{"id":8654,"date":"2026-06-24T08:31:29","date_gmt":"2026-06-24T08:31:29","guid":{"rendered":"https:\/\/locaterisk.com\/de\/?p=8654"},"modified":"2026-06-24T09:16:20","modified_gmt":"2026-06-24T09:16:20","slug":"interpol-asia-pacific-cybercrime-phishing-ransomware","status":"publish","type":"post","link":"https:\/\/locaterisk.com\/en\/interpol-asia-pacific-cybercrime-phishing-ransomware\/","title":{"rendered":"CVE-2026-11645: Chrome Zero-Day and the Growing Threat of Phishing"},"content":{"rendered":"<div class=\"wp-block-lr-blog-article-header-module\">\r\n    <div class=\"content\">\r\n\t\t<div class=\"headline\">\r\n\t\t\t<button class=\"to-blog-button\">Back to Blog                <a href=\"https:\/\/locaterisk.com\/en\/blog\/\"><\/a>\r\n\t\t\t<\/button>\r\n\t\t\t\t\t<\/div>\r\n        <div class=\"main-content\">\r\n\t\t\t\t\t\t<!--\r\n            <div class=\"header\">\r\n                <h6> <\/h6>\r\n            <\/div>\r\n\t\t\t\t\t\t-->\r\n            <h1 class=\"title\">CVE-2026-11645: Chrome Zero-Day and the Growing Threat of Phishing<\/h1>\r\n            <p class=\"paragraph\"><br>On June 17, 2026, INTERPOL released its \u201eAsia and South Pacific Cyberthreat Assessment Report,\u201c which documents a significant increase in phishing, ransomware, and AI-powered fraud. At the same time, with <strong>CVE-2026-11645<\/strong> The report highlights a critical zero-day vulnerability in Google Chrome that is already being actively exploited. The vulnerability in the V8 JavaScript engine allows attackers to execute malicious code and, when combined with the social engineering methods described in the report, poses a serious threat to businesses worldwide.<br><\/p>\r\n        <\/div>\r\n    <\/div>\r\n<\/div>\r\n\r\n\r\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"400\" height=\"400\" src=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured.png\" alt=\"CVE-2026-11645: Chrome Zero-Day und die wachsende Bedrohung durch Phishing\" class=\"wp-image-8653\" srcset=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured.png 400w, https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured-300x300.png 300w, https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured-150x150.png 150w, https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured-12x12.png 12w\" sizes=\"auto, (max-width: 400px) 100vw, 400px\" \/><\/figure><\/div>\n\n\n<h2 class=\"wp-block-heading\">The INTERPOL Report: Phishing as the Primary Attack Vector<\/h2>\n\n\n\n<p>The report, which analyzes the period from January 2024 to March 2025, shows that phishing and social engineering remain the dominant entry points for cyberattacks. In the Asia-Pacific region, the click-through rate on phishing links\u2014at 5.5 per 1,000 people\u2014is nearly twice as high as the global average. These attacks pave the way for more serious incidents:<br><br><em>   <strong>System crashes<\/strong> were responsible for approximately 80 % of the data breaches in 2024. <\/em>   In 83 % of these break-ins, <strong>Malware<\/strong> used in 51 % of the cases <strong>Ransomware<\/strong>. <em>   <strong>DDoS attacks<\/strong> Measures increased by 92 % compared to the previous year. <\/em>   Discussions about <strong>Deepfakes<\/strong> On criminal forums, the number of posts increased by 600 % between February and June 2024.<br><br>These figures illustrate that technical vulnerabilities often only become a widespread threat after a successful initial contact via phishing.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Technical Background: CVE-2026-11645<\/h2>\n\n\n\n<p>The vulnerability in Google Chrome was added by the U.S. agency CISA to its list of actively exploited vulnerabilities as early as June 8, 2026. It poses a direct threat to end devices and is particularly dangerous due to the high susceptibility to phishing attacks.