BackGoogle Publishes Exploit Code for Unfixed Chromium Vulnerability

Tech

Ars Technica20.05.2026Tech4 dk okumaUnited States

Google Publishes Exploit Code for Unfixed Chromium Vulnerability

Chromium Vulnerability Browser Security Exploit Code

L'essentiel

Google published exploit code for an unfixed 29-month-old Chromium vulnerability affecting Chrome, Edge, and other browsers, allowing attackers to create persistent connections for monitoring, proxying, and DDoS attacks.

Résumé généré par IA

Pourquoi c'est important

The vulnerability exploits the Browser Fetch API, allowing persistent connections for malicious activities.

Taille de police

Google on Wednesday published exploit code for an unfixed vulnerability in its Chromium browser codebase that threatens millions of people using Chrome, Microsoft Edge, and virtually all other Chromium-based browsers... (rest of the article preserved verbatim with paragraph breaks)

À surveiller

Perspective IA — des possibilités, pas des certitudes

Increased scrutiny of Chromium's security update process
Probable · En quelques semaines

Questions ouvertes

When will a patch be released?

Sujets liés

Chromium Vulnerability

PersonnesLyra Rebane

OrganisationsGoogle Microsoft Chromium Brave

SujetsBrowser Security Exploit Code

This article was originally published by Ars Technica.

Articles liés

Plus sur ce sujetChromium Vulnerability

En développement·1 sa önce

Signal President Warns Against AI Chatbots' Privacy Risks

Signal President Meredith Whittaker cautioned against the privacy implications of AI chatbots like ChatGPT and Claude, emphasizing they are "not your friends" and lack consciousness. She expressed concern over pervasive data access required by AI tools, likening it to a "backdoor" for services like Signal.

TechCrunch

En développement·2 sa önce

In the Weights: A New Website Measures Your Fame in AI Models

A new website, In the Weights, measures how well AI models recall individuals without web search, assigning a "strength score" based on model outputs. Created by former OpenAI employees Thomas Dimson and Joey Flynn, it aims to gauge digital existence in the age of AI.

TechCrunch

En développement·5 sa önce

Nobel Laureate John Jumper Joins Anthropic from Google DeepMind

Nobel Prize winner John Jumper is leaving Google DeepMind after nearly nine years to join Anthropic. Jumper, a key figure in developing AlphaFold, cited DeepMind CEO Demis Hassabis for the opportunity. This follows other high-profile departures from DeepMind, including Noam Shazeer to OpenAI.

TechCrunch

Tech·6 sa önce

Hainbach: Music from Nuclear Test Gear and the "Dark Souls of Synthesis"

German artist Hainbach creates music with lab equipment and vintage gear, calling it the "Dark Souls of synthesis." He's prolific, releasing six albums in 2025, and runs a popular YouTube channel exploring experimental music. His latest album, Gentle Hum, is a collaboration with Ah! Kosmos.

The Verge

En développement·6 sa önce

Apple Unveils Numerous App and Service Upgrades at WWDC Beyond Siri

Apple announced significant updates to its core apps and services at WWDC, including enhanced Apple Maps with 'Local Lists' and improved 'Flyover,' more flexible location sharing in Find My, and advanced bill splitting in Apple Wallet powered by Apple Intelligence. Other updates include redesigned Apple Pay checkout, expanded Apple Music features like lyrics translation, new search capabilities in Apple Podcasts, improved iCloud Shared Albums, and a new Fitness+ program for menopause.

TechCrunch

En développement·8 sa önce

Moves of the Diamond Hand: A Creative RPG with Dice and Strange Conversations

Moves of the Diamond Hand is a creative Early Access RPG for PC where players engage in strange conversations and roll dice for various actions. Available on PC, macOS, and Steam Deck, the game features a unique stat system and sub-mechanics like cooking and music, offering a blend of chance and strategy.

The Verge

Plus sur ce sujetChromium Vulnerability