[{"data":1,"prerenderedAt":15021},["ShallowReactive",2],{"application-flags":3,"navbar":7,"always-visible-banner":36,"navbar-about-highlight":100,"navbar-resource-highlight":174,"customer-stories-/customer-stories/te-herenga-waka-victoria-university-of-wellington":218,"latestResourcesBlogPosts":389,"fa-icon-solid-faShieldCheck":14406,"fa-icon-solid-faUsers":14409,"customer-stories":14411},[4],{"name":5,"enabled":6},"maintenanceMode",false,[8],{"createdDate":9,"id":10,"name":11,"modelId":12,"published":13,"query":14,"data":15,"variations":20,"lastUpdated":21,"firstPublished":22,"testRatio":23,"createdBy":24,"lastUpdatedBy":25,"folders":26,"meta":27,"rev":35},1742208588866,"1c7a4e423bf54ac1a328bb4063459ef2","Banner","1c6207a5f24948ab82d4a0b17f251193","published",[],{"type":16,"url":17,"text":18,"link":19},"web-banner","https://pushsecurity.com/resources/browser-attacks-report","Get our latest report analyzing browser attack techniques in 2026",{},{},1774258294825,1742208637545,1,"CydmZnOWU1XuAaLhEDCoYNM4Z8W2","jKjF9r5jcvXU8tzZEfFQm31Iyvr2",[],{"kind":28,"lastPreviewUrl":29,"breakpoints":30,"hasAutosaves":34},"data","",{"xsmall":31,"small":32,"medium":33},320,640,768,true,"ddrp071jppi",{"createdDate":37,"id":38,"name":39,"modelId":40,"published":13,"stageModifiedSincePublish":6,"query":41,"data":42,"variations":89,"lastUpdated":90,"firstPublished":91,"testRatio":23,"createdBy":92,"lastUpdatedBy":93,"folders":94,"meta":95,"rev":99},1774965361051,"fd266d0172cc47429be7ad10f48c99ad","always visible banner","0678d178ec8b41efb8a23c09dba7874d",[],{"url":29,"ctaText":43,"text":44,"blocks":45,"state":85},"ewrererw","testrfesssssssssss",[46,73],{"@type":47,"@version":48,"id":49,"component":50,"responsiveStyles":63},"@builder.io/sdk:Element",2,"builder-ca12c06a52de41d7b8743da53118cd38",{"name":51,"tag":51,"options":52,"isRSC":62},"TopBannerContent",{"text":53,"ctaText":54,"url":55,"mainText":56,"cta":59},"New Webinar Series: Join John Hammond, Troy Hunt, and Matt Johansen for the State of Browser Attacks","Save Your Spot","https://pushsecurity.com/webinar/state-of-browser-security",{"content":57,"fontSize":58},"\u003Cp>Is your stack covered? 51 browser & identity attacks, mapped.\u003C/p>","text-base",{"content":60,"fontSize":58,"url":61},"\u003Cp>\u003Cstrong style=\"font-weight:700;\">See the matrix →\u003C/strong>\u003C/p>\n","https://pushsecurity.com/resources/browser-identity-attacks-matrix/",null,{"large":64},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69,"marginTop":70,"marginBottom":70,"fontSize":71,"fontWeight":72},"flex","column","relative","0","border-box",".56rem","1.125rem","700",{"id":74,"@type":47,"tagName":75,"properties":76,"responsiveStyles":80},"builder-pixel-gic6h8l5xp","img",{"src":77,"aria-hidden":78,"alt":29,"role":79,"width":68,"height":68},"https://cdn.builder.io/api/v1/pixel?apiKey=f3a1111ff5be48cdbb123cd9f5795a05","true","presentation",{"large":81},{"height":68,"width":68,"display":82,"opacity":68,"overflow":83,"pointerEvents":84},"block","hidden","none",{"deviceSize":86,"location":87},"large",{"path":29,"query":88},{},{},1778612252607,1774968080803,"ST0tXQM8slWpFrmioqKHmENB2qe2","ax7YYfD0OCeqT1Vxxv1G4FUbqVr1",[],{"kind":96,"hasLinks":6,"breakpoints":97,"lastPreviewUrl":98,"hasAutosaves":34,"hasErrors":6},"component",{"xsmall":31,"small":32,"medium":33},"https://pushsecurity.com/?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditCode%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CeditProjects%2CmodifyMcpServers%2CmodifyWorkflowIntegrations%2CmodifyProjectSettings%2CconnectCodeRepository%2CcreateProjects%2CindexDesignSystems%2CsendPullRequests%2CmergePullRequests&builder.user.role.name=Developer&builder.user.role.id=developer&builder.cachebust=true&builder.preview=always-visible-banner&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.always-visible-banner=fd266d0172cc47429be7ad10f48c99ad&builder.overrides.fd266d0172cc47429be7ad10f48c99ad=fd266d0172cc47429be7ad10f48c99ad&builder.options.locale=Default","9mupvmma84d",[101,137],{"createdDate":102,"id":103,"name":104,"modelId":105,"published":13,"stageModifiedSincePublish":6,"query":106,"data":107,"variations":130,"lastUpdated":131,"firstPublished":132,"testRatio":23,"createdBy":24,"lastUpdatedBy":24,"folders":133,"meta":134,"rev":136},1776247359804,"9136a8f18b3b4a6ba29b8653a99372b1","testimonial-inductive-automation","20d9eaa352304613b3d1a794b400703d",[],{"link":108,"type":109,"testimonialLink":110,"testimonial":111},{},"testimonial","/customer-stories/inductive-automation",{"@type":112,"id":113,"model":109,"value":114},"@builder.io/core:Reference","f028f2b685bb47cd8bf9e82a26dd5a79",{"query":115,"folders":116,"createdDate":117,"id":113,"name":118,"modelId":119,"published":13,"data":120,"variations":124,"lastUpdated":125,"firstPublished":126,"testRatio":23,"createdBy":92,"lastUpdatedBy":92,"meta":127,"rev":129},[],[],1735823466309,"We found Push to be more accurate when compared to competitors and the browser agent offered features that others couldn’t match.","42035571a56940ac98bff4544aa79aa5",{"author":121,"jobTitle":122,"quote":118,"image":123},"Jason Waits","\u003Cp>CISO at Inductive Automation\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Ff04c0c0689ce4a89ac0f0708d78c0a07",{},1735910703862,1735823501152,{"kind":28,"lastPreviewUrl":29,"breakpoints":128,"hasAutosaves":34},{"small":32,"medium":33},"a9vxurbcby",{},1776247404986,1776247404973,[],{"breakpoints":135,"kind":28,"lastPreviewUrl":29,"hasAutosaves":6},{"xsmall":31,"small":32,"medium":33},"s77gea6l6i",{"createdDate":138,"id":139,"name":140,"modelId":105,"published":13,"meta":141,"stageModifiedSincePublish":6,"query":143,"data":144,"variations":170,"lastUpdated":171,"firstPublished":172,"testRatio":23,"createdBy":24,"lastUpdatedBy":24,"folders":173,"rev":136},1776255761419,"05a9322735fc427db12e2740e4302300","Report: 2026 Browser Attack Techniques",{"breakpoints":142,"kind":28,"lastPreviewUrl":29,"hasAutosaves":6},{"xsmall":31,"small":32,"medium":33},[],{"testimonial":145,"link":164,"type":167,"title":140,"description":168,"image":169},{"@type":112,"id":146,"model":109,"value":147},"192acbb1f9ca4cac918c0ec435a8bae3",{"query":148,"folders":149,"createdDate":150,"id":146,"name":151,"modelId":119,"published":13,"data":152,"variations":158,"lastUpdated":159,"firstPublished":160,"testRatio":23,"createdBy":92,"lastUpdatedBy":24,"meta":161,"rev":163},[],[],1728981467463,"Push does for identity what CrowdStrike did for the endpoint",{"video":153,"jobTitle":154,"author":155,"qoute":29,"quote":156,"image":157},"https://cdn.builder.io/o/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F8b30e8ca50064058bbaef0f3c6164575%2Fcompressed?apiKey=f3a1111ff5be48cdbb123cd9f5795a05&token=8b30e8ca50064058bbaef0f3c6164575&alt=media&optimized=true","\u003Cp>Deputy CISO at Microsoft\u003C/p>\u003Cp>Former LinkedIn, Slack, Palantir\u003C/p>","Geoff Belknap","Push does for identity what CrowdStrike did for the endpoint.","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F748f0ad0a5064a00a13f4721fcc8dea1",{},1742902158597,1728981782923,{"kind":28,"lastPreviewUrl":29,"breakpoints":162,"hasAutosaves":34},{"small":32,"medium":33},"2nbcplv2gr5",{"text":165,"url":166},"Download now","/resources/browser-attacks-report","resource","Learn about the latest techniques being used in the wild.","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F7b4a5ebf81d64e8c9d7fc35f6c96c4a9",{},1776255810913,1776255810900,[],[175,197],{"createdDate":176,"id":177,"name":140,"modelId":178,"published":13,"meta":179,"stageModifiedSincePublish":6,"query":181,"data":182,"variations":192,"lastUpdated":193,"firstPublished":194,"testRatio":23,"createdBy":24,"lastUpdatedBy":24,"folders":195,"rev":196},1776256900280,"1f429607996e4e5fae8fe3f9b9610e55","4829faa81e7c4ee8bd2d000e160e8d3c",{"breakpoints":180,"kind":28,"lastPreviewUrl":29,"hasAutosaves":6},{"xsmall":31,"small":32,"medium":33},[],{"testimonial":183,"link":191,"type":167,"title":140,"description":168,"image":169},{"@type":112,"id":146,"model":109,"value":184},{"query":185,"folders":186,"createdDate":150,"id":146,"name":151,"modelId":119,"published":13,"data":187,"variations":188,"lastUpdated":159,"firstPublished":160,"testRatio":23,"createdBy":92,"lastUpdatedBy":24,"meta":189,"rev":163},[],[],{"video":153,"jobTitle":154,"author":155,"qoute":29,"quote":156,"image":157},{},{"kind":28,"lastPreviewUrl":29,"breakpoints":190,"hasAutosaves":34},{"small":32,"medium":33},{"text":165,"url":166},{},1776256937553,1776256937540,[],"9z7ox91b6b5",{"createdDate":198,"id":199,"name":200,"modelId":178,"published":13,"stageModifiedSincePublish":6,"query":201,"data":202,"variations":212,"lastUpdated":213,"firstPublished":214,"testRatio":23,"createdBy":24,"lastUpdatedBy":24,"folders":215,"meta":216,"rev":196},1776256949234,"ce043785b71b4ece98eac811ecf4ba10","inductive-automation",[],{"link":203,"type":109,"testimonial":204,"testimonialLink":110},{},{"@type":112,"id":113,"model":109,"value":205},{"query":206,"folders":207,"createdDate":117,"id":113,"name":118,"modelId":119,"published":13,"data":208,"variations":209,"lastUpdated":125,"firstPublished":126,"testRatio":23,"createdBy":92,"lastUpdatedBy":92,"meta":210,"rev":129},[],[],{"author":121,"jobTitle":122,"quote":118,"image":123},{},{"kind":28,"lastPreviewUrl":29,"breakpoints":211,"hasAutosaves":34},{"small":32,"medium":33},{},1776256974140,1776256974130,[],{"breakpoints":217,"kind":28,"lastPreviewUrl":29,"hasAutosaves":6},{"xsmall":31,"small":32,"medium":33},{"createdDate":219,"id":220,"name":221,"modelId":222,"published":13,"stageModifiedSincePublish":6,"query":223,"data":229,"variations":378,"lastUpdated":379,"firstPublished":380,"testRatio":23,"screenshot":381,"createdBy":24,"lastUpdatedBy":93,"folders":382,"meta":383,"rev":388},1782496879262,"be1ebe46f8a14568940ee6ab5c83bb34","Te Herenga Waka–Victoria University of Wellington","989720d5a128470cb938ca12aedfef29",[224],{"@type":225,"property":226,"operator":227,"value":228},"@builder.io/core:Query","urlPath","is","/customer-stories/te-herenga-waka-victoria-university-of-wellington",{"ogImage":230,"resourcesPageImage":230,"description":231,"indexPageDescription":232,"seoDescription":233,"indexPageDesciption":234,"logo":235,"resourcesPageTitle":236,"seoTitle":236,"title":237,"themeId":6,"resourcesPageDescription":238,"effectivePublishDate":239,"blocks":240,"url":228,"state":372},"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F493a92b20a2d48059cae31879ff4250a","How Te Herenga Waka–Victoria University of Wellington uses Push to block phishing. ","Using Push, the Victoria University of Wellington (VUW) security team found a tool to govern AI tool usage across a diverse workforce, while also solving its phishing problem at the same time.","How Cribl leverages Push to enhance proactive browser security.","Push helped Inductive find and secure shadow accounts and apps with high-fidelity data in a way that didn't interfere with employees productivity.","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fd8eba90763f942579e300bfbf5a3a55c","Customer Story: Te Herenga Waka–Victoria University of Wellington","dummy","How the Victoria University of Wellington (VUW) leverages Push to govern AI tool usage and solve phishing problems.","Sat Nov 15 2025 00:00:00 GMT+0000 (Greenwich Mean Time)",[241,253,284,300,320,337,357,367],{"@type":47,"@version":48,"id":242,"meta":243,"component":245,"responsiveStyles":251},"builder-ffc6901f9c824caca8ff10696a6e59df",{"previousId":244},"builder-d24b4ac0dd42473296e916eb5192bacf",{"name":246,"tag":247,"options":248,"isRSC":62},"CS Hero","CustomerStoriesHero",{"heroTitle":236,"heroDescription":249,"heroLogo":235,"glowColor":250},"\u003Cp>With Push, the Victoria University of Wellington (VUW) security team found a tool to govern AI usage across a diverse workforce, while also solving its phishing problem at the same time.\u003C/p>","#5EBCB7",{"large":252},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":254,"meta":255,"component":257,"responsiveStyles":282},"builder-b24b29e998c5483e9daf828295627193",{"previousId":256},"builder-b79065fa8efd4eb68427e7648ec49e0c",{"name":258,"tag":259,"options":260,"isRSC":62},"CS Summary","CustomerStoriesSummary",{"summaryTitle":261,"summaryDescription":262,"summaryStat1":263,"summaryStat2":267,"summaryStat3":271,"summaryStat4":272,"stats":273},"About Victoria University of Wellington","\u003Cp>Victoria University of Wellington is a public research-intensive university in Wellington, New Zealand, with approximately 3,000 staff and faculty. A five-person security team manages a Microsoft-heavy environment with significant on-premises infrastructure and an in-house SOC with on-call coverage. Like most universities, VUW has to balance security with academic freedom. Blocking access to tools is a non-starter, so the team needed controls that could guide behavior without restricting it.