The usual click on the link risks turning into a complete loss of data.
In the browser Chrome found a new zero-day vulnerability, which has already begun to be used in real attacks. Google has released an update and urged users to install it as soon as possible to reduce risks.
We are talking about a problem with the identifier CVE-2026-5281. The error is associated with the Dawn mechanism, which implements the WebGPU standard and is responsible for working with graphics in the browser. The vulnerability belongs to the category of use-after-free - in such cases, an attacker can gain control of memory and achieve the execution of arbitrary code.
According to the NVD database, the attack is possible through a specially prepared HTML page. If an attacker manages to compromise the rendering process, the malicious code can start right in the user system. At the same time, Google does not disclose the details of the operation, so as not to facilitate the task of other attackers.
The company has confirmed that the vulnerability is already being applied in practice. Who is behind the attacks and how large they are is not specified. Such a closedness has become a standard practice - the developers are trying first to spread the corrections, and only then share the details.
Since the beginning of the year, Google has eliminated several actively used vulnerabilities in Chrome. Previously, the company closed the errors of CVE-2026-3909, CVE-2026-3910 and CVE-2026-2441, each of which was also used in attacks before the release of updates.
To protect, Google recommends installing versions of Chrome 146.0.7680.177 or 146.0.0.7680.178 for Windows and macOS, as well as 146.0.7680.177 for Linux. The update is available through the browser settings with subsequent restart.
Users of other browsers based on Chromium - Edge, Brave, Opera, Vivaldi and others - should also monitor the release of the relevant updates and install them without delays.
In the browser Chrome found a new zero-day vulnerability, which has already begun to be used in real attacks. Google has released an update and urged users to install it as soon as possible to reduce risks.
We are talking about a problem with the identifier CVE-2026-5281. The error is associated with the Dawn mechanism, which implements the WebGPU standard and is responsible for working with graphics in the browser. The vulnerability belongs to the category of use-after-free - in such cases, an attacker can gain control of memory and achieve the execution of arbitrary code.
According to the NVD database, the attack is possible through a specially prepared HTML page. If an attacker manages to compromise the rendering process, the malicious code can start right in the user system. At the same time, Google does not disclose the details of the operation, so as not to facilitate the task of other attackers.
The company has confirmed that the vulnerability is already being applied in practice. Who is behind the attacks and how large they are is not specified. Such a closedness has become a standard practice - the developers are trying first to spread the corrections, and only then share the details.
Since the beginning of the year, Google has eliminated several actively used vulnerabilities in Chrome. Previously, the company closed the errors of CVE-2026-3909, CVE-2026-3910 and CVE-2026-2441, each of which was also used in attacks before the release of updates.
To protect, Google recommends installing versions of Chrome 146.0.7680.177 or 146.0.0.7680.178 for Windows and macOS, as well as 146.0.7680.177 for Linux. The update is available through the browser settings with subsequent restart.
Users of other browsers based on Chromium - Edge, Brave, Opera, Vivaldi and others - should also monitor the release of the relevant updates and install them without delays.
