New Chrome Zero-Day (CVE-2026-2441) Under Active Attack – Patch Released

Estimated reading time: 6 minutes

Key Takeaways:

  • Google confirmed CVE-2026-2441 as the first exploited Chrome zero-day of 2026.
  • CISA issued a mandatory 72-hour patch window for a critical BeyondTrust RCE vulnerability.
  • The new ZeroDayRAT mobile spyware is targeting high-value financial and communication apps via Telegram.
  • Security researchers have identified 25 structural vulnerabilities in major cloud-based password managers.
  • Infostealers like Vidar are now targeting agentic AI frameworks such as OpenClaw to harvest digital identities.

Table of Contents:

New Chrome Zero-Day (CVE-2026-2441) Under Active Attack – Patch Released

Google has confirmed the existence of a high-severity vulnerability, tracked as CVE-2026-2441, which is currently being exploited in the wild. This vulnerability marks the first actively exploited zero-day for the Chrome browser in 2026. The flaw is categorized as a use-after-free bug within the Cascading Style Sheets (CSS) component. Security researcher Shaheen Fazim reported the issue on February 11, 2026, leading to an emergency update to mitigate the risk of remote code execution (RCE).

The technical nature of CVE-2026-2441 involves memory corruption where the browser attempts to access memory after it has been freed. According to the National Vulnerability Database (NVD), this allows a remote attacker to execute arbitrary code within the browser’s sandbox by directing a user to a specially crafted HTML page. While the sandbox provides a layer of isolation, RCE within this environment is often a precursor to full system compromise if chained with other privilege escalation exploits.

Google released version 145.0.7632.75/76 for Windows and macOS, and 144.0.7559.75 for Linux to address this threat. Users of Chromium-based browsers-including Microsoft Edge, Brave, and Opera-must also apply corresponding updates as they become available. This disclosure follows a pattern of browser-based targets being prioritized by threat actors due to their ubiquitous presence across enterprise and consumer endpoints. In 2025, Google addressed eight such zero-day vulnerabilities, indicating a consistent focus on browser exploitation by advanced persistent threat (APT) groups and financially motivated actors.

BeyondTrust CVE-2026-1731: CISA Emergency Patch Mandate

Simultaneous with the Chrome zero-day, the Cybersecurity and Infrastructure Security Agency (CISA) has issued a directive for federal agencies to patch a critical flaw in BeyondTrust products within three days. Tracked as CVE-2026-1731, the vulnerability is an unauthenticated RCE flaw that allows attackers to execute operating system commands. BeyondTrust provides identity security services to over 20,000 customers, including a significant portion of the Fortune 100 and government entities.

The exploit requires no authentication or user interaction. If successful, it leads to data exfiltration, service disruption, and complete system compromise. CISA added this vulnerability to its Known Exploited Vulnerabilities (KEV) catalog following reports from threat intelligence analysts that active exploitation had commenced. Organizations utilizing a cyber threat intelligence platform should prioritize the detection of unpatched BeyondTrust instances to prevent unauthorized access.

The Rise of ZeroDayRAT and Mobile Surveillance

The threat environment is further complicated by the emergence of ZeroDayRAT, a mobile spyware platform currently being marketed via Telegram. Utilizing telegram threat monitoring has become essential for identifying these types of emerging threats before they reach the enterprise network. ZeroDayRAT targets both Android and iOS devices, facilitating real-time surveillance and data theft.

The malware provides operators with a self-hosted panel to view victim metadata, including GPS coordinates, device OS details, and app usage history. Its capabilities include:

  • Credential and Token Theft: Enumerating accounts for WhatsApp, Telegram, Google, and banking applications.
  • Keylogging and SMS Interception: Capturing one-time passwords (OTPs) to bypass two-factor authentication (2FA).
  • Real-time Surveillance: Remotely activating the device camera and microphone.
  • Financial Stealer Modules: Scanning for cryptocurrency wallets (MetaMask, Binance) and substituting wallet addresses in the clipboard.

Recent campaigns have seen similar mobile malware distributed through various channels. The Arsink RAT has been observed using Google Apps Script for data exfiltration, while the Anatsa banking trojan was found embedded in a document reader app on the Google Play Store. The deVixor trojan, targeting users in the Middle East, incorporates a ransomware module that can lock devices, requiring real-time ransomware intelligence to mitigate.