<br><br><em>   <strong>Vulnerability:<\/strong> CVE-2026-11645 <\/em>   <strong>Type:<\/strong> Out-of-Bounds Read and Write in the V8 JavaScript Engine (CWE-125\/CWE-787) <em>   <strong>CVSS Score:<\/strong> <strong>8.8<\/strong> (High) <\/em>   <strong>Effect:<\/strong> Even though the exploit initially runs within the browser sandbox, this vulnerability allows for the systematic extraction of active session cookies, credentials, and tokens for cloud and SaaS services (e.g., AWS, Microsoft 365, Salesforce). Furthermore, chains involving sandbox-escape exploits pose a risk of complete host takeover. <em>   <strong>Affected versions:<\/strong> (Originally) All versions of Google Chrome prior to 149.0.7827.103 <\/em>   <strong>Status:<\/strong> Is actively exploited.<br><br>Exploitation requires user interaction, such as clicking on a link in a phishing email. This brings us back to the INTERPOL report: The high willingness to click on malicious links creates ideal conditions for effectively exploiting browser-based zero-day vulnerabilities to gain initial access.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Recommended Precautions<\/h2>\n\n\n\n<p>The most important immediate action is to update all Google Chrome installations right away. Google released the security updates on June 8, 2026.<br><br><em>   <strong>Windows and macOS:<\/strong> Version <strong>149.0.7827.102\/.103<\/strong> or newer <\/em>   <strong>Linux:<\/strong> Version <strong>149.0.7827.102<\/strong> or newer<br><br>Since rolling out an update often depends on the number of clients and can therefore take a considerable amount of time, additional measures should be implemented in parallel to mitigate the impact: Forced browser restart: Since Chrome updates often do not take effect until after a restart, Group Policy Objects (GPOs) should be enforced to force users to close the browser. Stricter web filtering policies: Temporarily block access to uncategorized or newly registered domains via your Secure Web Gateway (SWG) to make it more difficult for the exploit to be delivered. Email hardening: Enable strict filtering of links in incoming emails (link rewriting\/sandboxing).<br><br>Strategically, companies must strengthen their defenses against social engineering. This includes providing regular security training for employees to help them recognize phishing attempts and implementing technical controls such as DMARC, DKIM, and SPF to make email spoofing more difficult.<br><br>CVE-2026-11645 is also directly relevant to European companies: If exploitation of this vulnerability leads to the compromise of personal data, the 72-hour reporting obligation under Article 33 of the GDPR to the competent supervisory authority applies. In addition, companies subject to NIS 2 must ensure that patch management processes for endpoint software are documented and verifiable. The BSI generally recommends installing browser updates immediately as a critical security measure.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">How LocateRisk Strengthens Resilience Against Such Attacks<\/h2>\n\n\n\n<p>Although CVE-2026-11645 is an endpoint vulnerability, monitoring the external attack surface plays an important role in preventing such attack vectors.<br><br><strong>External Attack Surface Management (EASM):<\/strong> LocateRisk automatically identifies IT systems connected to the Internet, assesses their security status, and detects risks such as configuration vulnerabilities\u2014including missing or incorrect email security standards (SPF, DMARC) as well as outdated, publicly accessible web applications and services. Management and IT receive clear, prioritized reports on the security situation; intelligent features support targeted security measures and accelerate the remediation process.<br><br><strong>Vendor Risk Management (VRM):<\/strong> The security of your supply chain is critical. Many third-party applications used in enterprises\u2014including Electron-based desktop tools and line-of-business applications that embed CEF\u2014are based on the same V8 engine as Google Chrome and are equally vulnerable to flaws such as CVE-2026-11645. LocateRisk helps you continuously monitor patch compliance for such browser-based components at key suppliers. This allows you to identify early on whether third-party providers have poor patch management practices that could put your own organization at risk.