The Hacker News

New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel

Chrome CVE-2026-0628 let malicious extensions hijack Gemini panel for privilege escalation, local file access, and ...
SecurityWeek

Vulnerability Allowed Hijacking Chrome’s Gemini Live AI Assistant

A Chrome vulnerability allowed malicious extensions to hijack the browser’s Gemini Live assistant to spy on users and ...
Cybernews

Next.js turf war heating up: Cloudflare’s vibe-coded gambit humbled by critical security bugs

Cloudflare’s experimental AI-built Next.js alternative, vinext, has been released with critical security flaws, escalating a feud with Next.js maintainer, Vercel.
Cybernews

Check if your Chrome is up to date: Google’s Gemini might still be spying on you

A new Google Chrome patch fixes a Gemini vulnerability that could hijack the camera, microphone, and files. Check to see if your browser is up to date now.
Dark Reading

Critical OpenClaw Vulnerability Exposes AI Agent Risks

The now-patched flaw is the latest in a growing string of security issues with the viral AI tool, which has seen rapid adoption among developers.
Techrights

Links 03/03/2026: "No one wants to read your AI slop" and "chatbots in the kill chain"

The circuit court now expects the Trump administration to file a brief by March 20 explaining why it appealed the district court’s ruling and for Kelly’s legal team to file its reply brief by April 27 ...