Critical Chrome Vulnerability Could Turn Phones into Cyberattack Tools

Recent technology reports have revealed a significant security vulnerability in Google Chrome and other browsers based on the Chromium project. This flaw could enable hackers to covertly transform users' phones and computers into components of a botnet network used for extensive cyberattacks.

The vulnerability exploits a feature called "Browser Fetch," which permits browsers to download files in the background even after a webpage is closed. Although this feature was designed to enhance user experience, security researchers have identified a way to misuse it to establish hidden connections with victims' devices, facilitating harmful activities such as distributed denial-of-service (DDoS) attacks or spam distribution.

Alarmingly, users do not need to install suspicious applications or grant special permissions to be at risk. Simply visiting a malicious website could trigger background exploitation without any visible indication.

According to reports, security researcher Lera Rebane notified Google about this issue in 2022. Google internally classified the vulnerability as severe; however, it remains unpatched to date, prompting widespread criticism within the cybersecurity community.

No official fix for the problem currently exists. Experts recommend avoiding untrusted websites, refraining from downloading files from unknown sources, and regularly updating browsers and operating systems in anticipation of future security patches.