<\/p>\n\n\n\n<p><br><br><br>Sources and further information<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>INTERPOL:<\/strong> <a href=\"https:\/\/www.interpol.int\/News-and-Events\/News\/2026\/New-INTERPOL-report-highlights-escalating-cyber-threats-across-Asia-and-South-Pacific\" target=\"_blank\" rel=\"noreferrer noopener\">New INTERPOL report highlights escalating cyber threats across Asia and the South Pacific<\/a> (Press Release)<\/li>\n\n\n\n<li><strong>INTERPOL:<\/strong> <a href=\"https:\/\/www.interpol.int\/content\/download\/24327\/file\/CYBER_ASP%20Cyber%20Threat%20Assessment%20Report_2025_2026_v4.pdf\" target=\"_blank\" rel=\"noreferrer noopener\">2025\/2026 Asia and South Pacific Cyber Threat Assessment Report<\/a> (Full report, PDF)<\/li>\n\n\n\n<li><strong>NIST NVD:<\/strong> <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2026-11645\" target=\"_blank\" rel=\"noreferrer noopener\">CVE-2026-11645 Vulnerability Details<\/a><\/li>\n\n\n\n<li><strong>Google:<\/strong> <a href=\"https:\/\/chromereleases.googleblog.com\/2026\/06\/stable-channel-update-for-desktop_0153744567.html\" target=\"_blank\" rel=\"noreferrer noopener\">Stable Channel Update for Desktop<\/a> (Vendor Advisory)<\/li>\n\n\n\n<li><strong>CISA:<\/strong> <a href=\"https:\/\/www.cisa.gov\/known-exploited-vulnerabilities-catalog\" target=\"_blank\" rel=\"noreferrer noopener\">Catalog of Known Exploited Vulnerabilities<\/a> (Entry for CVE-2026-11645)<\/li>\n<\/ul>\n\n\n\n<div class=\"wp-block-lr-faq-module\"><div class=\"content\"><h3><strong>Frequently asked questions<\/strong><\/h3><div class=\"faq-topic\"><hr\/><div class=\"collapsible-title\"><a class=\"pr-4\"><strong>What is CVE-2026-11645?<\/strong><\/a><img class=\"collapse-toggle\" srcset=\"https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@3x.png 3x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@2x.png 2x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus.png 1x\"\/><\/div><div class=\"collapsible-content\"><p class=\"font-normal\">This is an actively exploited vulnerability in the V8 JavaScript engine of Google Chrome with a CVSS score of <strong>8.8<\/strong> (High). It allows a remote attacker to execute arbitrary code within the browser sandbox via a manipulated website. CISA added CVE-2026-11645 to its catalog of known exploited vulnerabilities on June 8, 2026. Since the browser serves as the gateway to all enterprise SaaS services, this vulnerability poses a risk of session token theft and, consequently, unauthorized access to sensitive cloud resources.<\/p><\/div><\/div><div class=\"faq-topic\"><hr\/><div class=\"collapsible-title\"><a class=\"pr-4\"><strong>Which versions of Chrome are secure?<\/strong><\/a><img class=\"collapse-toggle\" srcset=\"https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@3x.png 3x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@2x.png 2x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus.png 1x\"\/><\/div><div class=\"collapsible-content\"><p class=\"font-normal\">For Windows and macOS, the version is <strong>149.0.7827.102\/.103<\/strong> or newer, for sure. Linux users should use version <strong>149.0.7827.102<\/strong> or update to a newer version. Google released the updates on June 8, 2026; you can check the patch status in the <a href=\"https:\/\/chromereleases.googleblog.com\/2026\/06\/stable-channel-update-for-desktop_0153744567.html\" target=\"_blank\" rel=\"noreferrer noopener\">Google Vendor Advisory<\/a> track.<\/p><\/div><\/div><div class=\"faq-topic\"><hr\/><div class=\"collapsible-title\"><a class=\"pr-4\">How relevant is the INTERPOL report to European companies?<\/a><img class=\"collapse-toggle\" srcset=\"https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@3x.png 3x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@2x.png 2x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus.png 1x\"\/><\/div><div class=\"collapsible-content\"><p class=\"font-normal\">The report shows that the increasing sophistication of phishing (including AI-assisted attacks) significantly boosts click-through rates. Since an exploit such as CVE-2026-11645 requires a click, the risk of successful initial access is rising across all industries. <\/p><\/div><\/div><div class=\"faq-topic\"><hr\/><div class=\"collapsible-title\"><a class=\"pr-4\">How does LocateRisk help protect against browser vulnerabilities?