Plusclub
Technology

Google patches first Chrome zero-day of the year - so update now or face attack

· 5 min read
Google patches first Chrome zero-day of the year - so update now or face attack
  1. Pro
  2. Security
Google patches first Chrome zero-day of the year - so update now or face attack News By Sead Fadilpašić published 16 February 2026

A worrying Google Chrome bug was patched

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

Google Chrome app is seen on an iPhone next to Edge and other web browser apps. Microsoft is using new prompts in Edge to try and stop users from downloading Chrome. (Image credit: Tada Images / Shutterstock)
  • Copy link
  • Facebook
  • X
  • Whatsapp
  • Reddit
  • Pinterest
  • Flipboard
  • Threads
  • Email
Share this article 0 Join the conversation Follow us Add us as a preferred source on Google Newsletter Tech Radar Get the TechRadar Newsletter

Sign up for breaking news, reviews, opinion, top tech deals, and more.

Contact me with news and offers from other Future brands Receive email from us on behalf of our trusted partners or sponsors By submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

You are now subscribed

Your newsletter sign-up was successful

An account already exists for this email address, please log in. Subscribe to our newsletter
  • Google patches Chrome zero-day CVE-2026-2441, a “use after free” bug in CSS
  • Exploit allowed arbitrary code execution via crafted HTML pages, actively abused in the wild
  • Update to Chrome 145.0.7632.75/76 (Windows/Mac) or 144.0.7559.75 (Linux) to stay protected

Google has patched a high-severity vulnerability in the Chrome browser which was apparently being used as a zero-day in the wild.

In a security advisory, Google said it addressed CVE-2026-2441, a “use after free in CSS in Google Chrome prior to 145.0.7632.75”. This bug, given a severity score of 8.3/10 (high), allows threat actors to execute arbitrary code inside a sandbox via a crafted HTML page.

Usually, Google would push all Chrome updates automatically, so if you haven’t disabled automatic updates, just restart the browser and make sure it’s running 145.0.7632.75/76 for Windows and MacOS, or 144.0.7559.75 for Linux.

You may like
  • Google Chrome app is seen on an iPhone next to Edge and other web browser apps. Microsoft is using new prompts in Edge to try and stop users from downloading Chrome. Google patches worrying Chrome zero-day flaw being exploited in the wild - here's how to stay safe
  • Google Chrome app is seen on an iPhone next to Edge and other web browser apps. Microsoft is using new prompts in Edge to try and stop users from downloading Chrome. Google releases emergency fix for yet another zero-day
  • A person holding an iPhone running iOS 26. Apple says it fixed zero-day flaws used for 'sophisticated' attacks

First zero-day of 2026

If you have disabled automatic updates, make sure to open Chrome, click the three dots in the top-right corner, and navigate to Help - About Google Chrome. On this page, the browser will automatically start checking for updates and will download and prompt you to relaunch it.

Since the bug is being actively exploited, make sure to apply the fix as soon as possible.

"Google is aware that an exploit for CVE-2026-2441 exists in the wild," Google said in a security advisory. It did not say who the victims were, how the bug was leveraged, or who the attackers were. It said it was consciously withholding this information until the majority of browsers were patched, not to give other threat actors any advantages.

According to BleepingComputer, this is the first actively exploited Chrome vulnerability patched since the start of the year. The publication also stressed that the company patched eight zero-days last year, many of which were leveraged by state-sponsored threat actors.

Are you a pro? Subscribe to our newsletterContact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsorsBy submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

The US Cybersecurity and Infrastructure Security Agency (CISA) have not yet added this bug to its catalog of known exploited vulnerabilities.

Via BleepingComputer

Best antivirus software headerThe best antivirus for all budgetsOur top picks, based on real-world testing and comparisons

➡️ Read our full guide to the best antivirus1. Best overall:Bitdefender Total Security2. Best for families:Norton 360 with LifeLock3. Best for mobile:McAfee Mobile Security

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

TOPICS Google Sead FadilpašićSocial Links Navigation

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

View More

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Logout Read more Google Chrome app is seen on an iPhone next to Edge and other web browser apps. Microsoft is using new prompts in Edge to try and stop users from downloading Chrome. Google patches worrying Chrome zero-day flaw being exploited in the wild - here's how to stay safe    Google Chrome app is seen on an iPhone next to Edge and other web browser apps. Microsoft is using new prompts in Edge to try and stop users from downloading Chrome. Google releases emergency fix for yet another zero-day    A person holding an iPhone running iOS 26. Apple says it fixed zero-day flaws used for 'sophisticated' attacks    A person holding an iPhone running iOS 26. Apple fixes dangerous zero-day flaw affecting macOS, iOS and more - update now to avoid 'extremely sophisticated attack'    An Android phone being held in the hand 107 Android flaws just got patched by Google - here's how to make sure you're up to date    Microsoft Office Worrying Microsoft Office security flaw patched - update now or risk hackers accessing your files    Latest in Security Hacker silhouette working on a laptop with North Korean flag on the background North Korean job scammers target JavaScript and Python developers with fake interview tasks spreading malware    A digital representation of blockchain. Blockchain fintech giant Figure hit by data breach, says 'limited number of files' impacted    Zero-day attack Canada Goose confirms data leak - around 600,000 customers thought to be affected    Password recovery concept image showing man typing on a keyboard with an overlay imitating password recovery and data recovery principles Forget zero-days - 'N-days' could be the most worrying security threat facing your systems today, here's why    A hand reaching out to touch a futuristic rendering of an AI processor. 'If someone can inject instructions or spurious facts into your AI’s memory, they gain persistent influence over your future interactions': Microsoft warns AI recommendations are being "poisoned" to serve up malicious results    WordPress logo on mobile Nearly a million WordPress websites could be at risk from this serious plugin security flaw    Latest in News MSI RTX 5090 Lightning GPU graphics card shown against a black background MSI RTX 5090 Lightning costs up to $15K on eBay — so here's an alternative    Xdown on mobile X was down – here's what happened in the latest major outage    Spider-Man posing on top of a tank in Spider-Man: Brand New Day New Spider-Man 4 leak reveals first look at the MCU movie's villains    Germany's Minerva Fabienne Hase and Nikita Volodin in Pair Skating action at the 2026 Winter Olympics Pairs Figure Skating Finale Free Streams: Running Order, Preview for Gold Medal Decider at 2026 Winter Olympics    iOS 26 features shown on two iPhone 16 Pro models. iOS 27 could fix your iPhone's battery life – but here are 7 tips to try now    A woman in bed on an iPad and listening to music over headphones, next to a shelf with a coffee drip and TN-400BT-X/TB turntable. A turquoise turntable designed for Bluetooth? If anyone can do it, TEAC can    LATEST ARTICLES
  1. 1Google patches first Chrome zero-day of the year - so update now or face attack
  2. 2Pairs Figure Skating Finale Free Streams: Running Order, Preview for Gold Medal Decider at 2026 Winter Olympics
  3. 3Fresh Spider-Man: Brand New Day leak reveals first official look at its villains — and Marvel fans aren't happy about the design of one of them
  4. 4Tyra Banks takes no accountability for America’s Next Top Model’s endless mistakes and danger — but we didn’t need a new Netflix documentary for that
  5. 5North Korean job scammers target JavaScript and Python developers with fake interview tasks spreading malware

Related Reading