Vulnerabilities in Cloud Password Managers

A study conducted by researchers from ETH Zurich and Università della Svizzera italiana has identified 25 password recovery attacks against major cloud-based password managers, including Bitwarden, LastPass, and Dashlane. The research examined the “zero-knowledge encryption” (ZKE) claims of these providers.

The identified vulnerabilities fall into four categories:

  1. Key Escrow Flaws: Exploiting account recovery mechanisms to compromise vault confidentiality.
  2. Item-Level Encryption Weaknesses: Combining unauthenticated metadata with encrypted items to facilitate field swapping.
  3. Sharing Feature Exploits: Vulnerabilities within collaborative features that allow for integrity violations.
  4. Legacy Code Compatibility: Downgrade attacks that force the use of weaker cryptographic standards.

While 1Password was also analyzed, its use of Secure Remote Password (SRP) authentication was noted as a mitigating factor. Use of a dark web monitoring service is necessary for organizations to identify if employee credentials managed by these platforms have been compromised through such architectural flaws.

Agentic AI and OpenClaw Exploitation

Information-stealing malware has begun targeting agentic AI frameworks, specifically OpenClaw (formerly ClawdBot). As AI agents become integrated into professional workflows, they maintain persistent configuration files containing high-value secrets. A variant of the Vidar infostealer was recently observed exfiltrating the .openclaw directory from infected hosts.

The stolen files include authentication tokens, public and private keys (PEM format), and daily activity logs stored in soul.md. This shift necessitates supply-chain risk monitoring to ensure that local AI deployments do not create unauthenticated backdoors into corporate environments.

“The convergence of browser zero-days, mobile spyware, and AI-targeted infostealers demonstrates a multi-vector approach by modern threat actors.”

The Chrome zero-day (CVE-2026-2441) and the BeyondTrust RCE (CVE-2026-1731) are critical entry points. For engineers, the move toward “clickless” exploits shifts the burden of defense entirely toward patch management and breach detection capabilities. The exploitation of password manager architectures further suggests that even encrypted vaults are not immune to malicious-server scenarios.

Practical Takeaways for Technical Teams

  • Browser Baseline Updates: Enforce Chrome version 145.0.7632.75 or higher across all endpoints immediately.
  • Identity Security Patching: Prioritize the BeyondTrust CVE-2026-1731 update. Audit systems for indicators of compromise (IoCs) if unpatched after February 13, 2026.
  • Mobile Device Management (MDM): Restrict the installation of APKs from untrusted sources and monitor for unusual “enterprise provisioning” profiles.
  • AI Framework Security: Ensure configuration directories like .openclaw are excluded from broad file-stealing paths.
  • Credential Rotation: Consider rotating high-privilege credentials managed via cloud password managers that utilize shared folders.

Practical Takeaways for Business Leaders

  • Emergency Response Protocols: Empower IT teams to bypass standard maintenance windows for CISA KEV-listed vulnerabilities.
  • Audit AI Implementations: Perform risk assessments on where AI agents store API keys and personal data. Utilize brand leak alerting to identify exposed corporate data.
  • Employee Mobile Hygiene: Educate staff on the risks of Telegram-distributed apps and mobile spyware tactics.
  • Strategic Intelligence Investment: Utilize underground forum intelligence and a live ransomware API to stay ahead of specific tools being sold to attackers.

PurpleOps Expertise and Support

PurpleOps provides the technical infrastructure and intelligence required to navigate these complex vulnerabilities. Our platform integrates data from disparate sources to provide a unified view of the threat landscape. Our team specializes in identifying vulnerabilities like CVE-2026-2441 and CVE-2026-1731 through proactive security testing.

Explore our solutions:

Frequently Asked Questions

What is CVE-2026-2441?
It is a high-severity use-after-free vulnerability in the CSS component of Google Chrome that allows for remote code execution (RCE).

How do I know if my Chrome browser is patched?
Ensure you are running version 145.0.7632.75/76 or later. You can check this in Chrome Settings > About Chrome.

Why did CISA issue a 72-hour patch mandate for BeyondTrust?
Due to the critical nature of the CVE-2026-1731 unauthenticated RCE flaw and evidence of active exploitation by threat actors.

What is ZeroDayRAT?
A sophisticated mobile spyware marketed on Telegram that targets both Android and iOS for credential theft and real-time environmental surveillance.

Can AI agents like OpenClaw be compromised?
Yes, infostealers now target the specific directories where AI agents store authentication tokens and activity logs, effectively stealing the user’s “digital soul.”