<\/a><img class=\"collapse-toggle\" srcset=\"https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@3x.png 3x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@2x.png 2x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus.png 1x\"\/><\/div><div class=\"collapsible-content\"><p class=\"font-normal\">LocateRisk minimizes risk proactively: First, by identifying vulnerabilities in email validation protocols (EASM) to curb phishing. Second, by automatically monitoring the security compliance of your IT service providers and software vendors (VRM) that use the same vulnerable software components. <a href=\"https:\/\/locaterisk.com\/en\/demo\/\" target=\"_blank\" rel=\"noreferrer noopener\">Request a free safety check<\/a><\/p><\/div><\/div><\/div><\/div>\n\n\n\n<div class=\"wp-block-lr-contact-post-module\">\n\t<div id=\"lr-contact-form\" class=\"wp-block-lr-contact-post-module\">\n\t\t<div id=\"formular\" class=\"content\">\n\t\t\t<div class=\"inner-content\">\n\t\t\t\t<div class=\"column-2 feature-mode\">\n\t\t\t\t\t<h2><br>Request your personal Live-Demo now<\/h2>\n\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t<div>\n\t\t\t\t\t\t\t\t<p class=\"margin-b-36\">Identify and reduce your cyber risks through a comparable and understandable overview of your IT security. Let our experts advise you and find out how LocateRisk can help you solve your cyber risks.<\/p>\n\t\t\t\t\t\t\t<\/div>\t\n\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t<\/div> \n\t\t\t\t<div class=\"column-2\">\n\t\t\t\t\t<form action=\"\" class=\"form\" method=\"post\" role=\"form\" novalidate data-trp-original-action=\"\">\n\t\t\t\t\t\t<input type=\"text\" id=\"successmessage\" name=\"successmessage\" value=\"Ihre Registrierung war erfolgreich Ihre Anfrage wurde erfolgreich versendet. Wir haben Ihnen soeben eine Best\u00e4tigungsmail mit einem Aktivierungs-Link zugesendet, um einem Missbrauch Ihrer E-Mail Adresse durch Dritte vorzubeugen. Die Mail wird von sales@locaterisk.com versendet und sollte sich i n wenigen Minuten in Ihrem Posteingang finden.\" hidden>\n\t\t\t\t\t\t<input type=\"text\" id=\"errormessage\" name=\"errormessage\" value=\"Da ist wohl etwas schief gelaufen. Bitte probieren Sie es erneut oder nehmen Sie direkt mit uns Kontakt auf\" hidden>\n\t\t\t\t\t\t<input type=\"text\" id=\"slug\" name=\"slug\" value=\"interpol-asia-pacific-cybercrime-phishing-ransomware\" hidden>\n\n\t\t\t\t\t\t\t\t\t\t\t\t\t<input\n\t\t\t\t\t\t\t\ttype=\"text\"\n\t\t\t\t\t\t\t\tid=\"name\"\n\t\t\t\t\t\t\t\tname=\"name\"\n\t\t\t\t\t\t\t\tplaceholder=\"first name\"\n\t\t\t\t\t\t\t\trequired\tmaxlength=\"50\"\/>\n\n\t\t\t\t\t\t\t<input\n\t\t\t\t\t\t\t\ttype=\"text\"\n\t\t\t\t\t\t\t\tid=\"surname\"\n\t\t\t\t\t\t\t\tname=\"surname\"\n\t\t\t\t\t\t\t\tplaceholder=\"last name\"\n\t\t\t\t\t\t\t\trequired\n\t\t\t\t\t\t\t\tmaxlength=\"50\"\/>\n\t\t\t\t\t\t\n\t\t\t\t\t\t<input\n\t\t\t\t\t\t\ttype=\"email\"\n\t\t\t\t\t\t\tid=\"email\"\n\t\t\t\t\t\t\tname=\"email\"\n\t\t\t\t\t\t\tplaceholder=\"Email\"\n\t\t\t\t\t\t\trequired\n\t\t\t\t\t\t\tmaxlength=\"50\"\/>\n\n\t\t\t\t\t\t<input\n\t\t\t\t\t\t\ttype=\"text\"\n\t\t\t\t\t\t\tid=\"phone\"\n\t\t\t\t\t\t\tname=\"phone\"\n\t\t\t\t\t\t\tplaceholder=\"phone\"\n\t\t\t\t\t\t\trequired\n\t\t\t\t\t\t\tmaxlength=\"50\"\/>\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t<h6 class=\"error-message\" hidden>...<\/h6>\n\t\t\t\t\t\t<div class=\"checkbox_container\">\n\t\t\t\t\t\t\t<div class=\"checkbox\">\n\t\t\t\t\t\t\t\t<input\n\t\t\t\t\t\t\t\t\ttype=\"checkbox\"\n\t\t\t\t\t\t\t\t\tid=\"checkbox\"\n\t\t\t\t\t\t\t\t\tname=\"checkbox\" \/>\n\n\t\t\t\t\t\t\t\t<label for=\"checkbox\"><\/label>\n\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t\t<p class=\"translation-block\">I agree with the <a href=\"https:\/\/locaterisk.com\/en\/datenschutz\/\" target=\"_self\">privacy policy<\/a>.