Edith Hejberg
In a related scare, 18 Chrome extensions were found hiding malicious code capable of spying on your browsing activity.
Google has issued an urgent alert for all Chrome users following the discovery of a critical vulnerability actively exploited by hackers. If you’re using Chrome, update your browser without delay to stay protected.
Zero-Day Threat Found in the Wild
The flaw-tagged as CVE-2025-6558, was uncovered by Google’s own security researchers and is already being used in live attacks. Known as a “zero-day” exploit, it targets users before a fix can be widely deployed.
Dangerous Extensions Pulled from Chrome Store
In a related scare, 18 Chrome extensions were found hiding malicious code capable of spying on your browsing activity. Though now removed from the Chrome Store, anyone who installed them could still be at risk.
What You Should Do Now
Google advises users to clear their browsing history, remove any unfamiliar extensions, and reset Chrome to default settings.
These steps, along with updating to the latest version, are essential for security.
How to Check If You’re Protected
Make sure your Chrome version is at least 138.0.7204.157 (Windows/Mac) or 138.0.7204.157 (Linux). Go to Settings > About Chrome to find out. Restart the browser after updating to complete the process.
Millions May Be Affected
The infected extensions were downloaded widely before being taken down, meaning millions of users could still be exposed. This makes timely updates and security checks more critical than ever.
Stay Vigilant as More Flaws Emerge
With additional bugs being patched in the same update, Chrome users are advised to stay alert. Keeping software updated and avoiding untrusted extensions are key to staying safe online.