\u003C/p>\n\u003Cp>\u003Cbr />\u003C/p>\n\u003Cp>\u003Cstrong style=\"color: rgb(255, 72, 36);\">Why Victoria University of Wellington chose Push:\u003C/strong>\u003C/p>\n\u003Cul>\n  \u003Cli>Existing tools offered binary choices — block or allow — but the university needed more granular guardrails that could surface policy when a tool is used without preventing access to AI or other applications.\u003C/li>\n  \u003Cli>Browser-based phishing was impacting up to 5 staff per month, and the team had no visibility into what was actually happening inside the browser session during an attack.\u003C/li>\n  \u003Cli>Both problems pointed to the same gap: Nothing in the stack could see or act inside the browser.\u003C/li>\n  \u003Cli>Push deployed to approximately 3,000 managed devices via group policy with no end-user problems and no service disruption.\u003C/li>\n\u003C/ul>\n",{"icon":264,"value":265,"gap":62,"extraValueText":29,"helpText":266},"faShieldCheck",1118,"Users protected",{"icon":268,"value":23,"gap":23,"extraValueText":269,"helpText":270},"faStopwatch","+","Hours saved per investigation",{"icon":29,"value":62,"extraValueText":29,"helpText":29},{"icon":29,"value":62,"extraValueText":29,"helpText":29},[274,279],{"formatValue":34,"icon":275,"value":276,"gap":277,"helpText":278,"extraValueText":29},"faUsers",3000,0,"Users protected by Push",{"formatValue":6,"icon":264,"value":280,"gap":277,"helpText":281,"extraValueText":29},5,"phishing attacks blocked per month",{"large":283},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":285,"meta":286,"component":288,"responsiveStyles":297},"builder-e9228a6b4aae4af5bbd2138ea231c02f",{"previousId":287},"builder-02be3f7cafb3473baa83d3132b6aa9f2",{"name":289,"tag":290,"options":291,"isRSC":62},"CS Quote Carousel","CustomerStoriesQuoteCarousel",{"quoteCarousel":292},[293],{"author":294,"jobTitle":295,"quote":296},"Leanne Gibson","CIO, Victoria University of Wellington","\u003Cp>The value of Push has been its ability to connect policy, education, and security into a single control — raising awareness across the university while demonstrably strengthening our prevention-first cyber approach.\u003C/p>",{"large":298},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69,"paddingBottom":299},"0px",{"@type":47,"@version":48,"id":301,"meta":302,"component":304,"responsiveStyles":318},"builder-431038ad700345c58c520b460b532fa3",{"previousId":303},"builder-70d8cc0ef9894b2485588da68e6662fd",{"name":305,"tag":306,"options":307,"isRSC":62},"CS Quote Summary","CustomerStoriesQuoteSummary",{"theme":308,"sections":309,"title":316,"diagonalVariant":317},"dark-gradient",[310],{"text":311,"quotes":312},"\u003Ch3>\u003Cstrong>Two problems, one blind spot\u003C/strong>\u003C/h3>\u003Cp>University security teams face a constraint most enterprise security leaders don't: You can't block your way to safety. \u003C/p>\u003Cp>Restricting access to a tool, even one with genuine risk, runs into a culture of academic freedom and researcher autonomy that shapes every security decision. That tension has always existed, but the combination of rapidly evolving browser-based attacks and an explosion of new AI tools has made it significantly harder to manage. \u003C/p>\u003Cp>With the landscape shifting on a daily basis, VUW's security team needed to keep faculty and staff working securely without resorting to being overly restrictive.\u003C/p>\u003Cp>The symptoms of these challenges were obvious to VUW’s five-person security team, led by cybersecurity manager Stephen Shkardoon.\u003C/p>\u003Cp>They had identified two core security problems they needed to solve that at first seemed unrelated.\u003C/p>\u003Cp>The first was browser-based phishing. As many as five staff members a month were being impacted by phishing, most apparently through email. But the actual chain of events was largely invisible. The team could see that someone had been compromised, but they couldn't see how. \u003C/p>\u003Cp>\"They'd get infected with malware,\" Stephen explained. \"But we had too many infections to worry about root-causing every single one.\" \u003C/p>\u003Cp>Without visibility into what happened inside the browser, attackers arriving through malicious search results, ClickFix-style lures, or transient infrastructure left no trace the team could reach.\u003C/p>\u003Cp>The second problem was AI governance. \u003C/p>\u003Cp>A cross-functional working group was grappling with how to govern staff use of AI tools. Microsoft Copilot was the sanctioned option. ChatGPT and others occupied a grey area. The university developed a policy, but as Stephen put it, \"a published policy is not the same thing as people actually doing that.\" \u003C/p>\u003Cp>What the working group needed was a mechanism to surface the university’s AI policy at the exact moment someone was about to act against it, without blocking the tool.\u003C/p>\u003Cp>Stephen saw the connection. Both problems pointed to the same architectural gap: Nothing in the team’s existing stack could see or act inside the browser session. The phishing problem needed browser-layer visibility. The AI governance problem needed browser-layer controls. \u003C/p>\u003Cp>The same tool could solve both — if it existed.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>",[313],{"quote":314,"quoteBy":315},"\u003Cp>\u003Cstrong>So much phishing protection is just trying to train your users to be experts. I really don't like it.\u003C/strong>\u003C/p>","Victoria University of Wellington","Business Challenge","black-black",{"large":319},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":321,"meta":322,"component":324,"responsiveStyles":335},"builder-3e217e56e53c44d0ad38cd6b7875dcaa",{"previousId":323},"builder-d75d70b0f4cc47708c02ed0405dd39fd",{"name":305,"tag":306,"options":325,"isRSC":62},{"theme":326,"sections":327,"title":333,"diagonalVariant":334},"light-plain",[328],{"text":329,"quotes":330},"\u003Ch3>\u003Cstrong>The blunt instrument problem\u003C/strong>\u003C/h3>\u003Cp>VUW's large existing security stack, which includes Microsoft Defender and firewall-based IP blocking, offered binary options: block or allow. That worked for malware. It didn't work for AI governance at a university.\u003C/p>\u003Cp>Moreover, the AI working group wasn't asking to block everything. They needed a way to present a policy at the exact moment it mattered, then let the user get on with their day. \u003C/p>\u003Cp>\"We didn't see a tool in our existing toolbox that would let us do that really soft guidance,\" Stephen said. He envisioned something like a full-screen warning that describes the policy, links to it, and lets the user click accept and continue.\u003C/p>\u003Cp>The phishing picture had a similar gap. The team could see email-delivered threats through existing tools, but the browser session itself was a blind spot. Attacks arriving through malicious search results or ClickFix-style lures, which use transient infrastructure that disappears before it can be attributed, weren’t getting logged in any of their existing security tools. The compromises were happening, but the team couldn't see the attack chain.\u003C/p>\u003Cp>When Stephen discovered Push, he immediately recognized that he could solve both problems with one solution — protecting against modern browser-based attacks and helping to educate and enforce the university’s AI policies.\u003C/p>",[331],{"quote":332,"quoteBy":315},"\u003Cp>We have our firewalls which can block access to particular IP addresses, we have Defender which can block access to websites, but that’s really all they could do.\u003C/p>","Technical Challenge","black-white",{"large":336},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":338,"meta":339,"component":341,"responsiveStyles":354},"builder-55c1e27574cf483ab2e1fa302a748bf7",{"previousId":340},"builder-4c118b46a5a8450fa931b9eb5dd044af",{"name":305,"tag":306,"options":342,"isRSC":62},{"theme":308,"sections":343,"title":352,"diagonalVariant":353},[344,349],{"text":345,"quotes":346},"\u003Ch3>\u003Cstrong>A simple, silent deployment\u003C/strong>\u003C/h3>\u003Cp>The security team piloted Push first with the AI working group to help prove out the business case internally. \u003C/p>\u003Cp>After the successful pilot, broader deployment to approximately 3,000 managed devices via group policy was simple. \u003C/p>\u003Cp>\"We had literally no one even comment on it initially,\" Stephen said. \"That was exactly what we were going for.\"\u003C/p>\u003Cp>The team next implemented Push’s detection and response controls, starting in warn mode first, watching before blocking. A month in, with zero false positives, they switched to blocking with high confidence. \u003C/p>\u003Cp>\"Every single detection had been legitimate,\" Stephen said. \"We just switched it over to blocking. Without any fuss, without any hassle.\"\u003C/p>\u003Cp>Browser-layer policy guardrails went live across AI tools, plagiarism-checking services, and consumer file storage — surfacing university policy at the point of access. The AI working group now had granular telemetry on which tools staff were actually using and in what volumes in a level detail that existing logging tools couldn’t provide. Policy conversations that had previously relied on assumptions now had data behind them.\u003C/p>\u003Ch3>\u003Cstrong>The phishing problem, solved \u003C/strong>\u003C/h3>\u003Cp>Since implementing Push a year ago, browser-based phishing has gone from a monthly remediation task to a blocked-and-logged event. \u003C/p>\u003Cp>When a SharePoint-themed AiTM campaign began circulating across the higher education sector, appearing to originate from trusted contacts and harvesting credentials and MFA tokens in real time, VUW's staff weren't affected. Push had already intercepted the attacks.\u003C/p>\u003Cp>The visibility shift was just as significant as the prevention. Where the team previously had to guess at root causes, Push now surfaces the full attack chain: the initial lure, the page the user was served, and exactly where the detection fired. Stephen regularly uses Push's screenshot capability to show non-security stakeholders the actual phishing page a user encountered and the point at which Push intervened. This evidence resonates for the team far more than a log entry.\u003C/p>\u003Cp>\"The information we're getting from Push tells us: These people were clicking the links. They were going to interact with it, but Push had already served them the block page,\" Stephen said. \"Before, if we reported the number of phishing emails Microsoft blocked, it's thousands — who knows, tens of thousands. But that doesn't tell us who would have fallen for it. Push does.\"\u003C/p>",[347],{"quote":348,"quoteBy":315},"\u003Cp>The information we're getting from Push tells us: These people were clicking the links. They were going to interact with it, but Push had already served them the block page.\u003C/p>",{"text":350,"quotes":351},"\u003Ch2>\u003Cstrong>More than the sum of its parts\u003C/strong>\u003C/h2>\u003Cp>Once Push was in the browser, VUW's security team found it solved problems they'd been working around for years.\u003C/p>\u003Cp>Stolen credential detection was one example. When staff credentials surfaced in a breach dataset, the previous response was a mass email to potentially affected users suggesting they might want to consider changing their password. But the team worried that these messages were easy to ignore because the risk felt abstract.\u003C/p>\u003Cp>Push replaced that blanket notification with real-time detection at the point of login, cross-referenced against breach data, so the team now sends a targeted automated email only when a specific user actually logs in with a compromised credential. \u003C/p>\u003Cp>\"That actually fully solves a problem I didn't realize was going to be solved,\" Stephen said.\u003C/p>\u003Cp>The team also found that browser-layer telemetry from managed staff devices could inform network-level blocking decisions for their student population. When Push identifies a targeted phishing domain hitting staff, the team pushes that intelligence to their firewall. This protects students on the same network without the extension deployed to their devices.