<\/p> \n\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t\n\t\t\t\t\t<div class=\"g-recaptcha\" data-sitekey=\"6LdErNoZAAAAAD1Re2jNxtDFfcDaL9iED5MRBzjR\" data-callback=\"verifyRecaptchaCallback\" data-expired-callback=\"expiredRecaptchaCallback\"><\/div>\n\t\t\t\t\t<input type=\"hidden\" name=\"g-recaptcha-response\" data-recaptcha \/>\n\n\t\t\t\t\t\t<button class=\"lr-button-link\" type=\"submit\"> Request a Demo<\/button>\n\t\t\t\t\t<input type=\"hidden\" name=\"trp-form-language\" value=\"en\"\/><\/form>\n\t\t\t\t<\/div>\n\t\t\t<\/div>\n\t\t<\/div>\n\t<\/div>\n\t\n\t<\/div>\n\n\n\n<hr class=\"wp-block-separator has-css-opacity is-style-wide\"\/>\n\n\n\n<div class=\"wp-block-lr-contact-module\"><div class=\"content\"><h2>Want to find out more, book a demo or simply exchange ideas? We look forward to hearing from you!<\/h2><div class=\"contact-info-row\"><div class=\"contact-person-info\"><div class=\"avatar\"><img decoding=\"async\" src=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2025\/06\/Lukas_Baumann_LocateRisk-300.png\"><\/div><p><span class=\"text before\">Your personal consultant<\/span><span class=\"bold name\"><strong>Lukas<\/strong><\/span> <span class=\"lastname\"><strong>Baumann<strong><\/strong><\/strong><\/span><strong><strong><span class=\"separator\"><\/span><span class=\"role\">CEO<\/span><\/strong><\/strong><\/p><\/div><p class=\"bold phone\"><strong><strong>+49 6151 6290246<\/strong><\/strong><\/p><strong><strong><a class=\"pr-1\" href=\"mailto: sales@locaterisk.com\">Get in Touch Now<\/a><\/strong><\/strong><\/div><\/div><\/div>\n\n\n\n<p><\/p>\n\n\n\n<p><\/p>\n\n\n\n<div class=\"wp-block-lr-footer-module lr-footer-block\"><div class=\"content\"><div class=\"column0\"><img decoding=\"async\" src=\"https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/assets\/img\/lr-logo.svg\"\/><\/div><div class=\"categories\"><div class=\"categories-element\"><a class=\"pr-4\" href=\"https:\/\/locaterisk.com\/en\/\">Home<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/en\/blog\/\">Blog<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/en\/about\/\">About Us<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/en\/kontakt\/\">Contact<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/en\/impressum\/\">Legal Notice<\/a><\/div><div class=\"categories-break\"><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/en\/datenschutz\/\">Privacy<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/files\/gtc.pdf\">General Terms and Conditions<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/en\/jobs\/\">Jobs<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/files\/sec-information.pdf\">Security<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"https:\/\/app.secfix.com\/trust\/locaterisk\/d1e7d433b33643aea1880bfbfeab9f60\">Trust Center<\/a><\/div><\/div><div class=\"social\"><div class=\"social-element\"><a target=\"_blank\" href=\"https:\/\/www.linkedin.com\/company\/locaterisk\/\"><img decoding=\"async\" src=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2020\/10\/gruppe-230@3x.png\"\/><\/a><\/div><div class=\"social-element\"><a target=\"_blank\" href=\"https:\/\/www.instagram.com\/locaterisk\/\"><img decoding=\"async\" src=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2020\/11\/Instagram.png\"\/><\/a><\/div><div class=\"social-element\"><a target=\"_blank\" href=\"https:\/\/twitter.com\/locaterisk\"><img decoding=\"async\" src=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2020\/11\/twitter.png\"\/><\/a><\/div><\/div><div class=\"description\"><h6>\u00a9 LocateRisk 2026<\/h6><\/div><\/div><\/div>","protected":false},"excerpt":{"rendered":"<p>INTERPOL reports a rise in cybercrime. At the same time, a Chrome zero-day vulnerability (CVE-2026-11645, CVSS 8.8) that is actively being exploited has come to light. Analysis and protective measures.<\/p>","protected":false},"author":13,"featured_media":8653,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[674,676,92,432,673,378,202,675,132],"class_list":["post-8654","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blogpost","tag-cve-2026-11645","tag-cyberthreat-report","tag-easm","tag-google-chrome","tag-interpol","tag-phishing","tag-ransomware","tag-v8-schwachstelle","tag-zero-day"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.9 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>CVE-2026-11645: Chrome Zero-Day &amp; INTERPOL Cybercrime-Report analysiert<\/title>\n<meta name=\"description\" content=\"INTERPOL meldet einen Anstieg von Cybercrime. Gleichzeitig wird ein aktiv ausgenutzter Chrome Zero-Day (CVE-2026-11645, CVSS 8.8) bekannt. Analyse und Schutzma\u00dfnahmen.