Google has released an urgent security update for its Chrome browser to address two critical flaws that can be triggered simply by browsing the web. These vulnerabilities pose a direct threat to user security, potentially allowing malicious actors to exploit systems without requiring complex interaction beyond visiting a compromised website.

Users are strongly advised to update their Chrome browser immediately to the latest version to mitigate these risks. Failure to do so leaves systems vulnerable to potential exploitation during regular online activities.

Details of the Chrome Browser Vulnerabilities

The two recently patched flaws in Google Chrome are concerning due to their ease of exploitation. They can be activated merely by navigating to a specially crafted or compromised website. This ‘drive-by download’ or ‘watering hole’ attack vector means users don’t need to download a file or click an explicit malicious link to be affected; simply rendering a web page can initiate the exploit chain. While specific technical details of the exploits are often kept under wraps to prevent further abuse, such vulnerabilities typically involve memory corruption or logic errors that allow for arbitrary code execution or data exposure.

How to Update Google Chrome for Immediate Protection

Updating Google Chrome is a straightforward process that offers immediate protection against these new threats. Users can access the Chrome menu (three dots in the top right corner), navigate to ‘Help’, then ‘About Google Chrome’. The browser will automatically check for and install the latest updates. A restart of the browser is usually required to complete the installation and apply the security patches. Regularly checking for updates is a fundamental practice for maintaining browser security and protecting against newly discovered vulnerabilities.

Source: https://www.malwarebytes.com/blog/news/2025/12/two-chrome-flaws-could-be-triggered-by-simply-browsing-the-web-update-now