Google Chrome has received an emergency security update after Google confirmed a serious flaw was already being exploited by attackers, risking the data of its more than 2 billion users. The company has urged users of the desktop versions of Chrome to install the latest update without delay. Now rolling out across major operating systems, including Windows, macOS, and Linux, this update advises users to check their browser version and apply the patch immediately, as this is considered a high-risk vulnerability. This puts a fine point on the urgency for users and organisations alike to make sure their browser is updated.
Google said the bug, tracked as CVE‑2025‑13223, is already being used by attackers in real‑world attacks. According to the company, the bug exists in its browser’s V8 JavaScript engine, where a “type confusion” error allows an attacker to corrupt memory when certain crafted web content is presented to it. The weakness could allow a malicious webpage to either trigger unwanted code execution or crash the browser altogether. Google has restricted detailed technical information for the vulnerability until most users have had a chance to apply the fix in order to reduce further exploitation.
Also read: Xiaomi president confirms smartphones to get expensive in 2026, here’s why
Users running stable-channel Chrome on Windows, macOS, and Linux are exposed if they have yet to update, while various other third-party browsers built on Chromium could also potentially be at risk until matching patches are applied. In particular, Indian users at home, at offices, or at educational institutes are the ones who need this warning because the popular browser might expose a huge number of machines all at once.
Also read: Google TV devices could sport solar-powered remotes in future: Why this matters
Since the discovery of the flaw, Google has released patched versions of Chrome to fix the bug. For example, they released 142.0.7444.175/.176 for Windows and 142.0.7444.176 for macOS. The tech giant is rolling out the fix gradually but encourages users to trigger manual update checks if necessary. Google says that protection is only fully in place after the browser is restarted to allow the update to take effect.
Also read: OpenAI launches free ChatGPT version for teachers: Features, how to get it and more details
Check for the latest version by opening Chrome and going to Menu > Help > About Google Chrome. If there is an update available, download it and then relaunch your browser. Even if your browser was set to automatic updates, restarting is a step that needs to be taken in order for the patch to go live.
Users of other browsers built on similar technology should check for updates on those as well. Until confirmation that all updates have been installed, it’s best to avoid surfing to unknown websites or clicking links from unknown sources, as the risk of attack is much higher during this timeframe.