MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
chrome
Search

Google patches Chrome vulnerability used for account takeover and MFA bypass

Thursday May 15, 2025. 09:08 PM , from ComputerWorld
Chrome users are advised to update their browser immediately to fix a critical vulnerability that is being exploited to launch account takeover attacks.

In some environments, this could even give attackers the ability to bypass multi-factor authentication (MFA).

The recently-reported vulnerability, one of four fixed in a Wednesday update, is tracked as CVE-2025-4664 and affects all versions of Chrome prior to version 136.0.7103.113.

Google’s advisory says very little about the flaw beyond stating, “Google is aware of reports that an exploit for CVE-2025-4664 exists in the wild.”

That explains the urgency of the fix being issued outside the normal update cycle, an ‘emergency patch’ if you like. These come along occasionally, and given the daily use of browsers, are always a priority for users and admins alike.
Read more at ComputerWorld
https://www.csoonline.com/article/3986931/google-patches-chrome-vulnerability-used-for-account-takeo...

Related News

chrome Google Restores File Permissions For Nexcloud SlashdotMay 15
vulnerability Xiaomi joins Google Pixel in making its own smartphone chip OS NewsMay 15
google Google Dominates AI Patent Applications SlashdotMay 15
takeover GE Cync Dynamic Effects Smart Café Lights bring smart color to patios with Alexa and Google Assistant support BetaNewsMay 15
account Google DeepMind promises to help you evolve your algos TheRegisterMay 15
bypass Google DeepMind Creates Super-Advanced AI That Can Invent New Algorithms SlashdotMay 15
mfa 'Aggressive' Hackers of UK Retailers Are Now Targeting US Stores, Says Google SlashdotMay 15
being Google AI Futures Fund Helps Startups ‘Move Faster, Test Bolder Ideas’ eWeekMay 14
cve- Ivanti patches two zero-days under active attack as intel agency warns customers TheRegisterMay 14
fix Google DeepMind’s AI Agent Dreams Up Algorithms Beyond Human Expertise Wired: Tech.May 14
users Google readies blocks on "unpaid toll" scam texts BoingBoingMay 14
are Google Tests AI Search on Its Homepage SlashdotMay 14
used Google Wants To Make Stolen Android Phones Basically Unsellable SlashdotMay 14
patches Nextcloud Cries Foul Over Google Play Store App Rejection SlashdotMay 13
chrome Nextcloud claims Google is being anticompetitive LWN.netMay 13
vulnerability Google Says Over 1 Billion RCS Messages Sent in the US Daily SlashdotMay 13
google Google’s Advanced Protection for Vulnerable Users Comes to Android Wired: Tech.May 13
takeover Android 16 Is Getting a Facelift, and Gemini Is Rolling Onto More Google Platforms Wired: Tech.May 13
account Google Is Using On-Device AI to Spot Scam Texts and Investment Fraud Wired: Tech.May 13
bypass Google to unveil AI agent for developers at I/O, expand Gemini integration InfoWorldMay 13
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
May, Fri 16 - 03:48 CEST