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/locaterisk.com\/en\/interpol-asia-pacific-cybercrime-phishing-ransomware\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"CVE-2026-11645: Chrome Zero-Day &amp; INTERPOL Cybercrime-Report analysiert\" \/>\n<meta property=\"og:description\" content=\"INTERPOL meldet einen Anstieg von Cybercrime. Gleichzeitig wird ein aktiv ausgenutzter Chrome Zero-Day (CVE-2026-11645, CVSS 8.8) bekannt. Analyse und Schutzma\u00dfnahmen.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/locaterisk.com\/en\/interpol-asia-pacific-cybercrime-phishing-ransomware\/\" \/>\n<meta property=\"og:site_name\" content=\"LocateRisk\" \/>\n<meta property=\"article:published_time\" content=\"2026-06-24T08:31:29+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-24T09:16:20+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured.png\" \/>\n\t<meta property=\"og:image:width\" content=\"400\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Kristina Hoinkis\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Kristina Hoinkis\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"8 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/interpol-asia-pacific-cybercrime-phishing-ransomware\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/interpol-asia-pacific-cybercrime-phishing-ransomware\\\/\"},\"author\":{\"name\":\"Kristina Hoinkis\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#\\\/schema\\\/person\\\/68f3857c15afa8ff59c545848dddcc32\"},\"headline\":\"CVE-2026-11645: Chrome Zero-Day und die wachsende Bedrohung durch Phishing\",\"datePublished\":\"2026-06-24T08:31:29+00:00\",\"dateModified\":\"2026-06-24T09:16:20+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/interpol-asia-pacific-cybercrime-phishing-ransomware\\\/\"},\"wordCount\":1183,\"publisher\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/interpol-asia-pacific-cybercrime-phishing-ransomware\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/locaterisk.com\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured.png\",\"keywords\":[\"CVE-2026-11645\",\"Cyberthreat Report\",\"EASM\",\"Google Chrome\",\"INTERPOL\",\"Phishing\",\"Ransomware\",\"V8 Schwachstelle\",\"Zero-Day\"],\"articleSection\":[\"Blog post\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/interpol-asia-pacific-cybercrime-phishing-ransomware\\\/\",\"url\":\"https:\\\/\\\/locaterisk.com\\\/interpol-asia-pacific-cybercrime-phishing-ransomware\\\/\",\"name\":\"CVE-2026-11645: Chrome Zero-Day & INTERPOL Cybercrime-Report analysiert\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/interpol-asia-pacific-cybercrime-phishing-ransomware\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/interpol-asia-pacific-cybercrime-phishing-ransomware\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/locaterisk.com\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured.png\",\"datePublished\":\"2026-06-24T08:31:29+00:00\",\"dateModified\":\"2026-06-24T09:16:20+00:00\",\"description\":\"INTERPOL meldet einen Anstieg von Cybercrime. Gleichzeitig wird ein aktiv ausgenutzter Chrome Zero-Day (CVE-2026-11645, CVSS 8.8) bekannt. Analyse und Schutzma\u00dfnahmen.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/interpol-asia-pacific-cybercrime-phishing-ransomware\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/locaterisk.com\\\/interpol-asia-pacific-cybercrime-phishing-ransomware\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/interpol-asia-pacific-cybercrime-phishing-ransomware\\\/#primaryimage\",\"url\":\"https:\\\/\\\/locaterisk.com\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured.png\",\"contentUrl\":\"https:\\\/\\\/locaterisk.com\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured.png\",\"width\":400,\"height\":400,\"caption\":\"CVE-2026-11645: Chrome Zero-Day und die wachsende Bedrohung durch Phishing\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/interpol-asia-pacific-cybercrime-phishing-ransomware\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/locaterisk.