If You See This Message In Google Chrome, You Are Now At Risk

Google’s 3 billion Chrome users have been deluged with warnings in recent days. Just ahead of the holiday weekend, Google warned all users that “an exploit for CVE-2026-5281 exists in the wild.” But while Google secured the vulnerability, hundreds of millions of users are still at risk — here’s what you must do.

Unsurprisingly, the latest threat is a memory issue that enables attackers to force browser or system crashes, exposing devices to malware and data theft. Such issues continue to plague the world’s most popular browser. Google updated Chrome to 146.0.7680.177/178 for Windows and Mac to stop attacks, but you need to act to ensure your browser, your device and your data are safe.

MORE FROM FORBESFBI Warns iPhone And Android Users—Do Not Install These AppsBy Zak Doffman

The risk is that only by relaunching Chrome do you apply this critical update, if you don’t do that, your browser and device remains at risk to attacks now underway.

Google explains that “normally updates happen in the background when you close and reopen your computer’s browser. But if you haven’t closed your browser in a while, you might see a pending update.”

In your Chrome browser, you will see a “Relaunch Chrome” message, a “Relaunch to Update Chrome” Help menu option or even a “Relaunch Chrome within [X] days” warning message if you have an enterprise administered system.

If you see this message in any of its guises, your browser is not secure and you are at risk. It doesn’t appear unless there’s a pending update. Set against the backdrop of a critical, zero-day threat, it’s imperative that you relaunch right away.

This is a problem. Users avoid restarting Chrome to keep tabs open and for convenience. That’s why Google enables enterprises to force restarts. “As a Chrome Enterprise administrator,” Google says, “you can set policies to tell users that they need to relaunch Chrome browser to apply pending updates.”

MORE FROM FORBESMicrosoft’s Windows Upgrade Deadline—Now Just 8 Weeks AwayBy Zak Doffman

That tells you this is an issue, as supported by academic research and warnings elsewhere, where users also run risks by avoiding or delaying updates. Look no further than Apple’s well-publicized challenges in pushing iPhone users to iOS 26.

We’re barely into month four of 2026 and this latest confirmed attack is Google’s fourth Chrome zero-day of the year. Expect more. If you ever see the relaunch message, don’t hesitate to do exactly that. “The browser saves your opened tabs and windows and reopens them automatically when it restarts,” Google explains. But be warned, “your Incognito windows won’t reopen.”

This article was originally published on Forbes.com