\u003C/p>\u003Cp>Push also feeds into VUW's SOC stack via Sentinel and FortiSOAR, integrating browser-layer telemetry into the same automated workflows the team uses for every other alert category.\u003C/p>\u003Ch2>\u003Cstrong>A different security conversation\u003C/strong>\u003C/h2>\u003Cp>Stephen now describes browser-based attacks as a solved problem for VUW. \u003C/p>\u003Cp>\"When I talk about where we should be focusing our security energy now, browser-based attacks aren't the area anymore,” he said.\u003C/p>\u003Cp>For a security team of five managing 3,000 users with an in-house SOC and limited budget, that shift in focus is the outcome that matters most. The team isn't spending hours per month on phishing remediation. The AI working group has real data instead of assumptions. And the security program can direct its energy to the problems that haven't been solved yet.\u003C/p>\u003Cp>\"I can't think of a tool that has been more cost-effective and time-saving than Push,\" Stephen said.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Cp>\u003Cbr>\u003C/p>",[],"Solution","white-black",{"large":355},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69,"marginTop":356},"9px",{"@type":47,"@version":48,"id":358,"meta":359,"component":361,"responsiveStyles":365},"builder-8ad72920086a4a1394b76a12c32c7140",{"previousId":360},"builder-98812dfd03154d1e93f8878686c5d57d",{"name":362,"tag":363,"options":364,"isRSC":62},"CS Explore More","CustomerStoriesExploreMore",{},{"large":366},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"id":368,"@type":47,"tagName":75,"properties":369,"responsiveStyles":370},"builder-pixel-hphv4wbzyjr",{"src":77,"aria-hidden":78,"alt":29,"role":79,"width":68,"height":68},{"large":371},{"height":68,"width":68,"display":82,"opacity":68,"overflow":83,"pointerEvents":84},{"deviceSize":86,"location":373},{"pathname":228,"path":374,"query":377},[375,376],"customer-stories","te-herenga-waka-victoria-university-of-wellington",{},{},1782509813820,1782509664888,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Ff8726ca50ae54527ad35f32cb19709d6",[],{"lastPreviewUrl":384,"kind":385,"originalContentId":386,"winningTest":62,"breakpoints":387,"hasErrors":6,"hasLinks":6,"hasAutosaves":34},"https://pushsecurity.com/customer-stories/te-herenga-waka-victoria-university-of-wellington?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditCode%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CeditProjects%2CmodifyMcpServers%2CmodifyWorkflowIntegrations%2CmodifyProjectSettings%2CconnectCodeRepository%2CcreateProjects%2CindexDesignSystems%2CsendPullRequests%2CmergePullRequests&builder.user.role.name=Developer&builder.user.role.id=developer&builder.cachebust=true&builder.preview=customer-stories&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.customer-stories=be1ebe46f8a14568940ee6ab5c83bb34&builder.overrides.be1ebe46f8a14568940ee6ab5c83bb34=be1ebe46f8a14568940ee6ab5c83bb34&builder.options.locale=Default","page","08b65992e49d4c2c9db231662879f089",{"xsmall":31,"small":32,"medium":33},"ug3gmwogj2",[390,3699,7873,11191],{"id":391,"title":392,"authorsCollection":393,"content":401,"extension":1205,"faqItemsCollection":1206,"faqTitle":62,"featured":6,"hashTags":62,"meta":1208,"metaTitle":1209,"ogImage":62,"publishedDate":1210,"relatedBlogPostsCollection":1211,"slug":3676,"stem":3677,"subtitle":62,"summary":3678,"synopsis":3688,"sys":3689,"tagsCollection":3692,"__hash__":3698},"blog/blog/openai-poisoned-tenant-attack.json","We coined the poisoned tenant attack in 2023; in 2026, someone used it on us",{"items":394},[395],{"fullName":396,"firstName":397,"jobTitle":398,"profilePicture":399},"Luke Jennings","Luke","Vice President, R&D",{"url":400},"https://images.ctfassets.net/y1cdw1ablpvd/4Hosb4zKi1dA0PUyDLMe1h/27e09d894861f2196ba794037986fb08/T016S22KZ96-U02NVQM7ZD4-57761d542d83-512.jpeg",{"json":402,"links":1114},{"nodeType":403,"data":404,"content":405},"document",{},[406,430,439,445,449,459,468,475,482,488,495,502,510,517,524,530,538,545,552,559,565,571,577,585,592,598,605,612,615,623,635,643,650,657,664,671,679,733,740,759,766,774,794,800,807,813,821,828,856,875,882,885,893,900,908,915,923,930,938,945,953,960,967,970,978,985,1005,1012,1019,1022,1030,1037,1072,1079,1082,1089,1096],{"nodeType":407,"data":408,"content":409},"paragraph",{},[410,415,426],{"nodeType":411,"value":412,"marks":413,"data":414},"text","Three years ago, we published the poisoned tenant attack as part of the ",[],{},{"nodeType":416,"data":417,"content":419},"hyperlink",{"uri":418},"https://pushsecurity.com/resources/browser-identity-attacks-matrix",[420],{"nodeType":411,"value":421,"marks":422,"data":425},"Browser and Identity Attacks matrix",[423],{"type":424},"underline",{},{"nodeType":411,"value":427,"marks":428,"data":429},". Last week, someone used it to target Push Security employees and customers through OpenAI's organization invitation feature. This post breaks down what happened, explores what the payoff is for an attacker, and connects the incident to a broader pattern of SaaS platform abuse that is accelerating across the industry.",[],{},{"nodeType":431,"data":432,"content":438},"embedded-entry-block",{"target":433},{"sys":434},{"id":435,"type":436,"linkType":437},"7upGHPt7eVNji6v22h124t","Link","Entry",[],{"nodeType":431,"data":440,"content":444},{"target":441},{"sys":442},{"id":443,"type":436,"linkType":437},"53U3LHhhHFYnEpShdLmDqs",[],{"nodeType":446,"data":447,"content":448},"hr",{},[],{"nodeType":450,"data":451,"content":452},"heading-1",{},[453],{"nodeType":411,"value":454,"marks":455,"data":458},"What happened",[456],{"type":457},"bold",{},{"nodeType":460,"data":461,"content":462},"heading-2",{},[463],{"nodeType":411,"value":464,"marks":465,"data":467},"The invitation",[466],{"type":457},{},{"nodeType":407,"data":469,"content":470},{},[471],{"nodeType":411,"value":472,"marks":473,"data":474},"In recent weeks, several Push Security team members have received multiple waves of emails from OpenAI inviting them to join an organization called \"Push Security Inc\". ",[],{},{"nodeType":407,"data":476,"content":477},{},[478],{"nodeType":411,"value":479,"marks":480,"data":481},"The emails came from OpenAI's legitimate notification address (noreply@tm.openai.com), passed all standard email authentication checks, and referenced our company by name. They looked exactly like a routine organizational invitation because, technically, they were one.",[],{},{"nodeType":431,"data":483,"content":487},{"target":484},{"sys":485},{"id":486,"type":436,"linkType":437},"6JmXCVjUckklFrO7leDqOA",[],{"nodeType":407,"data":489,"content":490},{},[491],{"nodeType":411,"value":492,"marks":493,"data":494},"The invitations were sent by various accounts registered under email addresses that had no affiliation with Push. ",[],{},{"nodeType":407,"data":496,"content":497},{},[498],{"nodeType":411,"value":499,"marks":500,"data":501},"OpenAI's invitation email did include a warning — \"The inviter's email domain, gmail.com, does not match your domain, pushsecurity.com\" — but that's a single line in an otherwise completely legitimate-looking email from a trusted platform. The invitation targeted specific employees by their work email addresses, suggesting the attacker had done some reconnaissance on our team. ",[],{},{"nodeType":460,"data":503,"content":504},{},[505],{"nodeType":411,"value":506,"marks":507,"data":509},"One click, no credentials",[508],{"type":457},{},{"nodeType":407,"data":511,"content":512},{},[513],{"nodeType":411,"value":514,"marks":515,"data":516},"After discussing internally we decided to investigate further by accepting the invite. The acceptance was instant (one click, no credentials or additional authentication). This was particularly notable because it was done from an entirely separate browser to my typical work profile. I wasn’t already logged into ChatGPT from the browser, but clicking the email link was all it took to join my account to the attacker's organization. ",[],{},{"nodeType":407,"data":518,"content":519},{},[520],{"nodeType":411,"value":521,"marks":522,"data":523},"I landed on a confirmation page telling me I'd been added to \"Push Security Inc.\"",[],{},{"nodeType":431,"data":525,"content":529},{"target":526},{"sys":527},{"id":528,"type":436,"linkType":437},"1YPMilWhyTSV860PCFXxmx",[],{"nodeType":460,"data":531,"content":532},{},[533],{"nodeType":411,"value":534,"marks":535,"data":537},"What the attacker had set up",[536],{"type":457},{},{"nodeType":407,"data":539,"content":540},{},[541],{"nodeType":411,"value":542,"marks":543,"data":544},"Within the organization, the attacker's account appeared under the name of Push's CEO. ",[],{},{"nodeType":407,"data":546,"content":547},{},[548],{"nodeType":411,"value":549,"marks":550,"data":551},"It's something of a rite of passage for new Push employees to receive scam texts from someone impersonating Adam, usually with an urgent request that inevitably leads to gift cards. But creating a fully configured SaaS tenant under a CEO's name and inviting specific employees into it is a different level of effort entirely.",[],{},{"nodeType":407,"data":553,"content":554},{},[555],{"nodeType":411,"value":556,"marks":557,"data":558},"All invited team members had been assigned the \"Owner\" role, giving them full administrative access to the organization. A Visa credit card was attached to the billing account.",[],{},{"nodeType":431,"data":560,"content":564},{"target":561},{"sys":562},{"id":563,"type":436,"linkType":437},"272ejb1WCqvL58rYN3wfSQ",[],{"nodeType":431,"data":566,"content":570},{"target":567},{"sys":568},{"id":569,"type":436,"linkType":437},"9U5oPibmLSuloIIwMdpuG",[],{"nodeType":431,"data":572,"content":576},{"target":573},{"sys":574},{"id":575,"type":436,"linkType":437},"6S0boiGqIRqkxsNJWlXMZ0",[],{"nodeType":460,"data":578,"content":579},{},[580],{"nodeType":411,"value":581,"marks":582,"data":584},"The response",[583],{"type":457},{},{"nodeType":407,"data":586,"content":587},{},[588],{"nodeType":411,"value":589,"marks":590,"data":591},"We spotted the attack straight away and raised the alarm internally before deciding to investigate. Several Push employees had been invited to the tenant but either hadn’t seen the emails, or the wrong email address had been added for the employee. ",[],{},{"nodeType":431,"data":593,"content":597},{"target":594},{"sys":595},{"id":596,"type":436,"linkType":437},"1CQqUTdcJtZWozY7azSuOI",[],{"nodeType":407,"data":599,"content":600},{},[601],{"nodeType":411,"value":602,"marks":603,"data":604},"By joining the tenant, I was able to see the other employees that had been added, enabling us to speak to each employee to confirm. We could also see that they hadn’t joined the tenant since they were all “invite pending” status. Confirming that nobody had joined (and thus used) the platform was the extent of investigation required. ",[],{},{"nodeType":407,"data":606,"content":607},{},[608],{"nodeType":411,"value":609,"marks":610,"data":611},"We also implemented mail rules to block similar invites from reaching Push employees in future. ",[],{},{"nodeType":446,"data":613,"content":614},{},[],{"nodeType":450,"data":616,"content":617},{},[618],{"nodeType":411,"value":619,"marks":620,"data":622},"What's the payoff for an attacker?",[621],{"type":457},{},{"nodeType":407,"data":624,"content":625},{},[626,630],{"nodeType":411,"value":627,"marks":628,"data":629},"The attacker created an OpenAI organization, named it after our company, attached a credit card (which we believe was likely stolen — it's hard to see why a legitimate card would be used for this purpose), researched specific employees, and sent targeted invitations. That represents a non-trivial investment of effort. ",[],{},{"nodeType":411,"value":631,"marks":632,"data":634},"So what was the endgame?",[633],{"type":457},{},{"nodeType":460,"data":636,"content":637},{},[638],{"nodeType":411,"value":639,"marks":640,"data":642},"Get employees using the platform — then harvest what they put into it?",[641],{"type":457},{},{"nodeType":407,"data":644,"content":645},{},[646],{"nodeType":411,"value":647,"marks":648,"data":649},"An attacker who just wants to spray scam content through a trusted email channel doesn't name the organization after their target, research individual employees, or attach a credit card. ",[],{},{"nodeType":407,"data":651,"content":652},{},[653],{"nodeType":411,"value":654,"marks":655,"data":656},"That investment only pays off if employees actually join the organization and start using it. And on