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"CVE-2026-11645: Chrome Zero-Day und die wachsende Bedrohung durch Phishing\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#website\",\"url\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/\",\"name\":\"LocateRisk\",\"description\":\"IT-Sicherheit messen und vergleichen\",\"publisher\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#organization\",\"name\":\"LocateRisk\",\"url\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/locaterisk.com\\\/wp-content\\\/uploads\\\/2020\\\/11\\\/Kettenglieder_V0216-9.jpg\",\"contentUrl\":\"https:\\\/\\\/locaterisk.com\\\/wp-content\\\/uploads\\\/2020\\\/11\\\/Kettenglieder_V0216-9.jpg\",\"width\":1920,\"height\":1080,\"caption\":\"LocateRisk\"},\"image\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.linkedin.com\\\/company\\\/locaterisk\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#\\\/schema\\\/person\\\/68f3857c15afa8ff59c545848dddcc32\",\"name\":\"Kristina Hoinkis\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/7756f96249844e60ceb218f17e06217dcbed4993bcd2124e3f59bb8675324f0d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/7756f96249844e60ceb218f17e06217dcbed4993bcd2124e3f59bb8675324f0d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/7756f96249844e60ceb218f17e06217dcbed4993bcd2124e3f59bb8675324f0d?s=96&d=mm&r=g\",\"caption\":\"Kristina Hoinkis\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"CVE-2026-11645: Analysis of the Chrome Zero-Day Vulnerability and the INTERPOL Cybercrime Report","description":"INTERPOL reports a rise in cybercrime. At the same time, a Chrome zero-day vulnerability (CVE-2026-11645, CVSS 8.8) that is actively being exploited has come to light. Analysis and protective measures.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/locaterisk.com\/en\/interpol-asia-pacific-cybercrime-phishing-ransomware\/","og_locale":"en_US","og_type":"article","og_title":"CVE-2026-11645: Chrome Zero-Day & INTERPOL Cybercrime-Report analysiert","og_description":"INTERPOL meldet einen Anstieg von Cybercrime. Gleichzeitig wird ein aktiv ausgenutzter Chrome Zero-Day (CVE-2026-11645, CVSS 8.8) bekannt. Analyse und Schutzma\u00dfnahmen.","og_url":"https:\/\/locaterisk.com\/en\/interpol-asia-pacific-cybercrime-phishing-ransomware\/","og_site_name":"LocateRisk","article_published_time":"2026-06-24T08:31:29+00:00","article_modified_time":"2026-06-24T09:16:20+00:00","og_image":[{"width":400,"height":400,"url":"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured.png","type":"image\/png"}],"author":"Kristina Hoinkis","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Kristina Hoinkis","Est. reading time":"8 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/locaterisk.com\/interpol-asia-pacific-cybercrime-phishing-ransomware\/#article","isPartOf":{"@id":"https:\/\/locaterisk.com\/interpol-asia-pacific-cybercrime-phishing-ransomware\/"},"author":{"name":"Kristina Hoinkis","@id":"https:\/\/locaterisk.com\/de\/#\/schema\/person\/68f3857c15afa8ff59c545848dddcc32"},"headline":"CVE-2026-11645: Chrome Zero-Day und die wachsende Bedrohung durch Phishing","datePublished":"2026-06-24T08:31:29+00:00","dateModified":"2026-06-24T09:16:20+00:00","mainEntityOfPage":{"@id":"https:\/\/locaterisk.com\/interpol-asia-pacific-cybercrime-phishing-ransomware\/"},"wordCount":1183,"publisher":{"@id":"https:\/\/locaterisk.com\/de\/#organization"},"image":{"@id":"https:\/\/locaterisk.com\/interpol-asia-pacific-cybercrime-phishing-ransomware\/#primaryimage"},"thumbnailUrl":"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured.png","keywords":["CVE-2026-11645","Cyberthreat Report","EASM","Google Chrome","INTERPOL","Phishing","Ransomware","V8 Schwachstelle","Zero-Day"],"articleSection":["Blog post"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/locaterisk.com\/interpol-asia-pacific-cybercrime-phishing-ransomware\/","url":"https:\/\/locaterisk.com\/interpol-asia-pacific-cybercrime-phishing-ransomware\/","name":"CVE-2026-11645: Analysis of the Chrome Zero-Day Vulnerability and the INTERPOL Cybercrime