Indian government issues security warning for Google Chrome users; here’s what you should do

If you have been ignoring that little “Update available” nudge in Google Chrome, now’s not the time to continue the procrastination.

India’s national cybersecurity agency, the Indian Computer Emergency Response Team, better known as CERT-In, has issued a high-severity security alert for Google Chrome users. The advisory warns that serious security flaws in older versions of the browser could allow remote attackers to take control of affected systems.

In simpler terms, if you are running an outdated version of Chrome, you could be exposed to attacks that require nothing more than clicking the wrong link.

The security issue on Google Chrome browser

According to CERT-In, the vulnerability stems from a technical flaw known as a “Use-After-Free” bug in Chrome’s CSS component. That means the browser may continue using memory that has already been cleared, creating an opening for attackers to exploit.

The advisory states that a remote attacker could trick users into visiting a specially crafted HTML page. Once opened, the malicious page can trigger the flaw and allow arbitrary code to run on the targeted system.

ALSO READ: Android 16’s new security feature could save your phone from thieves

That code could be used to steal sensitive data, install malware, monitor user activity or, in more severe cases, take control of the device altogether. Crucially, the attacker does not need physical access to your machine. A convincing phishing link is enough.

CERT-In has flagged systems running versions older than 144.0.7559.75 on Linux, and 145.0.7632.75/76 on Windows and macOS as being at risk.

How to check and update Chrome

The fix, thankfully, is straightforward. Updating Chrome patches the vulnerability.

To check your version, click the three-dot menu in the top-right corner of the browser, head to Settings, and then select “About Chrome”. The browser will automatically check for updates and begin downloading the latest version if one is available. A quick restart completes the process.

Google regularly pushes security updates, but high-severity advisories from CERT-In are a reminder that those background downloads are not just routine housekeeping. They are often the only thing standing between you and a compromised system.

If you use Chrome for work, banking or anything remotely sensitive, updating it today is a good idea.