Google publishes exploit code threatening millions of Chromium users

Google on Wednesday published exploit code for an unfixed vulnerability in its Chromium browser codebase that threatens ...
techtimes

Google Ships Chrome Prompt API Over Objections From Mozilla, Apple, W3C, and Microsoft

Google shipped its Prompt API in Chrome 148 on May 5, 2026, embedding a JavaScript interface to its Gemini Nano AI model directly into the browser — and doing so after Mozilla, Apple's WebKit team, ...
Tom's Hardware on MSN

Researchers say they can spy on your browsing by measuring SSD activity through a browser API

FROST exploits the Origin Private File System (OPFS), a browser API that lets websites create and store files on a user's local disk.
NextBigFuture

Obscure MCP API in Comet Browser Breaches User Trust, Enabling Full Device Control via AI Browsers

SquareX released critical research exposing a hidden API in Comet that allows extensions in the AI Browser to execute local commands and gain full control over users’ devices. The research reveals ...