Google’s Surge in Chrome Vulnerability Discoveries Likely Driven by AI
More than 200 vulnerabilities patched in recent Chrome releases are marked as ‘reported by Google’. The post Google’s Surge in Chrome Vulnerability Discoveries Likely Driven by AI appeared first on SecurityWeek.
The number of Chrome vulnerabilities discovered by Google has surged over the past month, likely driven by the company’s use of AI.
Chrome security advisories published by Google in late March and early April mentioned a handful of vulnerabilities “reported by Google”, but the number increased to 16 for the Chrome update released on April 15 and 21 for the update issued on April 28.
The number of vulnerabilities found by Google surged to 100 in the advisory published on May 5. More than 70 vulnerabilities patched in the two most recent Chrome releases were found internally by the tech giant.
Source: https://www.securityweek.com/googles-surge-in-chrome-vulnerability-discoveries-likely-driven-by-ai/
Related breach coverage
- Verizon DBIR 2026: Vulnerability Exploitation Overtakes Credential Theft as Top Breach Vector2026-05-20
Verizon’s 2026 DBIR finds vulnerability exploitation has overtaken credential abuse as the leading breach vector, as AI accelerates attacks, patching delays worsen, and ransomware and third-party compromises continue to surge. The post Verizon DBIR 2026: Vulnerability Exploitation Overtakes Credential Theft as Top Breach Vector appeared first on SecurityWeek.
- PoC Released for DirtyDecrypt Linux Kernel Vulnerability2026-05-19
Patched in April, the underlying vulnerability allows local attackers to elevate their privileges to root. The post PoC Released for DirtyDecrypt Linux Kernel Vulnerability appeared first on SecurityWeek.
- 7-Eleven Data Breach Confirmed After ShinyHunters Ransom Demand2026-05-18
The hackers claimed to have stolen more than 600,000 Salesforce records, including personal information and corporate data. The post 7-Eleven Data Breach Confirmed After ShinyHunters Ransom Demand appeared first on SecurityWeek.
- PoC Code Published for Critical NGINX Vulnerability2026-05-16
Introduced in 2008, the critical-severity security defect was patched this week in NGINX Plus and NGINX open source. The post PoC Code Published for Critical NGINX Vulnerability appeared first on SecurityWeek.