AI Agents Undermine Progress in Browser Security
Web browser companies have put in substantial effort over the last three decades to strengthen the browser security stack to withstand abuses. Agentic browsers are undoing all that work.
Web browsers process untrusted web content, making flaws, malicious extensions, and stolen session data important cybersecurity concerns.
Search across headline titles and summaries.
Background for this topic.
A web browser is software that retrieves and displays websites and web applications, while executing code such as JavaScript and storing data including cookies, credentials, and browsing history. Its security boundary includes the browser interface, rendering engine, networking components, extensions, and connections to operating-system resources.
Browsers are exposed to malicious or compromised websites, phishing pages, drive-by exploitation of browser vulnerabilities, and abusive extensions. A successful exploit may escape browser isolation or access site data, while stolen cookies can enable account use without the password. Important defenses include prompt browser and extension updates, sandboxing and site isolation, phishing protection, carefully controlled permissions, and HTTPS (which protects data in transit but does not make a site trustworthy). Organizations may also manage versions, extensions, and configuration centrally, and use browser telemetry during vulnerability management or investigations.
Weekly headline count for the current query.
Web browser companies have put in substantial effort over the last three decades to strengthen the browser security stack to withstand abuses. Agentic browsers are undoing all that work.
The more we use the cloud, the more maintaining browser security becomes crucial.
Three of the world's leading browsers were measured for phishing and malware protection, with time to block and protection over time as key metrics in test scores.
A secure Web browser takes the top prize, and for the second year in a row malware detection is an afterthought.