Google Rolls Out DBSC in Chrome 146 to Block Session Theft on Windows

Google just dropped a major security upgrade in Chrome 146 for Windows — DBSC (Device Bound Session Credentials). This tech binds your cookies to your device, making session theft way harder for hackers. No more cookie-stealing malware hijacking your logins.

Here’s the deal: DBSC ties session cookies to your device’s hardware, so even if malware snatches them, they’re useless on another machine. This directly targets infostealers like Lumma, RedLine, and Rhadamanthys that have been exploiting cookie theft for account takeovers.

Google’s move follows Microsoft’s similar feature in Edge and builds on their earlier Enclave-bound session credentials. It’s rolling out now in Chrome 146 for Windows 10 and 11, with plans to expand to other platforms. Keep your browser updated — this is a game-changer for session security.