an AI platform, the data people put into prompts can be extraordinarily sensitive — source code, internal documents, customer data, security research, strategic plans.",[],{},{"nodeType":407,"data":658,"content":659},{},[660],{"nodeType":411,"value":661,"marks":662,"data":663},"If someone on the team had assumed \"oh, we've got a company OpenAI org now\" and started running work through it, the attacker would be sitting on a live feed of that activity as an org administrator with access to usage logs and API interactions.",[],{},{"nodeType":407,"data":665,"content":666},{},[667],{"nodeType":411,"value":668,"marks":669,"data":670},"The stolen credit card removes a friction point that might otherwise tip someone off: if there were no billing set up and employees hit a paywall when trying to use the API, they'd start asking questions internally about who created the org. A pre-funded account removes friction and the chance to discover that something is up.",[],{},{"nodeType":460,"data":672,"content":673},{},[674],{"nodeType":411,"value":675,"marks":676,"data":678},"SAMLjacking a poisoned tenant?",[677],{"type":457},{},{"nodeType":407,"data":680,"content":681},{},[682,686,694,698,705,709,717,721,729],{"nodeType":411,"value":683,"marks":684,"data":685},"In August 2023, we published ",[],{},{"nodeType":416,"data":687,"content":689},{"uri":688},"https://pushsecurity.com/blog/samljacking-a-poisoned-tenant/",[690],{"nodeType":411,"value":691,"marks":692,"data":693},"SAMLjacking a poisoned tenant",[],{},{"nodeType":411,"value":695,"marks":696,"data":697},", which demonstrated how an attacker could register a tenant on a SaaS platform using a target organization's name, invite employees to join it, and then leverage that foothold for further attacks — in that case, by configuring a malicious SAML identity provider to harvest credentials. The technique is cataloged in the ",[],{},{"nodeType":416,"data":699,"content":700},{"uri":61},[701],{"nodeType":411,"value":702,"marks":703,"data":704},"Browser & Identity Attacks Matrix",[],{},{"nodeType":411,"value":706,"marks":707,"data":708}," (originally the SaaS attack matrix) as an ",[],{},{"nodeType":416,"data":710,"content":712},{"uri":711},"https://pushsecurity.com/resources/browser-identity-attacks-matrix/poisoned-tenants",[713],{"nodeType":411,"value":714,"marks":715,"data":716},"initial access technique",[],{},{"nodeType":411,"value":718,"marks":719,"data":720}," — and when combined with ",[],{},{"nodeType":416,"data":722,"content":724},{"uri":723},"https://pushsecurity.com/resources/browser-identity-attacks-matrix/samljacking",[725],{"nodeType":411,"value":726,"marks":727,"data":728},"SAMLjacking",[],{},{"nodeType":411,"value":730,"marks":731,"data":732},", it becomes a lateral movement vector too.",[],{},{"nodeType":407,"data":734,"content":735},{},[736],{"nodeType":411,"value":737,"marks":738,"data":739},"The gist is that once an employee has joined an attacker-controlled organization and is treating it as a legitimate company resource, the attacker has a trusted channel for further social engineering — a follow-up message asking team members to connect their SSO, or to authorize a third-party integration that requires OAuth consent.",[],{},{"nodeType":407,"data":741,"content":742},{},[743,747,755],{"nodeType":411,"value":744,"marks":745,"data":746},"This is exactly the attack chain we described in the ",[],{},{"nodeType":416,"data":748,"content":749},{"uri":688},[750],{"nodeType":411,"value":751,"marks":752,"data":754},"original SAMLjacking post",[753],{"type":424},{},{"nodeType":411,"value":756,"marks":757,"data":758},", where a poisoned tenant on a seemingly low-risk platform becomes the entry point for credential harvesting via a malicious SAML configuration.",[],{},{"nodeType":407,"data":760,"content":761},{},[762],{"nodeType":411,"value":763,"marks":764,"data":765},"Based on my research I don’t think this exact scenario is easily possible in the specific context of OpenAI / ChatGPT since domain verification is required in order to enable SAML. However, there are other options to consider. ",[],{},{"nodeType":460,"data":767,"content":768},{},[769],{"nodeType":411,"value":770,"marks":771,"data":773},"Substituting SAMLjacking for project-jacking?",[772],{"type":457},{},{"nodeType":407,"data":775,"content":776},{},[777,781,790],{"nodeType":411,"value":778,"marks":779,"data":780},"We’ve recently reported on attacks like ",[],{},{"nodeType":416,"data":782,"content":784},{"uri":783},"https://pushsecurity.com/blog/llmshare-malvertising-campaign/",[785],{"nodeType":411,"value":786,"marks":787,"data":789},"LLMShare",[788],{"type":424},{},{"nodeType":411,"value":791,"marks":792,"data":793}," that interestingly also abused ChatGPT — in this case, abusing chat sharing functionality to distribute both malicious instructions and convincing-looking designs that trick the user into navigating to an attacker-controlled site hosting a malicious payload. ",[],{},{"nodeType":431,"data":795,"content":799},{"target":796},{"sys":797},{"id":798,"type":436,"linkType":437},"5U6imJMpFs8CAohztgHG3x",[],{"nodeType":407,"data":801,"content":802},{},[803],{"nodeType":411,"value":804,"marks":805,"data":806},"In the cases we observed in the wild, links were distributed via malvertising. But you could see a scenario in which shared projects or conversations are seeded with chats containing malicious links. Or even perhaps malicious instructions in shared projects (effectively a form of prompt injection). In this way, attackers could trick the user into running malicious commands that interact with other connected apps such as their email, calendar, and a long list of cloud services with access to sensitive company data. ",[],{},{"nodeType":431,"data":808,"content":812},{"target":809},{"sys":810},{"id":811,"type":436,"linkType":437},"4g0jXhfJ5OMBhDXjfCX8S2",[],{"nodeType":450,"data":814,"content":815},{},[816],{"nodeType":411,"value":817,"marks":818,"data":820},"This isn't an isolated technique",[819],{"type":457},{},{"nodeType":407,"data":822,"content":823},{},[824],{"nodeType":411,"value":825,"marks":826,"data":827},"Our experience is a specific instance of a broader trend: attackers weaponizing the invitation and notification features built into SaaS platforms to deliver social engineering through trusted channels. ",[],{},{"nodeType":407,"data":829,"content":830},{},[831,835,843,847,852],{"nodeType":411,"value":832,"marks":833,"data":834},"In January 2026, ",[],{},{"nodeType":416,"data":836,"content":838},{"uri":837},"https://me-en.kaspersky.com/about/press-releases/kaspersky-detected-a-scam-exploiting-openais-teamwork-features",[839],{"nodeType":411,"value":840,"marks":841,"data":842},"Kaspersky reported",[],{},{"nodeType":411,"value":844,"marks":845,"data":846}," a cruder abuse of the same OpenAI invitation feature. When you create an OpenAI organization, the platform lets you set the organization name to any arbitrary string. Attackers exploited this by stuffing scam content directly into the org name field: fake subscription renewal notices, fraudulent phone numbers for vishing callbacks, and links to adult services. In that case, the ",[],{},{"nodeType":411,"value":848,"marks":849,"data":851},"org name was the payload",[850],{"type":457},{},{"nodeType":411,"value":853,"marks":854,"data":855},", while in our case, the email was the delivery mechanism for a legitimate-looking poisoned tenant. ",[],{},{"nodeType":407,"data":857,"content":858},{},[859,863,871],{"nodeType":411,"value":860,"marks":861,"data":862},"In April 2026, ",[],{},{"nodeType":416,"data":864,"content":866},{"uri":865},"https://blog.talosintelligence.com/weaponizing-saas-notification-pipelines/",[867],{"nodeType":411,"value":868,"marks":869,"data":870},"Cisco Talos published research",[],{},{"nodeType":411,"value":872,"marks":873,"data":874}," on what they termed \"Platform-as-a-Proxy\" (PaaP), documenting the same technique across GitHub and Jira — phishing lures embedded in commit messages, welcome messages, and other user-controlled fields that feed into platform-generated notification emails. At its peak, Talos estimated approximately 2.89% of emails sent from GitHub on a single day were associated with this activity.",[],{},{"nodeType":407,"data":876,"content":877},{},[878],{"nodeType":411,"value":879,"marks":880,"data":881},"What’s clear is that attackers are abusing SaaS platforms that let anyone create organizations, name them whatever they want, and send invitation emails through the platform's own mail infrastructure. ",[],{},{"nodeType":446,"data":883,"content":884},{},[],{"nodeType":450,"data":886,"content":887},{},[888],{"nodeType":411,"value":889,"marks":890,"data":892},"What you can actually do about it",[891],{"type":457},{},{"nodeType":407,"data":894,"content":895},{},[896],{"nodeType":411,"value":897,"marks":898,"data":899},"The defensive challenge with poisoned tenant attacks is that they exploit legitimate platform functionality delivered through legitimate sites. There's no malicious URL to block, no spoofed domain to detect, and no attachment to scan. The invitation email is, by every technical measure, genuine. That said, there are practical steps that reduce the risk. ",[],{},{"nodeType":460,"data":901,"content":902},{},[903],{"nodeType":411,"value":904,"marks":905,"data":907},"Get visibility into SaaS organization membership",[906],{"type":457},{},{"nodeType":407,"data":909,"content":910},{},[911],{"nodeType":411,"value":912,"marks":913,"data":914},"Most organizations have no visibility into which SaaS platform invitations their employees are receiving or accepting. If an employee joins an attacker-controlled Slack workspace, OpenAI organization, or Jira project, the security team typically has no way to know. Any tool that provides visibility into SaaS account creation and organization membership — whether through browser telemetry, IdP monitoring, or platform API integration — closes a significant blind spot. ",[],{},{"nodeType":460,"data":916,"content":917},{},[918],{"nodeType":411,"value":919,"marks":920,"data":922},"Train for invitations, not just phishing",[921],{"type":457},{},{"nodeType":407,"data":924,"content":925},{},[926],{"nodeType":411,"value":927,"marks":928,"data":929},"Generic phishing awareness training doesn't cover this scenario well, because the emails genuinely aren't phishing in the traditional sense. They're legitimate platform notifications carrying an illegitimate invitation. Employees need to understand that an email from OpenAI, Microsoft, GitHub, or Atlassian can be both technically authentic and part of an attack — and that joining an organization on any platform is a security-relevant action that should be verified through an internal channel before accepting.",[],{},{"nodeType":460,"data":931,"content":932},{},[933],{"nodeType":411,"value":934,"marks":935,"data":937},"Can you protect against domain squatting?",[936],{"type":457},{},{"nodeType":407,"data":939,"content":940},{},[941],{"nodeType":411,"value":942,"marks":943,"data":944},"In some cases, you can register your organization name on a platform to prevent others from claiming it, even if you don't plan to use the platform's organizational features immediately. That said, in others you can have lots of tenants with the same name, and there are no protections around companies claiming a tenant ID impersonating your own — as in this case, where an attacker with a random email address was able to create a realistic-looking Push Security tenant. ",[],{},{"nodeType":460,"data":946,"content":947},{},[948],{"nodeType":411,"value":949,"marks":950,"data":952},"Lobby vendors to do better",[951],{"type":457},{},{"nodeType":407,"data":954,"content":955},{},[956],{"nodeType":411,"value":957,"marks":958,"data":959},"Platform vendors need to improve invitation controls. OpenAI does include a warning when the inviter's domain doesn't match the recipient's domain, which is better than nothing — but a single line of text in an otherwise polished invitation email is easy to miss.",[],{},{"nodeType":407,"data":961,"content":962},{},[963],{"nodeType":411,"value":964,"marks":965,"data":966},"Platforms should consider requiring domain verification before allowing an organization to use a company's name, adding more prominent warnings for cross-domain invitations, or allowing enterprise customers to restrict which organizations their employees can join.",[],{},{"nodeType":446,"data":968,"content":969},{},[],{"nodeType":450,"data":971,"content":972},{},[973],{"nodeType":411,"value":974,"marks":975,"data":977},"The