• Platform
  • Solutions
    Compare Seraphic
    vs Dedicated Browser
    vs Extensions
    vs CASB
    vs VDI
    vs RBI
    By use case
    GenAI Security

    Safely enable AI tools with context-aware policies and DLP

    Safe Browsing

    Real-time protection on any device from inside the browser

    Cost & Complexity Reduction

    Simplify your security stack and reduce operational overhead

    DLP & Governance

    Data protection and governance across SaaS, apps, and unmanaged devices 

    Remote Connectivity

    Policy-driven access to internal and SaaS applications from any device

    Featured
    Secure Enterprise Browsers: The New Frontier of Cybersecurity​
  • Resources
    Library
    All Resources
    Solution Briefs
    White Papers
    Analyst Reports
    Videos & Webinars
    Case Studies
    Integrations
    FAQ
    Learning Center
    Enterprise Browser

    Secure Enterprise Browser (SEB) info

    AI Browser

    Agentic browser landscape summary

    Zero Trust

    Discover Zero Trust principles

    SASE

    Info on the SASE architecture

    Data Loss Prevention

    Strategies to stop data loss

    Browser Security

    Security safety measures for browsers

    Website Security

    Stop Prompt Injection and more

    Secure Remote Access

    Safely use SaaS and GenAI

    VDI

    Replace VDI with an SEB

    Featured
    Webinar: AI Moves Fast, Security Has to Move Faster.
  • Partners
  • Company
    Company
    About us

    We make the web safe for enterprises

    Contact us

    Speak to a Seraphic expert

    Newsroom

    Discover Seraphic in the news

    Careers

    Apply to open positions at Seraphic

    Events

    Meet Seraphic at upcoming events

    Events and News
    Seraphic Expands Integration with the CrowdStrike Falcon Platform, Bringing Browser-Layer Security into Falcon Fusion SOAR and Falcon Shield
    Seraphic Protects ChatGPT Atlas to Secure AI-Driven Browsing
    Smarter Security: Akamai and Seraphic Team Up to Simplify SSE with Secure Enterprise Browsing
Blog

Why Hackers Are Now Targeting Google Chrome 

Alon Levin
September 30, 2022

Keeping your browser up to date is one of the best strategies when it comes to protecting against cyberattacks targeting browsers, according to a recent ZDNet article. The author also mentions that “all it takes is one unpatched vulnerability for an attack to squeeze through a crack in your defenses.” This is partially correct… 

How Google Chrome Got Here 

Google Chrome’s immense popularity makes it an attractive target for cybercriminals. As the world’s most widely used browser, it offers attackers a vast, diverse pool of potential victims. Additionally, Chrome’s extensive ecosystem of third-party extensions introduces risks, as malicious or compromised add-ons can bypass traditional defenses. Its integration with countless web applications and cloud services further increases the attack surface. Cybercriminals often exploit vulnerabilities in Chrome’s rendering engine, JavaScript components, and browser APIs, knowing that a successful exploit can yield high rewards. The combination of widespread adoption and complex functionality makes Chrome a constant focus for opportunistic and advanced attackers alike. 

Zero-Day Attacks Are on the Rise 

The most dangerous attacks are NOT the attacks you’ve been made aware of, and thus can apply patches against. The most dangerous attacks are the ones you and your vendor don’t know about. The type of attacks where a hacker discovers a certain vulnerability and uses it to seamlessly penetrate your organization for an undetermined amount of time. These are zero-day attacks! 

Cyberattacks targeting vulnerabilities in Google Chrome, as well as other browsers, are on the rise. According to an analysis by cybersecurity researchers at WatchGuard, the second quarter of this year saw an overall 23% increase in malware attacks against browsers – Chrome, Firefox, and Internet Explorer – compared with the previous quarter. Much of that increase has been driven by a rise in cyberattacks on Chrome: according to the WatchGuard Threat Lab Internet Security Report, attacks targeting Google’s browser have increased by 50%. 

How To Protect Yourself from Attacks You Are Unaware of 

This is one of the core values of Seraphic: to protect organizations from both known (N-day) and from unknown (zero-day) exploitations, allowing you to be safe even when your browsers are not fully patched or when there is no patch available. Seraphic also provides companies with a defense against other web-based attacks such as Phishing, XSS, XSRF, ClickJacking, etc., and fine-grained policy enforcement capabilities to make your employees’ browsing experience even more secure, no matter where they are and the device they are using 

Best Practices for Users and Organizations 

Given the dynamic nature of browser-based threats, users and organizations should adopt a multi-layered approach to security. Key practices include: 

  • Regular Updates: Ensure that browsers and extensions are kept up to date to benefit from the latest security patches. 
  • Extension Management: Regularly review and limit installed browser extensions, focusing on those from trusted sources. 
  • Enhanced Protection Modes: Enable features like Chrome’s Enhanced Protection to leverage advanced security measures. 
  • Security Awareness Training: Educate users about the risks of phishing and the importance of cautious browsing habits. 

Implementing these practices can significantly reduce the risk of falling victim to browser-based attacks. 

In Conclusion 

As browser-based attacks continue to evolve, it’s clear that traditional security measures alone are no longer enough. Google Chrome’s popularity makes it a prime target for cybercriminals, and vulnerabilities will inevitably surface. Organizations must prioritize browser security by maintaining regular updates, managing extensions carefully, and educating users about phishing and malicious web content. While Chrome’s native protections provide a solid foundation, layered, proactive security strategies are essential for reducing risk.  

By recognizing the browser as a critical part of the security perimeter, enterprises can better defend against the growing wave of sophisticated, browser-targeted cyberattacks. For more information on Seraphic, visit https://seraphicsecurity.com. 

About the Author

Alon Levin

Vice President of Product Management at Seraphic Security

Alon Levin is Vice President of Product Management at Seraphic Security. Alon has a successful track record of over 15 years in the cybersecurity industry and specializes in building and supporting the growth of new, innovative products. Prior to joining Seraphic, he was Vice President Product Management at Infinipoint and at VDOO. Earlier in his career, he held Consulting Engineer and Director of Sales Engineering positions at Palo Alto Networks, Cyvera, and Wave. Alon holds a Bachelor of Science degree in Electrical Engineering from Tel-Aviv University.

Learn more from related articles

Dec 11, 2025

VDI Replacement: How Seraphic Enables a Fast & Flexible Workplace

Dec 10, 2025

Enterprise Browser Security Consistent Across Desktop and Mobile

Nov 19, 2025

Seraphic Launches New Electron App Protection

Take the next step

Subscribe to the newsletter

To see how we are going to use your data see out privacy policy

© 2025 Seraphic ltd. All rights reserved.

Just Announced: Seraphic Electron App Protection. Learn More.

See Seraphic in action

Book a personalized 30 min demo with a Seraphic expert.

See Seraphic in action

Book a personalized 30 min demo with a Seraphic expert.

See Seraphic in action

Book a personalized 30 min demo with a Seraphic expert.