.

2 days ago

Chrome 0-Day Vulnerability Actively Exploited in Attacks by Notorious Hacker Group

The notorious Mem3nt0 mori hacker group has been actively exploiting a zero-day vulnerability in Google Chrome to compromise high-profile targets across Russia and Belarus.

2 days ago

Mem3nt0 mori – The Hacking Team is back!

Kaspersky researchers discovered previously unidentified commercial Dante spyware developed by Memento Labs (formerly Hacking Team) and linked it to the ForumTroll APT attacks.

2 days ago

Cursor, Windsurf IDEs riddled with 94+ n-day Chromium vulnerabilities

The latest releases of Cursor and Windsurf integrated development environments are vulnerable to more than 94 known and patched security issues in the Chromium browser and the V8 JavaScript engine.

1 week ago

New Pixnapping Android Flaw Lets Rogue Apps Steal 2FA Codes Without Permissions

Pixnapping side-channel can steal 2FA codes pixel-by-pixel on Android 13–16; CVE-2025-48561 patched Sept 2025 but workaround exists.

2 weeks ago

Google Patches Chrome Zero-Day CVE-2025-10585 as Active V8 Exploit Threatens Millions

Google releases critical Chrome update patching zero-day CVE-2025-10585, discovered Sept 16, to block active V8 JavaScript engine exploits worldwide.

Apple patches security flaw exploited in Chrome zero-day attacks

Apple has released security updates to address a high-severity vulnerability that has been exploited in zero-day attacks targeting Google Chrome users.

Apple Patches Safari Vulnerability Also Exploited as Zero-Day in Google Chrome

Apple and Google fix CVE-2025-6558, a zero-day bug in Chrome and Safari risking browser security.

CISA Adds One Known Exploited Vulnerability to Catalog | CISA

CISA has added one new vulnerability to its KEV Catalog, based on evidence of active exploitation

CISA Alerts on Google Chromium Input Validation Flaw Actively Exploited

CISA has issued a critical alert regarding a severe input validation vulnerability in Google Chromium that threat actors are actively exploiting.

High Severity Zero-Day Vulnerability in Google Chrome

Google has released security updates to address a zero-day vulnerability in its Chrome browser. Users and administrators are advised to update to the latest....

Microsoft’s Response to Open-Source Vulnerabilities - CVE-2023-4863 and CVE-2023-5217 | MSRC Blog | Microsoft Security Response Center

Microsoft’s Response to Open-Source Vulnerabilities - CVE-2023-4863 and CVE-2023-5217

Week in review: Google fixes zero-day vulnerability in Chrome, critical SQL injection flaw in FortiWeb - Help Net Security

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Update Google Chrome to fix actively exploited zero-day

Google's Chrome Emergency Patch Fixes a High-Severity Bug

Google has patched Chrome zero-day CVE-2025-6558, which is being actively exploited in the wild. Users are urged to update now to avoid sandbox escape attacks.

Google has released an urgent Chrome update due to the critical vulnerability CVE-2025-6558

A vulnerability in the browser’s graphics module is already being actively exploited in real attacks, Google warns.

New Security Flaw in Chrome Likely Exploited by Hackers

Google is rolling out updates to Chrome users worldwide to address a security weakness said to be exploited by threat actors.

Update Google Chrome to fix actively exploited zero-day (CVE-2025-6558) - Help Net Security

For the fifth time this year, Google has patched a Chrome zero-day vulnerability (CVE-2025-6558) exploited by attackers in the wild.

CVE-2025-6554 marks the fifth actively exploited Chrome Zero-Day patched by Google in 2025

Google released security patches to address multiple Chrome vulnerabilities, including one flaw that has been exploited in the wild.

Google fixes actively exploited sandbox escape zero day in Chrome

Google has released a security update for Chrome to address half a dozen vulnerabilities, one of them actively exploited by attackers to escape the browser's sandbox protection.

Urgent: Google Releases Critical Chrome Update for CVE-2025-6558 Exploit Active in the Wild

Google patches six security flaws in Chrome, including zero-day CVE-2025-6558, exploited in the wild.

Google Chrome 0-Day Vulnerability Under Active Exploitation

Google has released an emergency security update for Chrome 138 to address a critical zero-day vulnerability that is actively being exploited in the wild.

Google Chrome 0-day Vulnerability Actively Exploited in the Wild

Google has released an emergency security update for Chrome, addressing a critical zero-day vulnerability that attackers are actively exploiting in real-world attacks.

