Chrome Security Vulnerability Patched—Update Now to Stay Safe

Google just dropped an emergency patch for a serious Chrome security vulnerability—and if you’re on Windows, you’ll want to update right now.

The flaw, tracked as CVE-2025-2783, was discovered by Kaspersky and allows hackers to bypass Chrome’s sandbox protections. In simple terms: it let attackers tear down one of the browser’s core defenses and get closer to your personal data. Yikes.

This wasn’t just some theoretical risk either. It was actively used in the wild as part of a larger phishing campaign called Operation ForumTroll.

• The patch is version 134.0.6998.177/178, now live for Windows.

• Fixes a high-risk zero-day vulnerability exploited in real attacks.

• Chromium-based browsers (Brave, Vivaldi, Edge, etc.) are also vulnerable.

• Android, macOS, and Linux users: patch is on the way, so stay alert.

Kaspersky’s Boris Larin says this exploit basically lets hackers act as if Chrome had no restrictions at all. That’s how dangerous it is.

Even though Chrome usually updates itself, don’t wait around. Go to Menu > Help > About Google Chrome and make sure you’re on the latest version. And if you use any Chromium browser (Edge, Brave, Opera), keep an eye out for their respective patches. This vulnerability affects them too.

Zero-day exploits aren’t going anywhere. Keeping your browser and devices updated is still one of the best defenses you’ve got.