Google fixed the vulnerability in early January after Unit 42 disclosed it, with remediation implemented ahead of public disclosure.

Users are advised to update Chrome promptly to the latest version to mitigate risk, as updates include security patches and improvements.

The issue, CVE-2026-0628, was patched in January 2026 in Chrome 143.0.7499.192/193 for Windows and macOS, and 143.0.7499.192 for Linux.

A vulnerability in Chrome could have allowed malicious extensions to hijack the Gemini Live AI assistant panel, enabling spying and data exfiltration from users.

A Palo Alto Networks Unit 42 blog post warns that adding AI features to web browsers creates new security risks by expanding the browser's privileged access and attack surface.

Unit 42 researchers disclosed the flaw to Google in October, and Google patched it in January in Chrome 143.0.7499.192 (Windows/macOS) with Linux 143.0.7499.192, followed by fixes addressing additional issues.

The vulnerability stemmed from insufficient policy enforcement in the WebView tag and was patched in early January 2026 across Chrome versions for all major platforms.

Palo Alto Networks emphasizes that deploying agentic browsers should be treated as high-risk infrastructure requiring policy controls and security measures from day one.

The report frames the browser as both a primary attack surface and a control plane, calling for enhanced monitoring of AI browsers, extensions, and user activity to defend against evolving threats.

Google says the issue was addressed in the referenced Chrome version update and that Gemini integration remains a security focus for AI-enabled browser features.

Experts urge developers to redesign agentic browsers with integrated security measures, including real-time prompt and content inspection, visibility into in-browser activity, and strict policy controls to prevent data leakage and unauthorized actions.

Google notes ongoing efforts to enhance safety for agentic browsing in Chrome, including new tools to improve browsing safety as part of risk mitigation.