bigger picture",[976],{"type":457},{},{"nodeType":407,"data":979,"content":980},{},[981],{"nodeType":411,"value":982,"marks":983,"data":984},"When we published the poisoned tenant technique in 2023, it was a theoretical attack that we hadn't seen used in the wild. Three years later, we've experienced it firsthand, and the technique has moved from our attack matrix to our incident log.",[],{},{"nodeType":407,"data":986,"content":987},{},[988,992,1001],{"nodeType":411,"value":989,"marks":990,"data":991},"The explosion of SaaS platforms in enterprise environments (",[],{},{"nodeType":416,"data":993,"content":995},{"uri":994},"https://pushsecurity.com/blog/what-push-data-reveals-about-the-state-of-shadow-ai/",[996],{"nodeType":411,"value":997,"marks":998,"data":1000},"particularly with the force multiplier that is AI",[999],{"type":424},{},{"nodeType":411,"value":1002,"marks":1003,"data":1004},"), each with their own organization and invitation features, has created a sprawling attack surface that most security teams aren't monitoring. Every platform that lets anyone create an organization with any name and invite anyone to join it is offering attackers a trusted delivery channel.",[],{},{"nodeType":407,"data":1006,"content":1007},{},[1008],{"nodeType":411,"value":1009,"marks":1010,"data":1011},"And as AI platforms like OpenAI become standard tools in the enterprise, the value of a poisoned tenant on those platforms — with access to prompts, API usage, and potentially sensitive data — grows significantly.",[],{},{"nodeType":407,"data":1013,"content":1014},{},[1015],{"nodeType":411,"value":1016,"marks":1017,"data":1018},"It's good that we spend our days thinking about this stuff — the attack was caught quickly because the team is wary of exactly these kinds of techniques, and no data was exposed. The next organization targeted with this technique may not have that advantage, especially if the attacker's tenant sits in the background while employees unknowingly feed it data through their normal work.",[],{},{"nodeType":446,"data":1020,"content":1021},{},[],{"nodeType":450,"data":1023,"content":1024},{},[1025],{"nodeType":411,"value":1026,"marks":1027,"data":1029},"IoCs",[1028],{"type":457},{},{"nodeType":407,"data":1031,"content":1032},{},[1033],{"nodeType":411,"value":1034,"marks":1035,"data":1036},"We’ve identified the following emails associated with the campaign so far (at least, in terms of the attacks directly targeting Push):",[],{},{"nodeType":1038,"data":1039,"content":1040},"unordered-list",{},[1041,1052,1062],{"nodeType":1042,"data":1043,"content":1044},"list-item",{},[1045],{"nodeType":407,"data":1046,"content":1047},{},[1048],{"nodeType":411,"value":1049,"marks":1050,"data":1051},"phamvankim2133@gmail[.]com",[],{},{"nodeType":1042,"data":1053,"content":1054},{},[1055],{"nodeType":407,"data":1056,"content":1057},{},[1058],{"nodeType":411,"value":1059,"marks":1060,"data":1061},"adam.bateman_928@faeththeraputics[.]email",[],{},{"nodeType":1042,"data":1063,"content":1064},{},[1065],{"nodeType":407,"data":1066,"content":1067},{},[1068],{"nodeType":411,"value":1069,"marks":1070,"data":1071},"amelindashaffer99495@gmail[.]com",[],{},{"nodeType":407,"data":1073,"content":1074},{},[1075],{"nodeType":411,"value":1076,"marks":1077,"data":1078},"However, the real list is likely to be much larger. We’ve confirmed that similar messages have also been received by Push customers. But it's not like you can easily block access to the tenants themselves — they are \"legit\" OpenAI tenants, using the normal OpenAI domain. And since a new one is being spun up each time, no two attacks will look the same.",[],{},{"nodeType":446,"data":1080,"content":1081},{},[],{"nodeType":407,"data":1083,"content":1084},{},[1085],{"nodeType":411,"value":1086,"marks":1087,"data":1088},"Push Security is the most powerful AI-native security tool in the browser. Think EDR, but for the browser — high-fidelity telemetry and real-time control across every session, on every device, with no browser migration required.",[],{},{"nodeType":407,"data":1090,"content":1091},{},[1092],{"nodeType":411,"value":1093,"marks":1094,"data":1095},"Security teams use Push to detect and stop advanced browser-based attacks like AiTM phishing, ClickFix, and session hijacking; gain visibility and control over AI tool usage across their workforce; harden identities by surfacing credential reuse, SSO gaps, and shadow IT; and support data loss and insider investigations with browser-layer telemetry that other tools can't see.",[],{},{"nodeType":407,"data":1097,"content":1098},{},[1099,1102,1111],{"nodeType":411,"value":29,"marks":1100,"data":1101},[],{},{"nodeType":416,"data":1103,"content":1105},{"uri":1104},"https://pushsecurity.com/demo/",[1106],{"nodeType":411,"value":1107,"marks":1108,"data":1110},"Book a live demo to learn more.",[1109],{"type":424},{},{"nodeType":411,"value":29,"marks":1112,"data":1113},[],{},{"entries":1115},{"hyperlink":1116,"inline":1117,"block":1118},[],[],[1119,1126,1134,1141,1148,1154,1160,1165,1172,1178],{"sys":1120,"__typename":1121,"type":1122,"ctaText":1123,"buttonLabel":1124,"buttonColour":1125,"buttonUrl":61},{"id":435},"CtaWidget","Custom","Check out our browser and identity attacks matrix for a comprehensive overview of attack techniques using a MITRE-inspired mapping.","Check it out","sunny orange",{"sys":1127,"__typename":1128,"title":702,"caption":1129,"layoutMode":62,"file":1130},{"id":443},"Image","Browser and identity-based techniques have exploded since we first launched our attack matrix",{"url":1131,"width":1132,"height":1133},"https://images.ctfassets.net/y1cdw1ablpvd/L0Yc77y9vzrKVD72BQGX2/4ffe0bf61bd62f025262b8efd74394b7/Browser___Identity_Attacks_Matrix__1_.png",6160,4432,{"sys":1135,"__typename":1128,"title":1136,"caption":1136,"layoutMode":62,"file":1137},{"id":486},"Invitation email showing OpenAI branding, \"Push Security Inc\" org name, and the Gmail sender address",{"url":1138,"width":1139,"height":1140},"https://images.ctfassets.net/y1cdw1ablpvd/3eUI8n1hcCbP6nV2dZ2lLK/1f34b9057cafed9ef1472ea0902d84ac/image4.png",1833,775,{"sys":1142,"__typename":1128,"title":1143,"caption":1143,"layoutMode":62,"file":1144},{"id":528},"\"Invite accepted\" confirmation page.",{"url":1145,"width":1146,"height":1147},"https://images.ctfassets.net/y1cdw1ablpvd/38N7FnCMSQz519ZXQfpXo4/f848d30b238b943a47efa29d12b68b87/image5.png",1999,1031,{"sys":1149,"__typename":1128,"title":1150,"caption":1150,"layoutMode":62,"file":1151},{"id":563},"Settings screen showing the organization name “Push Security Inc”.",{"url":1152,"width":1146,"height":1153},"https://images.ctfassets.net/y1cdw1ablpvd/3bRsNJecXnZPE2VNzS2gRy/5b715bb1b01af459885be77757c94953/image6.png",1129,{"sys":1155,"__typename":1128,"title":1156,"caption":62,"layoutMode":62,"file":1157},{"id":569},"Members page showing the attacker's account and Luke's account.",{"url":1158,"width":1146,"height":1159},"https://images.ctfassets.net/y1cdw1ablpvd/6SXC65KKIl6Kh7jWj24fG7/930d892e37218a1e7f0bbed06edaea6e/image7.png",602,{"sys":1161,"__typename":1128,"title":1162,"caption":62,"layoutMode":62,"file":1163},{"id":575},"Billing page showing attached Visa card.",{"url":1164,"width":1146,"height":1153},"https://images.ctfassets.net/y1cdw1ablpvd/6lXKx1sPEpoPSLP0vWkWmX/042ea3d7a259234bb0ac53f93e79ff99/image2.png",{"sys":1166,"__typename":1128,"title":1167,"caption":1167,"layoutMode":62,"file":1168},{"id":596},"Several Push employees had been invited to the tenant. Because I was an admin, I could also choose to resend the invites or remove them.",{"url":1169,"width":1170,"height":1171},"https://images.ctfassets.net/y1cdw1ablpvd/4XMXNGxkUOZc8OJIEvAR5X/e51c2460775d712732f6a59bef28d018/image3.png",1936,1428,{"sys":1173,"__typename":1128,"title":1174,"caption":1174,"layoutMode":62,"file":1175},{"id":798},"The LLMShare attack we recently disclosed also leveraged ChatGPT as a platform to distribute malware.",{"url":1176,"width":1146,"height":1177},"https://images.ctfassets.net/y1cdw1ablpvd/5grmZOTXQcb1uDHhMw8e20/239aece66c5f29745dd2a77fd288de49/image1.png",875,{"sys":1179,"__typename":1180,"content":1181,"name":1204,"title":62},{"id":811},"InsightTextBlockComponent",{"json":1182},{"data":1183,"content":1184,"nodeType":403},{},[1185],{"data":1186,"content":1187,"nodeType":407},{},[1188,1192,1200],{"data":1189,"marks":1190,"value":1191,"nodeType":411},{},[],"AI apps are increasingly the ",{"data":1193,"content":1194,"nodeType":416},{"uri":994},[1195],{"data":1196,"marks":1197,"value":1199,"nodeType":411},{},[1198],{"type":424},"work hub for modern enterprise users",{"data":1201,"marks":1202,"value":1203,"nodeType":411},{},[],", even more so than something like M365 or Google Workspace once was. AI apps acting as the control plane for automation and orchestration across business apps are a security nightmare if compromised — if a user could be tricked into using the attacker’s tenant, connecting it to business apps and accounts, and then inadvertently running malicious instructions, the possible attack scenarios are extensive. ","OpenAI poisoned tenant IB1","json",{"items":1207},[],{},"Investigating a novel OpenAI poisoned tenant attack","2026-06-26T00:00:00.000Z",{"items":1212},[1213,2087,2899],{"__typename":1214,"sys":1215,"content":1217,"title":2065,"synopsis":2066,"hashTags":62,"publishedDate":2067,"slug":2068,"tagsCollection":2069,"authorsCollection":2079},"BlogPosts",{"id":1216},"211Dd0EIrXPOFpvRgs0fEE",{"json":1218},{"nodeType":403,"data":1219,"content":1220},{},[1221,1240,1259,1276,1282,1285,1293,1300,1307,1314,1321,1329,1332,1340,1347,1354,1361,1367,1375,1394,1401,1408,1424,1432,1463,1479,1486,1517,1525,1556,1563,1571,1590,1597,1604,1610,1617,1625,1644,1651,1670,1677,1680,1688,1695,1784,1791,1807,1810,1841,1860,1867,1874,1877,1885,1904,1911,1918,1936,1939,1947,1954,1987,1994,2011,2030,2036,2039,2046],{"nodeType":407,"data":1222,"content":1223},{},[1224,1228,1236],{"nodeType":411,"value":1225,"marks":1226,"data":1227},"When we released the ",[],{},{"nodeType":416,"data":1229,"content":1231},{"uri":1230},"https://pushsecurity.com/blog/saas-attack-techniques/",[1232],{"nodeType":411,"value":1233,"marks":1234,"data":1235},"SaaS attack matrix",[],{},{"nodeType":411,"value":1237,"marks":1238,"data":1239}," in 2023, we were anticipating a shift that was just beginning to take shape. The techniques that attackers were using to compromise cloud applications and identities weren't well represented in existing frameworks, and many of the ones we documented hadn't yet been widely observed in the wild.",[],{},{"nodeType":407,"data":1241,"content":1242},{},[1243,1247,1255],{"nodeType":411,"value":1244,"marks":1245,"data":1246},"A year later, we ",[],{},{"nodeType":416,"data":1248,"content":1250},{"uri":1249},"https://pushsecurity.com/blog/the-saas-attack-matrix-one-year-on/",[1251],{"nodeType":411,"value":1252,"marks":1253,"data":1254},"reviewed what had changed",[],{},{"nodeType":411,"value":1256,"marks":1257,"data":1258}," and found that the initial access phase — the techniques designed to compromise an identity in the first place — was where almost all of the attacker innovation was concentrated. And two years on, that trend has become the story of the modern threat landscape. ",[],{},{"nodeType":407,"data":1260,"content":1261},{},[1262,1266,1272],{"nodeType":411,"value":1263,"marks":1264,"data":1265},"Today, we're re-releasing the matrix as the ",[],{},{"nodeType":416,"data":1267,"content":1268},{"uri":61},[1269],{"nodeType":411,"value":702,"marks":1270,"data":1271},[],{},{"nodeType":411,"value":1273,"marks":1274,"data":1275},". The name change isn't cosmetic. It reflects that the attacks driving the most consequential breaches are browser-based and identity-first.",[],{},{"nodeType":431,"data":1277,"content":1281},{"target":1278},{"sys":1279},{"id":1280,"type":436,"linkType":437},"MSnrBRJtiQxpv2qxFLCVE",[],{"nodeType":446,"data":1283,"content":1284},{},[],{"nodeType":450,"data":1286,"content":1287},{},[1288],{"nodeType":411,"value":1289,"marks":1290,"data":1292},"Why the scope needed to change",[1291],{"type":457},{},{"nodeType":407,"data":1294,"content":1295},{},[1296],{"nodeType":411,"value":1297,"marks":1298,"data":1299},"The original SaaS attack matrix was built around a specific insight: that attacks targeting modern business applications played out entirely over the internet, without touching endpoints or internal networks in any way that EDR or network detection tools would