Google Chrome is littered with potential security issues that could be putting millions of users at risk, a report has said.
New research from Atlas VPN citing data provided by the VulDB vulnerability database claims Google’s famed browser has so far had 303 discovered vulnerabilities, and is an “all-time leader with a total of 3,159 cumulative vulnerabilities.”
What’s more, of all the most commonly-used browsers around today, Chrome is the only one that already has already seen newly-discovered vulnerabilities in October 2022.
Safari performing well
The report noted Mozilla’s Firefox browser had seen 117 vulnerabilities in 2022 so far, while Microsoft Edge has had 103 discovered year-to-date.
The figures are 61% more than in the entirety of last year, with AtlasVPN noting that this is, "an unusually high number" for a browser with only 806 total vulnerabilities since its release.
Apple’s Safari, on the other hand, has had “some of the lowest vulnerability numbers in years”. The world’s second-largest browser had 26 documented vulnerabilities in the first nine months of the year, while cumulatively, it has had “just” 1,139 identified flaws.
Opera has had zero documented vulnerabilities this year, and a total of 344 flaws.
While Atlas VPN did not say it in a definitive manner, it did state that Chrome, Edge, and Opera are all built on the Chromium engine, hinting that Chromium flaws might impact all of these browsers.
To keep your endpoints safe, the company says, users should always make sure their browser is up to date, and should be extra careful when choosing which plug-ins to install. What’s more, they should always be wary of phishing, as cybercriminals will often use communications channels to distribute malicious code capable of exploiting various flaws in browsers.
TechRadar Pro has reached out to Google for a comment on the findings, and will update this article if we hear back from them.
- Check out the best firewalls around
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.