Report","isPartOf":{"@id":"https:\/\/locaterisk.com\/de\/#website"},"primaryImageOfPage":{"@id":"https:\/\/locaterisk.com\/interpol-asia-pacific-cybercrime-phishing-ransomware\/#primaryimage"},"image":{"@id":"https:\/\/locaterisk.com\/interpol-asia-pacific-cybercrime-phishing-ransomware\/#primaryimage"},"thumbnailUrl":"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured.png","datePublished":"2026-06-24T08:31:29+00:00","dateModified":"2026-06-24T09:16:20+00:00","description":"INTERPOL reports a rise in cybercrime. At the same time, a Chrome zero-day vulnerability (CVE-2026-11645, CVSS 8.8) that is actively being exploited has come to light. Analysis and protective measures.","breadcrumb":{"@id":"https:\/\/locaterisk.com\/interpol-asia-pacific-cybercrime-phishing-ransomware\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/locaterisk.com\/interpol-asia-pacific-cybercrime-phishing-ransomware\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/locaterisk.com\/interpol-asia-pacific-cybercrime-phishing-ransomware\/#primaryimage","url":"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured.png","contentUrl":"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/interpol-asia-pacific-cybercrime-phishing-ransomware-featured.png","width":400,"height":400,"caption":"CVE-2026-11645: Chrome Zero-Day und die wachsende Bedrohung durch Phishing"},{"@type":"BreadcrumbList","@id":"https:\/\/locaterisk.com\/interpol-asia-pacific-cybercrime-phishing-ransomware\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/locaterisk.com\/"},{"@type":"ListItem","position":2,"name":"CVE-2026-11645: Chrome Zero-Day und die wachsende Bedrohung durch Phishing"}]},{"@type":"WebSite","@id":"https:\/\/locaterisk.com\/de\/#website","url":"https:\/\/locaterisk.com\/de\/","name":"LocateRisk","description":"Measure and compare IT security","publisher":{"@id":"https:\/\/locaterisk.com\/de\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/locaterisk.com\/de\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/locaterisk.com\/de\/#organization","name":"LocateRisk","url":"https:\/\/locaterisk.com\/de\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/locaterisk.com\/de\/#\/schema\/logo\/image\/","url":"https:\/\/locaterisk.com\/wp-content\/uploads\/2020\/11\/Kettenglieder_V0216-9.jpg","contentUrl":"https:\/\/locaterisk.com\/wp-content\/uploads\/2020\/11\/Kettenglieder_V0216-9.jpg","width":1920,"height":1080,"caption":"LocateRisk"},"image":{"@id":"https:\/\/locaterisk.com\/de\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.linkedin.com\/company\/locaterisk\/"]},{"@type":"Person","@id":"https:\/\/locaterisk.com\/de\/#\/schema\/person\/68f3857c15afa8ff59c545848dddcc32","name":"Kristina Hoinkis","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/7756f96249844e60ceb218f17e06217dcbed4993bcd2124e3f59bb8675324f0d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/7756f96249844e60ceb218f17e06217dcbed4993bcd2124e3f59bb8675324f0d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/7756f96249844e60ceb218f17e06217dcbed4993bcd2124e3f59bb8675324f0d?s=96&d=mm&r=g","caption":"Kristina Hoinkis"}}]}},"_links":{"self":[{"href":"https:\/\/locaterisk.com\/en\/wp-json\/wp\/v2\/posts\/8654","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/locaterisk.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/locaterisk.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/locaterisk.com\/en\/wp-json\/wp\/v2\/users\/13"}],"replies":[{"embeddable":true,"href":"https:\/\/locaterisk.com\/en\/wp-json\/wp\/v2\/comments?post=8654"}],"version-history":[{"count":5,"href":"https:\/\/locaterisk.com\/en\/wp-json\/wp\/v2\/posts\/8654\/revisions"}],"predecessor-version":[{"id":8664,"href":"https:\/\/locaterisk.com\/en\/wp-json\/wp\/v2\/posts\/8654\/revisions\/8664"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/locaterisk.com\/en\/wp-json\/wp\/v2\/media\/8653"}],"wp:attachment":[{"href":"https:\/\/locaterisk.com\/en\/wp-json\/wp\/v2\/media?parent=8654"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/locaterisk.com\/en\/wp-json\/wp\/v2\/categories?post=8654"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/locaterisk.com\/en\/wp-json\/wp\/v2\/tags?post=8654"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}