Privacy / Technology — May 2026

The core story is real. Chrome quietly installed a 4GB AI model on hundreds of millions of devices with no prompt, no warning, no opt-in. Delete it and it comes back. But the most embarrassing part for Google isn't the install. It's what the model doesn't actually do.

The Silent Installation

Sometime between April 20 and April 29, 2026, Google Chrome reached into hundreds of millions of computers and wrote a 4GB file to disk. No notification. No prompt. The file is called weights.bin, inside a directory called OptGuideOnDeviceModel. It contains the weights for Gemini Nano, Google's on-device AI model.

Most people had no idea it was there.

Privacy researcher Alexander Hanff documented it using macOS filesystem logs, confirming the download happened even on Chrome profiles that had never received any human input. He published his findings on May 3. Within hours it was everywhere.

This is not a rumor. It happened.

What Chrome Did

There is no opt-out toggle in Chrome's settings. Delete the file and Chrome re-downloads it. To stop it permanently you have to dig into chrome://flags or apply enterprise policy settings — things most users have never touched and won't find on their own.

An opt-out technically exists. It requires knowing where to look, which Google made sure to never mention.

Chrome's updater is built to push security patches silently. That's expected. A 4GB AI model is not a security patch. Google decided to treat it as one and hoped nobody noticed the storage hit.

What It Does to Your PC

This is the part most coverage skips.

Storage is the first thing gone. On a laptop with 128GB or 256GB of SSD space, 4GB matters. Developers using cloud environments like GitHub Codespaces reported the silent install blowing their storage quotas mid-session, with no explanation for where the space went.

Then bandwidth. If you're on a metered connection or a slow line, Chrome spent 4GB of your data allowance without mentioning it. Delete the file not knowing what it was and Chrome downloads it again. Another 4GB. Still no notification.

When Gemini Nano actually runs — for writing suggestions, scam detection, tab summaries — it uses your CPU or GPU. On older or lower-spec machines that load is real. Background tasks slow, the system runs warmer, fans spin up.

RAM is the other problem. There's a confirmed memory leak in Chrome's Gemini UI, tracked as Chromium issue 468317754. Extended AI sessions build up memory that Chrome never cleans up. A Gemini tab that opens at 200MB can climb past 1GB in one session. On an 8GB machine with normal tabs open, that crashes the GPU process and takes everything with it.

Silent 4GB download. Bandwidth cost. Storage hit. CPU load. RAM leak. None of it communicated. None of it optional by default.

The Part That Makes It Worse

Chrome 147 added an "AI Mode" pill to the address bar. Any user seeing that, knowing Chrome has a 4GB on-device model on their disk, is going to assume their queries stay local. Every part of that is wrong. AI Mode routes every query to Google's servers. The on-device Nano model is not used by it at all.

So Google put a 4GB model on your machine without asking, and the main visible AI feature in the browser sends your data to the cloud anyway.

You paid the storage and bandwidth cost. Google kept the data flow. Nobody said anything.

What's Actually Overhyped

The "billions of devices" framing is stretched. The model only installs on hardware that meets certain requirements. Not old laptops, not mobile Chrome, not every configuration. Several hundred million affected devices is still a large number, but it's not everyone.

And on-device AI genuinely is better for privacy than cloud AI. When Nano runs locally for the features it actually powers, your text doesn't leave your machine. That's a real benefit.

It just would have been nice to be asked.

Where Things Stand

The legal exposure is real. The ePrivacy Directive requires clear, informed consent before storing software on user devices. GDPR Articles 5 and 25 cover transparency and data protection by design. If regulators in the EU pursue this, Google is looking at fines up to 4% of global revenue — around €11 billion based on 2025 figures.

Google has not issued a public response.

The researcher who broke the story put the test simply. If Chrome's next update removes the unconsented installs and replaces the behavior with an actual opt-in, Google can read the room. If it doesn't, then the company's published positions on responsible AI are worth reading accordingly.

Chrome holds about 65% of the global browser market. Firefox doesn't install Gemini Nano. Brave removes Google's component update infrastructure. Those alternatives exist.

Whether you use them is still your choice. Google just structured things so most people won't know they have one.

Sources: Alexander Hanff / thatprivacyguy.com (original disclosure, May 3 2026), Neowin, ConductAtlas, ByteIota, Cybernews, Make Tech Easier, Chromium issue tracker 468317754. Google has not issued a public response at time of writing.