Patna: Google has released a major security update for its Chrome browser after identifying two critical vulnerabilities that could potentially expose users to cyber threats.
The update, rolled out as version 148.0.7778.178/179, is available for Windows, Mac and Linux users. According to Google, the release contains 16 security fixes, including patches for two high-risk vulnerabilities tracked as CVE-2026-9111 and CVE-2026-9110.
Security experts have advised users to install the update immediately to reduce the risk of attacks.
Critical Vulnerabilities Identified
Google said CVE-2026-9111 is linked to WebRTC technology, which supports real-time communication between browsers and mobile applications. The second flaw, CVE-2026-9110, affects the Chrome user interface.
While Google has not confirmed any active exploitation of the vulnerabilities, cybersecurity researchers warned that attackers may attempt to exploit the flaws once technical details become public.
The company has not disclosed additional technical information about the vulnerabilities, a common practice intended to prevent misuse before users install the update.
Chrome Remains a Major Target
Chrome is the world’s most widely used web browser, making it a frequent target for cybercriminals. Browsers increasingly handle sensitive activities including online banking, workplace access, cloud storage and social media accounts.
Cybersecurity analysts said even small software vulnerabilities can lead to unauthorised access, data theft or malware attacks if left unpatched.
The latest warning comes amid a broader rise in zero-day attacks targeting browsers and operating systems in recent months.
How Users Can Update Chrome
Users can manually check for the update through Chrome’s settings menu.
To update the browser, users should click the three-dot menu in the top-right corner of Chrome, open the “Help” section and select “About Google Chrome”. The browser will automatically search for available updates and begin installation if a new version is detected.
Once the process is complete, users must restart the browser to activate the new security protections.
Experts Advise Keeping Auto-Updates Enabled
Cybersecurity experts said enabling automatic updates remains one of the most effective ways to maintain online security.
Google said the update is being rolled out gradually, meaning some users may receive it later than others. Users who have not yet received the automatic update can still install it manually.
Experts also advised users to regularly update all browsers, operating systems and applications to minimise exposure to emerging threats.
