Google patches first Chrome zero-day of the year – so update now or face attack

Google patches Chrome zero-day CVE-2026-2441, a “use after free” bug in CSS
Exploit allowed arbitrary code execution via crafted HTML pages, actively abused in the wild
Update to Chrome 145.0.7632.75/76 (Windows/Mac) or 144.0.7559.75 (Linux) to stay protected

Google has patched a high-severity vulnerability in the Chrome browser which was apparently being used as a zero-day in the wild.

In a security advisory, Google said it addressed CVE-2026-2441, a “use after free in CSS in Google Chrome prior to 145.0.7632.75”. This bug, given a severity score of 8.3/10 (high), allows threat actors to execute arbitrary code inside a sandbox via a crafted HTML page.

First zero-day of 2026

If you have disabled automatic updates, make sure to open Chrome, click the three dots in the top-right corner, and navigate to Help – About Google Chrome. On this page, the browser will automatically start checking for updates and will download and prompt you to relaunch it.

Since the bug is being actively exploited, make sure to apply the fix as soon as possible.

“Google is aware that an exploit for CVE-2026-2441 exists in the wild,” Google said in a security advisory. It did not say who the victims were, how the bug was leveraged, or who the attackers were. It said it was consciously withholding this information until the majority of browsers were patched, not to give other threat actors any advantages.

According to BleepingComputer, this is the first actively exploited Chrome vulnerability patched since the start of the year. The publication also stressed that the company patched eight zero-days last year, many of which were leveraged by state-sponsored threat actors.

The US Cybersecurity and Infrastructure Security Agency (CISA) have not yet added this bug to its catalog of known exploited vulnerabilities.

BleepingComputer

The best antivirus for all budgets

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

https://cdn.mos.cms.futurecdn.net/tSejjmrgK46MgdhWqD5miC-2000-80.jpg

Source link

Quordle hints and answers for Saturday, April 4 (game #1531)

NYT Connections hints and answers for Saturday, April 4 (game #1028)

NYT Strands hints and answers for Saturday, April 4 (game #762)

Dell packs full desktop performance into a palm-sized device that’s powered entirely through a single USB-C connection

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Blake Lively Vows To Fight On After Baldoni Sexual Harassment Claim Dismissed

‘Sistas,’ ‘Young and the Restless’ Actress Was 66

‘Spaceballs’ Sequel Gets April 2027 Release Date

Joseph Duggar, Wife Kendra Duggar Reunite After Arrests

Form 13D/A TripAdvisor For: 3 April

Form 13D/A Delek Logistics Partners For: 3 April

Vietnam Q1 GDP growth slows to 7.83% y/y from 8.46% y/y in Q4

Form 13D/A The New Germany Fund For: 3 April

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays