Sync
Signal packet/Home/Wire/AI
AIMediumScore 7.0

Researchers identify high-severity Chrome vulnerability CVE-2026-0628 that allowed malicious extensions to hijack the Gemini Live AI assistant. The flaw, now patched in Chrome 143, granted unauthorized access to local files, camera, and microphone.

Researchers at Palo Alto Networks identified a high-severity vulnerability, CVE-2026-0628, in Google Chrome that allowed malicious extensions to hijack the Gemini Live AI assistant. The flaw, which has been patched in Chrome 143, could have permitted unauthorized access to local files, camera, microphone, and browser data.

Share:
Open live feed

Quick reaction

One tap helps tune what we surface next.

Reader discussion

Public comments
0/1000

No comments yet. Start the discussion around this signal.

Follow this signal

Get updates on this story

We will email you if this changes materially. No spam. Daily brief optional.

Map context

See this on the live map

Keep the story in context with nearby live signals, countries, and category movement.

Open live map

Related coverage

Hubs

AI

More story pages

Elon Musk takes stand for second day in trial against OpenAI, CEO Sam Altman.

Elon Musk testified for a second day in a high-stakes trial against OpenAI and its CEO Sam Altman.

More live signals

Continue with the live feed.

The fastest nearby updates load from the public feed, not the enriched story endpoint.

Continue with live feed
Open the live feed for the newest public signals.

Monitor

Track follow-ups in Monitor

Turn this public story into a watchlist seed for matching future signals, team alerts, and operational routing.

Create watchlistExplore Monitor

Signals API

Use these signals via API

Evaluate structured event payloads, canonical URLs, categories, geo fields, and confidence metadata for your own workflows.

View APIRequest access