A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.

Security boffins have discovered a high-severity bug in Google Chrome that allowed malicious extensions to hijack its Gemini Live AI panel and inherit privileges they were never meant to have.

A new Google Chrome patch fixes a Gemini vulnerability that could hijack the camera, microphone, and files. Check to see if ...

Chrome CVE-2026-0628 let malicious extensions hijack Gemini panel for privilege escalation, local file access, and ...

A Chrome vulnerability allowed malicious extensions to hijack the browser’s Gemini Live assistant to spy on users and ...

Attackers could have exploited the vulnerability to escalate privileges, violate user privacy while browsing, and access ...

A bug in Google Chrome's Gemini AI feature could expose your data or allow attackers to monitor you. Here's how to stay ...

A Chrome extension named "QuickLens - Search Screen with Google Lens" has been removed from the Chrome Web Store after it was ...

The Detroit project envisioned using JavaScript as an extension language for Java applications. Now it’s being revived with ...

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

TL;DR: Titus is an open source secret scanner from Praetorian that detects and validates leaked credentials across source ...

More than 300 Chrome extensions were found to be leaking browser data, spying on users, or stealing user information.