Google Chrome may have silently installed 4GB AI model on your computer. Here's how to check

We tested our own computers to see if the model was present.
SecurityWeek

Vulnerability in Claude Extension for Chrome Exposes AI Agent to Takeover

ClaudeBleed, a vulnerability in Claude in Chrome, allows malicious extensions to hijack the AI agent for nefarious purposes.

OpenAI’s Codex just moved into Chrome, where the useful work and the risks live

OpenAI’s Codex Chrome extension pushes the coding agent into signed-in browser work, making it more useful for real tasks while raising new questions about access, approvals, and agentic AI risk.
CSO Online

13 new critical holes in JavaScript sandbox allow execution of arbitrary code

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...