recognize.",[],{},{"nodeType":407,"data":1301,"content":1302},{},[1303],{"nodeType":411,"value":1304,"marks":1305,"data":1306},"That framing was useful, and it remains true. But it anchored the matrix to the post-access phase — what attackers do once they're inside a SaaS application — and didn't give enough weight to the initial access techniques that determine whether attackers get there in the first place.",[],{},{"nodeType":407,"data":1308,"content":1309},{},[1310],{"nodeType":411,"value":1311,"marks":1312,"data":1313},"The problem is that initial access is where the overwhelming majority of attacker innovation and investment is concentrated, and the techniques being used to achieve it are best understood as browser and identity attacks rather than SaaS-specific ones. AiTM phishing, ClickFix and its growing family of clipboard-injection variants, device code phishing, OAuth consent abuse, credential stuffing powered by infostealer supply chains, malicious browser extensions all happen in or via the browser.",[],{},{"nodeType":407,"data":1315,"content":1316},{},[1317],{"nodeType":411,"value":1318,"marks":1319,"data":1320},"Another issue is that \"SaaS\" has arguably ceased to be a meaningful category. When we consider that most organizations run the majority of their business on cloud applications, the difference between what constitutes \"SaaS\" versus cloud versus just \"business IT\" is pretty blurry (and feels like an academic rather than practical difference).",[],{},{"nodeType":407,"data":1322,"content":1323},{},[1324],{"nodeType":411,"value":1325,"marks":1326,"data":1328},"So it's less about whether an attack is a \"SaaS attack\" and more about how these attacks actually play out. ",[1327],{"type":457},{},{"nodeType":446,"data":1330,"content":1331},{},[],{"nodeType":450,"data":1333,"content":1334},{},[1335],{"nodeType":411,"value":1336,"marks":1337,"data":1339},"The technique landscape has transformed",[1338],{"type":457},{},{"nodeType":407,"data":1341,"content":1342},{},[1343],{"nodeType":411,"value":1344,"marks":1345,"data":1346},"The second part to the change is the fact that scale and speed of attacker innovation in the space justifies it.",[],{},{"nodeType":407,"data":1348,"content":1349},{},[1350],{"nodeType":411,"value":1351,"marks":1352,"data":1353},"When we launched the matrix in mid-2023, AiTM phishing was emerging as a serious concern but was far from ubiquitous. ClickFix didn't exist as a named technique. Device code phishing was a curiosity documented by a handful of researchers. ConsentFix was years away from being discovered. Browser extension supply chain attacks were rare enough to be individually notable.",[],{},{"nodeType":407,"data":1355,"content":1356},{},[1357],{"nodeType":411,"value":1358,"marks":1359,"data":1360},"In the two and a half years since, every one of these has become a mainstream, industrialized attack technique — and several have converged in ways that would have been hard to predict.",[],{},{"nodeType":431,"data":1362,"content":1366},{"target":1363},{"sys":1364},{"id":1365,"type":436,"linkType":437},"5Kw2kSrL8u4VyslxK8HCtR",[],{"nodeType":460,"data":1368,"content":1369},{},[1370],{"nodeType":411,"value":1371,"marks":1372,"data":1374},"AiTM phishing has become the default phishing method",[1373],{"type":457},{},{"nodeType":407,"data":1376,"content":1377},{},[1378,1382,1390],{"nodeType":411,"value":1379,"marks":1380,"data":1381},"AiTM phishing is now the standard, powered by Phishing-as-a-Service kits that operate with the release cycles and customer support of legitimate SaaS products. Tycoon 2FA alone accounted for ",[],{},{"nodeType":416,"data":1383,"content":1385},{"uri":1384},"https://pushsecurity.com/blog/2025-top-phishing-trends/",[1386],{"nodeType":411,"value":1387,"marks":1388,"data":1389},"62% of phishing detected by Microsoft",[],{},{"nodeType":411,"value":1391,"marks":1392,"data":1393}," and over 64,000 confirmed incidents, with Sneaky2FA, FlowerStorm, Evilginx, and a growing roster of competitors filling out the marketplace.",[],{},{"nodeType":407,"data":1395,"content":1396},{},[1397],{"nodeType":411,"value":1398,"marks":1399,"data":1400},"AiTM is constantly evolving, with vendors adding new features, capabilities, detection evasion techniques, and so on. Abuse of legitimate platforms, and increasingly AI-assisted development means that it’s trivial for attackers to spin up and tear down infrastructure, scale their campaigns, target specific organizations with crafted pages and lures, and generally means that attackers can operate highly sophisticated attacks with minimal effort and complexity. This makes AiTM and other PhaaS-powered techniques extremely accessible to all kinds of criminals.  ",[],{},{"nodeType":407,"data":1402,"content":1403},{},[1404],{"nodeType":411,"value":1405,"marks":1406,"data":1407},"These kits are delivered across several browser-based channels — not just email. Push data consistently shows that roughly 1 in 3 phishing payloads we intercept arrive via social media, search ads, messaging apps, or other non-email vectors.",[],{},{"nodeType":407,"data":1409,"content":1410},{},[1411,1415,1420],{"nodeType":411,"value":1412,"marks":1413,"data":1414},"Vishing has also surged as a delivery channel — CrowdStrike documented a ",[],{},{"nodeType":411,"value":1416,"marks":1417,"data":1419},"442% year-over-year increase",[1418],{"type":457},{},{"nodeType":411,"value":1421,"marks":1422,"data":1423},", and Mandiant found it was the single most common initial vector in cloud compromises at 23%. But the trend that matters isn't voice calls in isolation; it's voice calls combined with browser-based payloads, where a live operator guides the victim into an AiTM page or device code flow that the call alone could not execute.",[],{},{"nodeType":460,"data":1425,"content":1426},{},[1427],{"nodeType":411,"value":1428,"marks":1429,"data":1431},"ClickFix is the top reported initial access vector",[1430],{"type":457},{},{"nodeType":407,"data":1433,"content":1434},{},[1435,1439,1447,1451,1459],{"nodeType":411,"value":1436,"marks":1437,"data":1438},"ClickFix has gone from nonexistent to one of the most prevalent initial access techniques in under 18 months. Microsoft reported it as the ",[],{},{"nodeType":416,"data":1440,"content":1442},{"uri":1441},"https://cdn-dynmedia-1.microsoft.com/is/content/microsoftcorp/microsoft/msc/documents/presentations/CSR/Microsoft-Digital-Defense-Report-2025.pdf",[1443],{"nodeType":411,"value":1444,"marks":1445,"data":1446},"most common initial access vector in 2025",[],{},{"nodeType":411,"value":1448,"marks":1449,"data":1450},", accounting for 47% of observed attacks, while CrowdStrike documented a ",[],{},{"nodeType":416,"data":1452,"content":1454},{"uri":1453},"https://www.crowdstrike.com/explore/2026-global-threat-report",[1455],{"nodeType":411,"value":1456,"marks":1457,"data":1458},"563% increase",[],{},{"nodeType":411,"value":1460,"marks":1461,"data":1462}," in fake CAPTCHA lures (a top ClickFix style).",[],{},{"nodeType":407,"data":1464,"content":1465},{},[1466,1470,1475],{"nodeType":411,"value":1467,"marks":1468,"data":1469},"ClickFix is admittedly an outlier in a browser attacks matrix — the payload ultimately executes on the endpoint, not in the browser — but the delivery is overwhelmingly browser-based: ",[],{},{"nodeType":411,"value":1471,"marks":1472,"data":1474},"4 in 5 ClickFix payloads",[1473],{"type":457},{},{"nodeType":411,"value":1476,"marks":1477,"data":1478}," intercepted by Push arrive via search engines as a result of malvertising or compromised web pages, not email, which means the browser is the only control point that actually sees the attack before the user pastes the malicious command.",[],{},{"nodeType":407,"data":1480,"content":1481},{},[1482],{"nodeType":411,"value":1483,"marks":1484,"data":1485},"ClickFix is now the primary delivery mechanism for infostealer malware, which is in turn the primary source of the stolen credentials and session tokens that power credential stuffing and session hijacking — which means the technique sits at the start of a cycle where one class of browser-delivered attack generates the raw material for the next.",[],{},{"nodeType":407,"data":1487,"content":1488},{},[1489,1493,1501,1505,1513],{"nodeType":411,"value":1490,"marks":1491,"data":1492},"The success of ClickFix has predictably spawned a growing family of derivatives — FileFix, CrashFix, ",[],{},{"nodeType":416,"data":1494,"content":1496},{"uri":1495},"https://pushsecurity.com/blog/installfix/",[1497],{"nodeType":411,"value":1498,"marks":1499,"data":1500},"InstallFix",[],{},{"nodeType":411,"value":1502,"marks":1503,"data":1504}," — and much of the naming is marketing hype around variations on the same clipboard-injection mechanic. But ",[],{},{"nodeType":416,"data":1506,"content":1508},{"uri":1507},"https://pushsecurity.com/blog/consentfix/",[1509],{"nodeType":411,"value":1510,"marks":1511,"data":1512},"ConsentFix",[],{},{"nodeType":411,"value":1514,"marks":1515,"data":1516}," was a genuinely novel development.",[],{},{"nodeType":460,"data":1518,"content":1519},{},[1520],{"nodeType":411,"value":1521,"marks":1522,"data":1524},"Browser-native ClickFix: ConsentFix",[1523],{"type":457},{},{"nodeType":407,"data":1526,"content":1527},{},[1528,1532,1540,1544,1552],{"nodeType":411,"value":1529,"marks":1530,"data":1531},"ConsentFix is a fully browser-native attack that merged ClickFix-style social engineering with OAuth consent abuse, compromising accounts through a legitimate Microsoft authorization flow with no endpoint component at all. ConsentFix was ",[],{},{"nodeType":416,"data":1533,"content":1535},{"uri":1534},"https://pushsecurity.com/blog/consentfix-debrief/",[1536],{"nodeType":411,"value":1537,"marks":1538,"data":1539},"traced to APT29",[],{},{"nodeType":411,"value":1541,"marks":1542,"data":1543}," and has since been ",[],{},{"nodeType":416,"data":1545,"content":1547},{"uri":1546},"https://pushsecurity.com/blog/consentfix-v3-analyzing-a-new-toolkit/",[1548],{"nodeType":411,"value":1549,"marks":1550,"data":1551},"commercialized on criminal forums",[],{},{"nodeType":411,"value":1553,"marks":1554,"data":1555},", following the same path from state-sponsored technique to commodity criminal tooling that we've seen repeatedly in this space.",[],{},{"nodeType":407,"data":1557,"content":1558},{},[1559],{"nodeType":411,"value":1560,"marks":1561,"data":1562},"ConsentFix demonstrates that the clipboard-injection mechanic can evolve into something that operates entirely within the browser, eliminating the endpoint detection surface that traditional ClickFix still exposed.",[],{},{"nodeType":460,"data":1564,"content":1565},{},[1566],{"nodeType":411,"value":1567,"marks":1568,"data":1570},"Attackers have pivoted to authorization attacks to get around login controls",[1569],{"type":457},{},{"nodeType":407,"data":1572,"content":1573},{},[1574,1578,1586],{"nodeType":411,"value":1575,"marks":1576,"data":1577},"Authorization attacks like device code phishing have seen a ",[],{},{"nodeType":416,"data":1579,"content":1581},{"uri":1580},"https://pushsecurity.com/blog/device-code-phishing/",[1582],{"nodeType":411,"value":1583,"marks":1584,"data":1585},"37.5x increase",[],{},{"nodeType":411,"value":1587,"marks":1588,"data":1589}," since the start of 2026, with at least 12 distinct kits now offering the technique. It bypasses standard authentication controls — including passkeys — because the attack occurs through the OAuth device authorization flow rather than the standard login flow. ",[],{},{"nodeType":407,"data":1591,"content":1592},{},[1593],{"nodeType":411,"value":1594,"marks":1595,"data":1596},"The technique was first associated with nation-state actors like Storm-2372, but went from espionage-grade to commodity PhaaS tooling in roughly eighteen months, with kits like EvilTokens and Venom now offering turnkey device code phishing as a service.",[],{},{"nodeType":407,"data":1598,"content":1599},{},[1600],{"nodeType":411,"value":1601,"marks":1602,"data":1603},"The device code authorization is effectively performed post-authentication. If you already have an active session in your browser, entering the device code and selecting your account from a drop-down menu is all that's needed. No password or MFA required. You can see an example in the video below.",[],{},{"nodeType":431,"data":1605,"content":1609},{"target":1606},{"sys":1607},{"id":1608,"type":436,"linkType":437},"2WPb41lNRajdpt5pogQg8M",[],{"nodeType":407,"data":1611,"content":1612},{},[1613],{"nodeType":411,"value":1614,"marks":1615,"data":1616},"And the