What is DBSC in Chrome?

Device Bound Session Credentials ties your login sessions to your device's hardware, making stolen cookies expire uselessly against malware.

Does Chrome DBSC work on Mac?

Not yet—Windows only in Chrome 146. macOS with Secure Enclave coming soon.

How common is session theft malware?

Rampant. Families like Lumma, Atomic steal billions in credentials yearly; DBSC aims to neuter that.

🛡️ Security Tools

Google's DBSC Lands in Chrome: Stolen Cookies Finally Expire Worthless

Imagine logging into your bank, only for malware to snag your session cookie and let hackers roam free for weeks. Google's new DBSC in Chrome just slams that door shut—for Windows users, at least.

theAIcatchup Apr 10, 2026 4 min read

Chrome browser icon with locked session credentials and TPM shield graphic

⚡ Key Takeaways

DBSC binds sessions to device hardware via TPM, rendering stolen cookies worthless. 𝕏
Live now in Chrome 146 for Windows; macOS and enterprise features incoming. 𝕏
Significant theft reductions reported, but attackers will adapt—update ASAP. 𝕏

Published by

theAIcatchup

Threat intelligence. Zero noise.

#Chrome 146 #DBSC #malware stealers #session theft

Worth sharing?

Get the best Cybersecurity stories of the week in your inbox — no noise, no spam.

Originally reported by The Hacker News

⚡ Key Takeaways

The 60-Second TL;DR

theAIcatchup

Share this article

Worth sharing?

Related Stories

Chrome's Device-Bound Sessions Land on Windows, Slashing Cookie Theft Risks

WhatsApp Usernames: The End of Forced Phone Number Swaps

Amazon's Security Chief Claims AI Cuts Pentesting Time 40%—But Is It Sustainable?

Multi-OS Attacks Hit 65% of Breaches—SOCs' 3-Step Fix

Stay in the loop