[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fXqNtrL0n1GyVOLClNgF8TW11PVLYizwmDf6KEH6LrUs":3},{"article":4,"iocs":53},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":32,"category":33,"article_tags":37},"789eb05c-da34-43fc-8c73-7c899114d26e","Google Chrome Accused of Silently Installing 4GB AI Model on User Devices","google-chrome-accused-of-silently-installing-4gb-ai-model-on-user-devices-1ae03f","Cybersecurity researcher Alexander Hanff claims that Google Chrome automatically installs a 4GB Gemini Nano AI model without user notification or consent.","Cybersecurity researcher Alexander Hanff discovered that Google Chrome automatically downloads a 4GB Gemini Nano AI model onto user devices without notification or explicit consent, triggered when hardware meets certain specifications. Hanff argues the silent installation violates the EU ePrivacy Directive and GDPR Article 5(3), and calculated that deploying to 30% of Chrome users would consume 240 GWh of electricity. Google added a toggle in Chrome Settings to disable the feature, but the model reinstalls on browser restart if manually deleted.","Google Chrome silently installs 4GB Gemini Nano AI model without user consent.","Security Artificial IntelligenceGoogle Chrome Accused of Silently Installing 4GB AI Model on User Devices Cybersecurity researcher Alexander Hanff claims that Google Chrome automatically installs a 4GB Gemini Nano AI model without user notification or consent. byDeeba AhmedMay 7, 20262 minute read A cybersecurity researcher has found that Google Chrome is now downloading a massive AI model onto users’ computers without asking first. Alexander Hanff, aka That Privacy Guy, discovered that the browser is stashing a 4GB file on machines that meet certain hardware levels. The file, called Gemini Nano, is Google’s attempt to run artificial intelligence directly on your laptop rather than in the cloud. To prove this wasn’t just a glitch, Hanff ran a controlled test using a brand-new, clean Chrome user profile on an Apple Silicon Mac in April 2026. By checking a macOS kernel log called .fseventsd, which records every file move at the system level, he was able to track the browser’s background activity. On 24 April 2026, the browser created a folder called OptGuideOnDeviceModel and downloaded a file named weights.bin in just 14 minutes. Most importantly, the profile had no human input during this time; the browser initiated the process on its own while idle. The Environmental and Legal Impact According to the researcher, the browser first evaluates the machine’s hardware. If the computer is powerful enough, Chrome starts the background download during idle time. There is a real-world cost to these silent downloads. While Google says this helps with tasks like scam detection and developer APIs, the way it arrives is a cause of concern. Hanff calculated that if Google manages to get 100 million users to download it, it would consume 24 GWh of electricity. If they reach 30% of Chrome users, which makes up about a billion people, the energy used hits 240 GWh. That is a massive amount of power just to move files people didn’t ask for. Apart from the environment, there is the legal side. Hanff argues this “silent” installation likely breaks the EU ePrivacy Directive and the GDPR. These laws require companies to be transparent and get consent before storing data on a person’s device. “This is, in my professional opinion, a direct breach of Article 5(3) of Directive 2002\u002F58\u002FEC (the ePrivacy Directive), a breach of the Article 5(1) GDPR principles of lawfulness, fairness, and transparency, a breach of Article 25 GDPR’s data-protection-by-design obligation, and an environmental harm of a magnitude that would be a notifiable event under the Corporate Sustainability Reporting Directive (CSRD) for any in-scope undertaking,” the researcher wrote in his blog post. Hanff also mentions a similar issue with Anthropic’s Claude Desktop app, as he found that the Claude app installed a browser integration bridge on several browsers, even those that were not currently installed. These two cases suggest a pattern where tech companies treat user devices as deployment targets. How to manage the AI model To see if the model is on your device, you can type chrome:\u002F\u002Fon-device-internals into the address bar. And, to stop the download, check out the toggle Google recently added in the Chrome Settings called Turn On-device AI on or off. You can find this option under the System menu. Or you can visit chrome:\u002F\u002Fflags to manually disable AI features because simply deleting the file is useless, as Chrome will re-download it the moment you relaunch it. Deeba Ahmed Deeba is a veteran cybersecurity reporter at Hackread.com with over a decade of experience… AI ModelChromeCybersecurityGeminiGemini NanoGooglePrivacy Leave a Reply Cancel reply View Comments (0) Related Posts Security Privacy Surveillance Simjacker vulnerability lets attackers track your location with an SMS The Simjacker vulnerability could extend to over 1 billion mobile phone users globally (to be exact it has targeted 30 countries.) bySudais Asif Security Leaks Privacy Institute of International Education leaks data of thousands of students Another day, another data breach - This time, MongoDB instances at it again owned by the Institute of International Education (IIE). byWaqas Security Millions impacted as payment API vulnerabilities exposing transaction keys Millions of users could have exposed their private, payment data due to API security vulnerabilities discovered in several applications. byDeeba Ahmed Security Change.org sends password reset email after CloudBleed bug Change.org, a famous online petition website is sending emails to its registered petitioners encouraging them to change their… byWaqas","https:\u002F\u002Fhackread.com\u002Fgoogle-chrome-installing-4gb-ai-model-user-devices\u002F","https:\u002F\u002Fhackread.com\u002Fwp-content\u002Fuploads\u002F2026\u002F05\u002Fgoogle-chrome-installing-4gb-ai-model-user-devices.jpg","2026-05-07T12:00:00+00:00","2026-05-07T12:00:10.519385+00:00",7,[18,21,24,26,29],{"name":19,"type":20},"Google","vendor",{"name":22,"type":23},"Google Chrome","product",{"name":25,"type":23},"Gemini Nano",{"name":27,"type":28},"Alexander Hanff","threat_actor",{"name":30,"type":31},"On-device AI","technology","839da5c1-3c34-47e2-9499-f7201640e3ac",{"id":32,"icon":34,"name":35,"slug":36},null,"AI Security","ai-security",[38,43,48],{"category":39},{"id":40,"icon":34,"name":41,"slug":42},"02371804-cf6d-4449-98de-f1a2d4d9b266","Tools","tools",{"category":44},{"id":45,"icon":34,"name":46,"slug":47},"53f9c4b6-8bc6-4964-9169-d09e5cd41d72","Compliance","compliance",{"category":49},{"id":50,"icon":34,"name":51,"slug":52},"614132b8-5837-4952-b8b5-c6c9a32a1d85","Privacy","privacy",[]]