ecosystem is adapting to this opportunity: established AiTM vendors like Tycoon are adding authorization-focused options alongside their existing credential-harvesting capabilities, which points toward multi-technique platforms where operators pick the right tool for whatever defenses the target has in place.",[],{},{"nodeType":460,"data":1618,"content":1619},{},[1620],{"nodeType":411,"value":1621,"marks":1622,"data":1624},"Malicious and hacked browser extensions are one of the fastest growing threats",[1623],{"type":457},{},{"nodeType":407,"data":1626,"content":1627},{},[1628,1632,1640],{"nodeType":411,"value":1629,"marks":1630,"data":1631},"Malicious browser extensions have matured from an occasional nuisance into a scalable supply chain attack vector. The ",[],{},{"nodeType":416,"data":1633,"content":1635},{"uri":1634},"https://pushsecurity.com/blog/why-browser-extension-risk-scoring-wont-predict-your-next-breach/",[1636],{"nodeType":411,"value":1637,"marks":1638,"data":1639},"Cyberhaven compromise",[],{},{"nodeType":411,"value":1641,"marks":1642,"data":1643}," in December 2024 — where approximately 35 extensions were weaponized through a single OAuth phishing campaign targeting developers — impacted 2.6 million users and demonstrated that extension supply chain attacks can achieve the kind of reach that used to require a compromised software update server.",[],{},{"nodeType":407,"data":1645,"content":1646},{},[1647],{"nodeType":411,"value":1648,"marks":1649,"data":1650},"Since Cyberhaven, the pace has only accelerated. In 2026 alone, researchers have publicly disclosed at least 250 confirmed malicious browser extensions affecting roughly 1.75 million users, alongside a further 370+ extensions engaged in undisclosed or policy-disclosed data harvesting affecting an additional 44 million users. That doesn't count the extensions from late-2025 campaigns (DarkSpectre, AITOPIA, Trust Wallet) whose impacts carried into 2026.",[],{},{"nodeType":407,"data":1652,"content":1653},{},[1654,1658,1666],{"nodeType":411,"value":1655,"marks":1656,"data":1657},"The attack paths have also expanded. Beyond phishing developers for take over Web Store accounts (the Cyberhaven playbook), attackers are buying existing extensions from developers, waiting for ownership transfers or abandonments to take over, and increasingly vibe-coding their own functional extensions from scratch to build an audience that can later be weaponized. The common thread is that ",[],{},{"nodeType":416,"data":1659,"content":1660},{"uri":1634},[1661],{"nodeType":411,"value":1662,"marks":1663,"data":1665},"most malicious extensions didn't start out malicious",[1664],{"type":424},{},{"nodeType":411,"value":1667,"marks":1668,"data":1669}," — they started as legitimate tools and were turned into weapons after the fact.",[],{},{"nodeType":407,"data":1671,"content":1672},{},[1673],{"nodeType":411,"value":1674,"marks":1675,"data":1676},"None of this is happening in isolation. The threat landscape has reoriented around browser-based initial access and identity compromise — and the matrix needed to catch up.",[],{},{"nodeType":446,"data":1678,"content":1679},{},[],{"nodeType":450,"data":1681,"content":1682},{},[1683],{"nodeType":411,"value":1684,"marks":1685,"data":1687},"The evolution is playing out in public breaches",[1686],{"type":457},{},{"nodeType":407,"data":1689,"content":1690},{},[1691],{"nodeType":411,"value":1692,"marks":1693,"data":1694},"It’s worth reinforcing that when the SaaS matrix was first released, many of these attacks hadn’t been seen in the wild. The change today is staggering:",[],{},{"nodeType":1038,"data":1696,"content":1697},{},[1698,1720,1742,1762],{"nodeType":1042,"data":1699,"content":1700},{},[1701],{"nodeType":407,"data":1702,"content":1703},{},[1704,1708,1716],{"nodeType":411,"value":1705,"marks":1706,"data":1707},"When ",[],{},{"nodeType":416,"data":1709,"content":1711},{"uri":1710},"https://pushsecurity.com/blog/scattered-lapsus-hunters/",[1712],{"nodeType":411,"value":1713,"marks":1714,"data":1715},"Scattered Lapsus$ Hunters",[],{},{"nodeType":411,"value":1717,"marks":1718,"data":1719}," compromised over a thousand organizations' Salesforce tenants through device code phishing, the attack started with a phone call, moved through a browser-based authorization flow for the attacker’s app, and ended with mass data exfiltration via API.",[],{},{"nodeType":1042,"data":1721,"content":1722},{},[1723],{"nodeType":407,"data":1724,"content":1725},{},[1726,1730,1738],{"nodeType":411,"value":1727,"marks":1728,"data":1729},"When the same collective launched ",[],{},{"nodeType":416,"data":1731,"content":1733},{"uri":1732},"https://pushsecurity.com/blog/unpacking-the-latest-slh-campaign/",[1734],{"nodeType":411,"value":1735,"marks":1736,"data":1737},"AiTM phishing campaigns",[],{},{"nodeType":411,"value":1739,"marks":1740,"data":1741}," targeting Okta and Entra SSO, the phishing page was operated by a human in real time and delivered over a voice call — not email.",[],{},{"nodeType":1042,"data":1743,"content":1744},{},[1745],{"nodeType":407,"data":1746,"content":1747},{},[1748,1751,1758],{"nodeType":411,"value":1705,"marks":1749,"data":1750},[],{},{"nodeType":416,"data":1752,"content":1753},{"uri":1507},[1754],{"nodeType":411,"value":1755,"marks":1756,"data":1757},"APT29 deployed ConsentFix",[],{},{"nodeType":411,"value":1759,"marks":1760,"data":1761}," across dozens of compromised websites, the entire attack chain was browser-native, abusing a legitimate Microsoft OAuth flow to bypass MFA without proxying a single credential.",[],{},{"nodeType":1042,"data":1763,"content":1764},{},[1765],{"nodeType":407,"data":1766,"content":1767},{},[1768,1772,1780],{"nodeType":411,"value":1769,"marks":1770,"data":1771},"The ",[],{},{"nodeType":416,"data":1773,"content":1775},{"uri":1774},"https://pushsecurity.com/blog/identity-attacks-in-the-wild/#id-snowflake-june-2024",[1776],{"nodeType":411,"value":1777,"marks":1778,"data":1779},"Snowflake breach",[],{},{"nodeType":411,"value":1781,"marks":1782,"data":1783}," — arguably the most consequential credential-based campaign of the past several years — saw 165 organizations breached using credentials that had been sitting in infostealer dumps for years, replayed against Snowflake tenants that lacked mandatory MFA. The attack surface wasn't Snowflake's application logic; it was the identity hygiene gap that every organization carries across hundreds of apps.",[],{},{"nodeType":407,"data":1785,"content":1786},{},[1787],{"nodeType":411,"value":1788,"marks":1789,"data":1790},"And that’s just the big picture. Every month we’re tracking new public breaches involving browser and identity TTPs — which again, are just the tip of the iceberg when you consider that many breaches are settled quietly without hitting the headlines. ",[],{},{"nodeType":407,"data":1792,"content":1793},{},[1794,1798,1803],{"nodeType":411,"value":1795,"marks":1796,"data":1797},"One of the key drivers here is the shrinking time-to-exploit. CrowdStrike's average e-crime breakout time is down to ",[],{},{"nodeType":411,"value":1799,"marks":1800,"data":1802},"29 minutes",[1801],{"type":457},{},{"nodeType":411,"value":1804,"marks":1805,"data":1806},", with the fastest recorded at 27 seconds. When attackers can move from initial access to data exfiltration within minutes, the window for post-compromise detection collapses to near zero. The best chance of stopping the attack is at the point of initial access before the identity is compromised.",[],{},{"nodeType":446,"data":1808,"content":1809},{},[],{"nodeType":450,"data":1811,"content":1812},{},[1813,1818,1825,1830,1836],{"nodeType":411,"value":1814,"marks":1815,"data":1817},"Sidenote: why we're looking at attacks ",[1816],{"type":457},{},{"nodeType":411,"value":1819,"marks":1820,"data":1824},"in",[1821,1823],{"type":1822},"italic",{"type":457},{},{"nodeType":411,"value":1826,"marks":1827,"data":1829}," the browser, not ",[1828],{"type":457},{},{"nodeType":411,"value":1831,"marks":1832,"data":1835},"on",[1833,1834],{"type":1822},{"type":457},{},{"nodeType":411,"value":1837,"marks":1838,"data":1840}," the browser",[1839],{"type":457},{},{"nodeType":407,"data":1842,"content":1843},{},[1844,1848,1856],{"nodeType":411,"value":1845,"marks":1846,"data":1847},"Calling this a \"browser attacks\" matrix needs clarification. We're not talking about browser exploits — RCE vulnerabilities, sandbox escapes, memory corruption bugs. Those attacks target the browser itself, they're extraordinarily expensive to develop, and they're increasingly rare. Browser zero-days hit a ",[],{},{"nodeType":416,"data":1849,"content":1851},{"uri":1850},"https://cloud.google.com/blog/topics/threat-intelligence/2025-zero-day-review",[1852],{"nodeType":411,"value":1853,"marks":1854,"data":1855},"historic low of 9%",[],{},{"nodeType":411,"value":1857,"marks":1858,"data":1859}," of all zero-days reported to Google, and a Chrome RCE commands a $250,000 bug bounty.",[],{},{"nodeType":407,"data":1861,"content":1862},{},[1863],{"nodeType":411,"value":1864,"marks":1865,"data":1866},"In comparison, a one-year phishing kit rental costs $1,000. A bulk stolen credential list costs $15. An initial-access-broker-provided IdP admin account costs $3,000. When it costs orders of magnitude less to exploit the person using the browser than to exploit the browser itself, attackers will take the cheaper option every time.",[],{},{"nodeType":407,"data":1868,"content":1869},{},[1870],{"nodeType":411,"value":1871,"marks":1872,"data":1873},"It's worth heading off the obvious counterargument: won't AI-assisted vulnerability discovery eventually make browser exploits cheaper? Perhaps — but it will simultaneously make them easier for browser vendors to find and patch, and vendors like Google and Microsoft have the engineering capacity and financial incentive to scale AI-driven remediation far faster than attackers can scale exploit development.",[],{},{"nodeType":446,"data":1875,"content":1876},{},[],{"nodeType":450,"data":1878,"content":1879},{},[1880],{"nodeType":411,"value":1881,"marks":1882,"data":1884},"What hasn't changed",[1883],{"type":457},{},{"nodeType":407,"data":1886,"content":1887},{},[1888,1892,1900],{"nodeType":411,"value":1889,"marks":1890,"data":1891},"The matrix remains open-source, community-maintained, and available on ",[],{},{"nodeType":416,"data":1893,"content":1895},{"uri":1894},"https://github.com/pushsecurity/saas-attacks",[1896],{"nodeType":411,"value":1897,"marks":1898,"data":1899},"GitHub",[],{},{"nodeType":411,"value":1901,"marks":1902,"data":1903},". The goal is the same as it was in 2023: to give offensive and defensive security teams a shared reference point for the techniques that matter most.",[],{},{"nodeType":407,"data":1905,"content":1906},{},[1907],{"nodeType":411,"value":1908,"marks":1909,"data":1910},"We built it because there was a gap in how the industry talked about these techniques, and that gap still exists — MITRE ATT&CK remains essential for endpoint and network TTPs, but the browser-based, identity-first techniques behind most modern breaches are still underrepresented in traditional frameworks.",[],{},{"nodeType":407,"data":1912,"content":1913},{},[1914],{"nodeType":411,"value":1915,"marks":1916,"data":1917},"We continue to maintain the matrix with input from red teams, detection engineers, and threat researchers across the community. Some of the most valuable additions over the past two years have come from practitioners who encountered a technique on an engagement or in an investigation and contributed it back to the repository.",[],{},{"nodeType":407,"data":1919,"content":1920},{},[1921,1925,1932],{"nodeType":411,"value":1922,"marks":1923,"data":1924},"If you're an offensive security professional using these techniques on engagements, or a defender building detections against them, we want to hear from you. Submit a PR, open a discussion, or flag a technique we've missed on ",[],{},{"nodeType":416,"data":1926,"content":1928},{"uri":1927},"https://github.com/pushsecurity/browser-identity-attacks-matrix",[1929],{"nodeType":411,"value":1897,"marks":1930,"data":1931},[],{},{"nodeType":411,"value":1933,"marks":1934,"data":1935},".",[],{},{"nodeType":446,"data":1937,"content":1938},{},[],{"nodeType":450,"data":1940,"content":1941},{},[1942],{"nodeType":411,"value":1943,"marks":1944,"data":1946},"Looking ahead",[1945],{"type":457},{},{"nodeType":407,"data":1948,"content":1949},{},[1950],{"nodeType":411,"value":1951,"marks":1952,"data":1953},"The pace of attacker