Cybersecurity Headlines Chrome quantum-safe certificates, Gemini Live vulnerability, UK warns of Iranian cyberattacks
20 snips
Mar 3, 2026 Chrome begins testing quantum-resistant HTTPS certificates and outlines a 2027 plan for a quantum-safe root store. A browser flaw let extensions hijack live AI chat features and access system resources. UK authorities warn of increased Iran-linked cyber threats and urge organizations to strengthen defenses. Several scams and supply-chain attacks, plus a major entertainment company breach, round out the headlines.
AI Snips
Chapters
Transcript
Episode notes
Chrome Tests Quantum Resistant Merkle Certificates
- Chrome is testing quantum-resistant HTTPS certificates using Merkle Tree certificates to prepare for future quantum threats.
- Merkle Trees replace traditional certificate chains with compact proofs, cut TLS handshake data, and integrate transparency into issuance which simplifies verification.
Phased Rollout Includes 2027 Root Store Plan
- The rollout is phased: feasibility tests with Cloudflare now, public deployment next, and a dedicated quantum-resistant root store planned for 2027.
- Early testing reduced handshake data and allowed Chrome to validate real-world performance before wider trust changes.
Malicious Extensions Could Hijack Gemini Live
- A Chrome vulnerability let malicious extensions hijack the Gemini Live AI assistant and access local files, camera, microphone, and system resources.
- Exploitation used the declarative net requests API to inject JavaScript into the AI panel; Google patched it in Chrome 143.