Chrome Update Patches Fifth Zero-Day of 2025

Google has released a Chrome 138 security update that patches a zero-day, the fifth resolved in the browser this year.

Grafana Patches Chromium Bugs, Including Zero-Day Exploited in the Wild

Grafana has rolled out security updates to address four high-severity vulnerabilities in the Chromium library used in the Grafana Image Renderer plugin and Synthetic Monitoring Agent.

U.S. CISA adds Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Chromium V8 vulnerability to its Known Exploited Vulnerabilities catalog.

Grafana releases critical security update for Image Renderer plugin

Grafana Labs has addressed four Chromium vulnerabilities in critical security updates for the Grafana Image Renderer plugin and Synthetic Monitoring Agent.

Urgent Update: Microsoft Edge Fixes Actively Exploited Chromium Vulnerability

Microsoft has released a critical security update for Edge Stable Channel on July 1, 2025, addressing a severe vulnerability.

Active Exploitation of Zero-Day Vulnerability in Google Chrome

Google has released security updates to address a zero-day vulnerability in its Chrome browser. Users and administrators of affected products are advised to...

CVE-2025-6554 is the fourth Chrome zero-day patched by Google in 2025

Google released security patches to address a Chrome vulnerability, tracked as CVE-2025-6554, for which an exploit exists in the wild.

Chrome Zero-Day, 'FoxyWallet' Firefox Attacks Threaten Browsers

Separate threats to popular browsers highlight the growing security risk for enterprises presented by the original gateway to the Web, which remains an integral tool for corporate users.

Google Patches Critical Zero-Day Flaw in Chrome’s V8 Engine After Active Exploitation

Google releases an update for Chrome’s CVE-2025-6554, a critical zero-day flaw, to prevent exploitation

Chrome 0-Day Flaw Exploited in the Wild to Execute Arbitrary Code

Google has issued an urgent security update for its Chrome browser, addressing a critical zero-day vulnerability that is being actively exploited by attackers.

Chrome 0-Day Vulnerability Exploited in the Wild to Execute Arbitrary Code - Patch Now

Google has issued an urgent security update for Chrome browser users worldwide, addressing a critical zero-day vulnerability that is actively being exploited by cybercriminals.

Chrome 138 Update Patches Zero-Day Vulnerability

Google has released a Chrome 138 update that patches a high-severity vulnerability with an exploit in the wild.

Google Chrome Zero-Day CVE-2025-2783 Exploited by TaxOff to Deploy Trinper Backdoor

Chrome and Yandex zero-days exploited to deploy Trinper backdoor via phishing; Russian entities targeted.

Hackers Exploiting Chrome Zero‑Day Vulnerability in the Wild

CVE-2025-2783 is a high-severity vulnerability in Google Chrome’s Mojo component on Windows systems. Mojo is a runtime library for IPC.

Multiple Chrome Flaws Enable Remote Code Execution by Attackers

The rollout will take place gradually over the coming days and weeks, ensuring smooth deployment and minimal disruption for users.

Multiple Chrome Vulnerabilities Enable Remote Code Execution by Attackers

Google has released an security update for its Chrome browser to address two critical vulnerabilities that could potentially allow attackers to execute malicious code.

Google Issues Emergency Update For All 3 Billion Chrome Users

Update now warning for all users, with attacks confirmed underway.

Emergency Chrome Update! One Click Could Save Your Personal Data

A newly discovered critical vulnerability in Google Chrome—CVE-2025-5419—has put an estimated 3 billion users at significant risk of cyberattacks. Google has issued an emergency update to fix the flaw, but experts warn that threat actors have already begun exploiting it in the wild. Another severe b...

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419) - Help Net Security

Google has fixed two Chrome vulnerabilities, including a zero-day flaw (CVE-2025-5419) with an in-the-wild exploit.

Google pushes emergency fix for high-severity Chrome 0-day

Google revealed Monday that it had quietly deployed a configuration change last week to block active exploitation of a Chrome zero-day. Google Threat Analysis Group (TAG) team members Clement Lecigne and...

3B Google Chrome users at risk. Update now!

Google has issued an emergency update for Chrome, addressing a severe vulnerability discovered by its Threat Analysis Group and used in cyber attacks.

Google Issues Emergency Update For All 3 Billion Chrome Users

Update now warning for all users, with attacks confirmed underway.