Google Chrome launches Merkle Tree Certificates for quantum-resistant HTTPS
Security Tool/Service
Summary
Hide ▲
Show ▼
Google Chrome has launched a new security initiative to harden HTTPS against future quantum computers, and the change matters because it reworks certificate handling before post-quantum attacks become practical. The effort centers on Merkle Tree Certificates (MTCs), a lighter trust model designed to preserve web performance while improving certificate transparency and root trust infrastructure. Chrome is already testing on live traffic, with a phased rollout that reaches Q1 2027 and a dedicated quantum-resistant root store planned for Q3 2027.
Related Happenings
Microsoft Exchange Online blocks legacy TLS for POP3 and IMAP4 starting July 2026
Security Tool/Service
First: 28.04.2026 16:18
Last: 28.04.2026 16:18
Sources 1
About this happening:
**Microsoft** will block **TLS 1.0** and **TLS 1.1** for **POP3/IMAP4** access to **Exchange Online** in **July 2026**, which could break legacy mail clients and embedded devices...
Microsoft Exchange Online blocks legacy TLS for POP3 and IMAP4 starting July 2026
Security Tool/ServiceAbout this happening: **Microsoft** will block **TLS 1.0** and **TLS 1.1** for **POP3/IMAP4** access to **Exchange Online** in **July 2026**, which could break legacy mail clients and embedded devices...
Google Gmail adds native end-to-end encryption on Android and iOS for enterprise users
Security Tool/Service
First: 10.04.2026 13:44
Last: 10.04.2026 13:44
Sources 1
About this happening:
Google has rolled out **native Gmail end-to-end encryption** on **Android** and **iOS**, letting enterprise users read and compose encrypted mail in the app without extra tools. T...
Google Gmail adds native end-to-end encryption on Android and iOS for enterprise users
Security Tool/ServiceAbout this happening: Google has rolled out **native Gmail end-to-end encryption** on **Android** and **iOS**, letting enterprise users read and compose encrypted mail in the app without extra tools. T...
VoidStealer debugger-based ABE-bypass infostealer
Malware Activity
First: 22.03.2026 16:32
Last: 22.03.2026 16:32
Sources 1
About this happening:
**VoidStealer** now uses a **debugger-based ABE bypass** to steal **Chrome** master keys, increasing the risk of browser credential and sensitive-data theft. The infostealer can e...
VoidStealer debugger-based ABE-bypass infostealer
Malware ActivityAbout this happening: **VoidStealer** now uses a **debugger-based ABE bypass** to steal **Chrome** master keys, increasing the risk of browser credential and sensitive-data theft. The infostealer can e...
ShieldGuard browser-extension data-harvesting malware
Malware Activity
First: 18.03.2026 16:15
Last: 18.03.2026 16:15
Sources 1
About this happening:
A malicious **ShieldGuard** browser extension was dismantled after it was found harvesting sensitive data from **crypto users**, putting wallet and account information at risk. Th...
ShieldGuard browser-extension data-harvesting malware
Malware ActivityAbout this happening: A malicious **ShieldGuard** browser extension was dismantled after it was found harvesting sensitive data from **crypto users**, putting wallet and account information at risk. Th...
Chrome Skia and V8 exploited zero-days (multiple vulnerabilities)
Vulnerability
First: 13.03.2026 11:17
Last: 13.03.2026 11:17
Sources 1
About this happening:
**Chrome** on **Windows, macOS, and Linux** is affected by two **high-severity zero-days**, **CVE-2026-3909** and **CVE-2026-3910**, that Google says were **exploited in the wild*...
Chrome Skia and V8 exploited zero-days (multiple vulnerabilities)
VulnerabilityAbout this happening: **Chrome** on **Windows, macOS, and Linux** is affected by two **high-severity zero-days**, **CVE-2026-3909** and **CVE-2026-3910**, that Google says were **exploited in the wild*...
Timeline
-
02.03.2026 18:15 2 articles · 2mo ago
Chrome launches MTC quantum-safe HTTPS plan
Initial DisclosureGoogle Chrome launches Merkle Tree Certificates (MTCs) to protect HTTPS from future quantum-computer attacks, working through the IETF PLANTS working group to redesign certificate validation so it keeps TLS overhead lower than larger post-quantum X.509 certificates. Chrome says it is already testing MTCs on live internet traffic with Cloudflare as a feasibility study, keeping traditional X.509 certificates as a fail-safe, and it plans a first-quarter-2027 public MTC deployment step followed by a third-quarter-2027 Chrome Quantum-resistant Root Store dedicated to MTCs.
Show sources
- Chrome Unveils Plan For Quantum-Safe HTTPS Certificates — www.infosecurity-magazine.com — 02.03.2026 18:15
- Chrome Unveils Plan For Quantum-Safe HTTPS Certificates — www.infosecurity-magazine.com — 02.03.2026 18:15