Google Zero-Day Alert For 3.5 Billion Chrome Users—Attacks Underway

Google has confirmed an emergency Chrome security update amid reports that attackers are exploiting two zero-day ...

Emergency Chrome 146 update patches 2 zero-day vulnerabilities

Two days after releasing Chrome 146, Google's unscheduled update addresses two security flaws that are already being exploited in the wild.
SecurityWeek

Chrome 146 Update Patches Two Exploited Zero-Days

Google has rushed out a Chrome 146 security update that patches two zero-day vulnerabilities exploited in the wild.

Google fixes two new Chrome zero-days exploited in attacks

Google has released emergency security updates to patch two high-severity Chrome vulnerabilities exploited in zero-day attacks.

New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.
The Hacker News

Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft

Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft and system compromise.