Discovery of Google Chrome sandbox escape vulnerability nets researcher $250,000 reward.
Posted inCybersecurity News

Discovery of Google Chrome sandbox escape vulnerability nets researcher $250,000 reward.

A security researcher going by the handle "Micky" recently earned a record-breaking $250,000 reward from Google for discovering a critical Chrome sandbox escape vulnerability. This represents one of the highest bug bounty payouts in Google's Chrome Vulnerability Reward Program (VRP) history, matching the program's maximum possible award.
Google patches zero-day in Chrome browser that would have allowed attackers to escape Chrome’s sandbox.
Posted inCybersecurity News

Google patches zero-day in Chrome browser that would have allowed attackers to escape Chrome’s sandbox.

Google has released a security update for its Chrome browser addressing a high-severity zero-day vulnerability that was actively exploited in the wild. The flaw, tracked as CVE-2025-6558, allowed attackers to escape Chrome’s sandbox—a key security feature designed to isolate browser processes from the host operating system.
Researchers discover 18 malicious browser extensions that remain accessible on Chrome and Edge web stores.
Posted inCybersecurity News

Researchers discover 18 malicious browser extensions that remain accessible on Chrome and Edge web stores.

A recent investigation by the security team at Koi Security has brought to light a significant threat affecting millions of internet users. The team identified a coordinated campaign involving 18 malicious browser extensions that remain accessible on both the Google Chrome and Microsoft Edge web stores. These extensions have collectively impacted over 2.3 million users, making this one of the most extensive browser hijacking operations in recent years.
Google Chrome 138 addresses 11 security vulnerabilities including a medium-severity vuln reported in their bug bounty program.
Posted inCybersecurity News

Google Chrome 138 addresses 11 security vulnerabilities including a medium-severity vuln reported in their bug bounty program.

Google has released Chrome 138, now rolling out as version 138.0.7204.49 for Linux and 138.0.7204.49/50 for Windows and macOS, bringing important security and feature updates to users. Chrome 138 addresses 11 security vulnerabilities, including several discovered and reported by external security researchers.