innovation in browser-based initial access techniques over the past 18 months has been unlike anything we've tracked before — technique after technique moving from research curiosity to industrialized criminal tooling within months, not years.",[],{},{"nodeType":1038,"data":1955,"content":1956},{},[1957,1967,1977],{"nodeType":1042,"data":1958,"content":1959},{},[1960],{"nodeType":407,"data":1961,"content":1962},{},[1963],{"nodeType":411,"value":1964,"marks":1965,"data":1966},"AiTM platforms are adding authorization-based attack options alongside their credential-harvesting capabilities.",[],{},{"nodeType":1042,"data":1968,"content":1969},{},[1970],{"nodeType":407,"data":1971,"content":1972},{},[1973],{"nodeType":411,"value":1974,"marks":1975,"data":1976},"ClickFix has spawned fully browser-native variants.",[],{},{"nodeType":1042,"data":1978,"content":1979},{},[1980],{"nodeType":407,"data":1981,"content":1982},{},[1983],{"nodeType":411,"value":1984,"marks":1985,"data":1986},"AI is lowering the cost of producing convincing social engineering and phishing infrastructure at scale.",[],{},{"nodeType":407,"data":1988,"content":1989},{},[1990],{"nodeType":411,"value":1991,"marks":1992,"data":1993},"We don't see any of this slowing down, and that's exactly why thinking about these attacks as a browser problem instead of siloing them across email, endpoint, network, and cloud categories, each with a partial view of the picture (and still missing the whole when combined).",[],{},{"nodeType":407,"data":1995,"content":1996},{},[1997,2001,2008],{"nodeType":411,"value":1998,"marks":1999,"data":2000},"The Browser & Identity Attacks Matrix is our contribution to keeping that shared understanding current. You can ",[],{},{"nodeType":416,"data":2002,"content":2003},{"uri":61},[2004],{"nodeType":411,"value":2005,"marks":2006,"data":2007},"explore the matrix here",[],{},{"nodeType":411,"value":1933,"marks":2009,"data":2010},[],{},{"nodeType":407,"data":2012,"content":2013},{},[2014,2018,2026],{"nodeType":411,"value":2015,"marks":2016,"data":2017},"You can also read our recent ",[],{},{"nodeType":416,"data":2019,"content":2021},{"uri":2020},"https://pushsecurity.com/thank-you/browser-attacks-report",[2022],{"nodeType":411,"value":2023,"marks":2024,"data":2025},"browser attack techniques report",[],{},{"nodeType":411,"value":2027,"marks":2028,"data":2029}," for more information.",[],{},{"nodeType":431,"data":2031,"content":2035},{"target":2032},{"sys":2033},{"id":2034,"type":436,"linkType":437},"1hx6sxpyEzxn4F4jc1RGQi",[],{"nodeType":446,"data":2037,"content":2038},{},[],{"nodeType":407,"data":2040,"content":2041},{},[2042],{"nodeType":411,"value":2043,"marks":2044,"data":2045},"Push Security is the most powerful AI-native security tool in the browser. Think EDR, but for the browser — high-fidelity telemetry and real-time control across every session, on every device, with no browser migration required. Security teams use Push to detect and stop advanced browser-based attacks like AiTM phishing, ClickFix, and session hijacking; gain visibility and control over AI tool usage across their workforce; harden identities by surfacing credential reuse, SSO gaps, and shadow IT; and support data loss and insider investigations with browser-layer telemetry that other tools can't see.",[],{},{"nodeType":407,"data":2047,"content":2048},{},[2049,2053,2061],{"nodeType":411,"value":2050,"marks":2051,"data":2052},"Book a ",[],{},{"nodeType":416,"data":2054,"content":2056},{"uri":2055},"https://pushsecurity.com/demo",[2057],{"nodeType":411,"value":2058,"marks":2059,"data":2060},"live demo",[],{},{"nodeType":411,"value":2062,"marks":2063,"data":2064}," to learn more.",[],{},"Introducing the Browser & Identity Attacks Matrix","We're re-releasing the SaaS attack matrix as the Browser & Identity Attacks Matrix. Here's why we've decided to make the change and what it means.","2026-05-08T00:00:00.000Z","introducing-the-browser-and-identity-attacks-matrix",{"items":2070},[2071,2075],{"sys":2072,"name":2074},{"id":2073},"6A5RXS31ZQx3PwryGb1IMy","Browser-based attacks",{"sys":2076,"name":2078},{"id":2077},"4ksQNCFeBf8H4QIORqpRLw","Detection & response",{"items":2080},[2081],{"fullName":2082,"firstName":2083,"jobTitle":2084,"profilePicture":2085},"Dan Green","Dan","Threat Research",{"url":2086},"https://images.ctfassets.net/y1cdw1ablpvd/7jik1VhFgA3kgzXBXTm2Vw/fcd8c171da644903d0827eafcfbcaad0/Dan_Headshot_2025.png",{"__typename":1214,"sys":2088,"content":2090,"title":2881,"synopsis":2882,"hashTags":62,"publishedDate":2883,"slug":2884,"tagsCollection":2885,"authorsCollection":2891},{"id":2089},"Gcg7PGuICrlRcqq1QFXxH",{"json":2091},{"nodeType":403,"data":2092,"content":2093},{},[2094,2101,2108,2139,2146,2152,2158,2170,2173,2181,2197,2204,2210,2217,2224,2230,2233,2241,2248,2254,2260,2267,2274,2292,2298,2301,2309,2327,2333,2340,2343,2351,2358,2365,2371,2377,2421,2428,2431,2439,2446,2453,2496,2503,2534,2541,2584,2591,2594,2602,2621,2628,2636,2651,2658,2677,2684,2687,2693,2699,2715,2718,2726,2745,2752,2875],{"nodeType":407,"data":2095,"content":2096},{},[2097],{"nodeType":411,"value":2098,"marks":2099,"data":2100},"Shared conversations on AI chatbot platforms have become the latest delivery mechanism for malware campaigns targeting macOS and Windows users. Attackers create content on platforms like ChatGPT and Claude that appears to offer installation guidance or service updates, then drive traffic to it via search engine results in the form of malvertising and SEO poisoning.  ",[],{},{"nodeType":407,"data":2102,"content":2103},{},[2104],{"nodeType":411,"value":2105,"marks":2106,"data":2107},"The content lives on chatgpt.com or claude.ai — domains that users and security tools trust implicitly — so the attack bypasses URL reputation checks before the victim even reaches the malicious payload.",[],{},{"nodeType":407,"data":2109,"content":2110},{},[2111,2115,2123,2127,2135],{"nodeType":411,"value":2112,"marks":2113,"data":2114},"Several variants of this technique have been ",[],{},{"nodeType":416,"data":2116,"content":2118},{"uri":2117},"https://www.bleepingcomputer.com/news/security/hackers-abuse-google-ads-claudeai-chats-to-push-mac-malware/",[2119],{"nodeType":411,"value":2120,"marks":2121,"data":2122},"reported over the past few months",[],{},{"nodeType":411,"value":2124,"marks":2125,"data":2126},". The earliest examples used shared Claude.ai conversations disguised as installation guides — complete with fake \"Apple Support\" attribution — that walked users through opening a terminal and pasting a curl command that downloaded and executed an infostealer. ",[],{},{"nodeType":416,"data":2128,"content":2130},{"uri":2129},"https://www.kaspersky.com/blog/share-chatgpt-chat-clickfix-macos-amos-infostealer/54928/",[2131],{"nodeType":411,"value":2132,"marks":2133,"data":2134},"Kaspersky documented a parallel campaign",[],{},{"nodeType":411,"value":2136,"marks":2137,"data":2138}," using shared ChatGPT conversations to deliver the AMOS (Atomic macOS Stealer) via the same paste-this-command social engineering pattern. ",[],{},{"nodeType":407,"data":2140,"content":2141},{},[2142],{"nodeType":411,"value":2143,"marks":2144,"data":2145},"Push has detected a new variant that goes beyond the previously reported technique of embedding terminal commands in shared conversations: the attacker has used ChatGPT's code rendering feature to build a fully designed fake page that mimics a ChatGPT service disruption, redirecting victims to a convincing clone of ChatGPT's download page that delivers a malicious executable. ",[],{},{"nodeType":431,"data":2147,"content":2151},{"target":2148},{"sys":2149},{"id":2150,"type":436,"linkType":437},"5lz9zt223pecGvdaqdvSTQ",[],{"nodeType":431,"data":2153,"content":2157},{"target":2154},{"sys":2155},{"id":2156,"type":436,"linkType":437},"51GomAj3VOjnbmgd1DWYu0",[],{"nodeType":407,"data":2159,"content":2160},{},[2161,2166],{"nodeType":411,"value":2162,"marks":2163,"data":2165},"This is a live campaign which is still generating detections across our customer base at the time of writing. ",[2164],{"type":457},{},{"nodeType":411,"value":2167,"marks":2168,"data":2169},"Push customers are already protected and do not need to take further action. The malicious page URLs can be found at the end of this report but are not exhaustive and are liable to change. ",[],{},{"nodeType":446,"data":2171,"content":2172},{},[],{"nodeType":450,"data":2174,"content":2175},{},[2176],{"nodeType":411,"value":2177,"marks":2178,"data":2180},"A fake page, not a fake conversation",[2179],{"type":457},{},{"nodeType":407,"data":2182,"content":2183},{},[2184,2188,2193],{"nodeType":411,"value":2185,"marks":2186,"data":2187},"Previously reported variants relied on shared ",[],{},{"nodeType":411,"value":2189,"marks":2190,"data":2192},"conversations",[2191],{"type":1822},{},{"nodeType":411,"value":2194,"marks":2195,"data":2196}," — the attacker created a chat that contained step-by-step instructions for the victim to follow, typically involving pasting a command into their terminal. The social engineering was conversational: the \"AI assistant\" appeared to be helpfully guiding the user through an installation process.",[],{},{"nodeType":407,"data":2198,"content":2199},{},[2200],{"nodeType":411,"value":2201,"marks":2202,"data":2203},"But now, rather than a shared conversation, the attacker has used ChatGPT's code rendering feature to create a fully designed, self-contained web page hosted at a chatgpt.com/s/ URL. It renders as what appears to be a ChatGPT service disruption notice:",[],{},{"nodeType":431,"data":2205,"content":2209},{"target":2206},{"sys":2207},{"id":2208,"type":436,"linkType":437},"1O9gyQab81SnbxhQp2aa5Z",[],{"nodeType":407,"data":2211,"content":2212},{},[2213],{"nodeType":411,"value":2214,"marks":2215,"data":2216},"A professional-looking error message reads: \"We're experiencing high traffic right now. Our website is temporarily unavailable due to a large number of users. Download our desktop app to continue.\" A prominent download button sits below.",[],{},{"nodeType":407,"data":2218,"content":2219},{},[2220],{"nodeType":411,"value":2221,"marks":2222,"data":2223},"The \"Show code\" toggle at the top of the page reveals what's actually happening — the entire thing is custom HTML and CSS, authored to mimic a ChatGPT system notice, rendered using ChatGPT's code output feature. A web page inside a web page, hosted on a domain that every URL reputation system in the world considers safe.",[],{},{"nodeType":431,"data":2225,"content":2229},{"target":2226},{"sys":2227},{"id":2228,"type":436,"linkType":437},"4kQTfxB3aVH9W9BeYOuljP",[],{"nodeType":446,"data":2231,"content":2232},{},[],{"nodeType":450,"data":2234,"content":2235},{},[2236],{"nodeType":411,"value":2237,"marks":2238,"data":2240},"The download page",[2239],{"type":457},{},{"nodeType":407,"data":2242,"content":2243},{},[2244],{"nodeType":411,"value":2245,"marks":2246,"data":2247},"Clicking the download button redirects the user to openew[.]app, which presents a convincing clone of ChatGPT's official desktop application download page — complete with OpenAI branding, macOS and Windows download buttons, a Chrome extension link, and a mobile download section.",[],{},{"nodeType":431,"data":2249,"content":2253},{"target":2250},{"sys":2251},{"id":2252,"type":436,"linkType":437},"4MdFc4OB37ZihTGx506QJ6",[],{"nodeType":431,"data":2255,"content":2259},{"target":2256},{"sys":2257},{"id":2258,"type":436,"linkType":437},"LaPUy0zpIeY8s4PF2wkat",[],{"nodeType":407,"data":2261,"content":2262},{},[2263],{"nodeType":411,"value":2264,"marks":2265,"data":2266},"The site also displays differently depending on who visits it. When Push researchers examined the URL via URLScan, the scanner was redirected to a different page entirely — a generic AR/VR company website with no obvious connection to ChatGPT. ",[],{},{"nodeType":407,"data":2268,"content":2269},{},[2270],{"nodeType":411,"value":2271,"marks":2272,"data":2273},"Real users in a browser see the fake download page; automated scanners and bots see something benign. This kind of conditional rendering is a well-established evasion technique in the malvertising ecosystem, and it makes the malicious infrastructure harder for security teams and threat intelligence services to identify and analyze.",[],{},{"nodeType":407,"data":2275,"content":2276},{},[2277,2281,2289],{"nodeType":411,"value":2278,"marks":2279,"data":2280},"The downloaded executable poses as \"ChatGPT for Desktop\" and is ",[],{},{"nodeType":416,"data":2282,"content":2284},{"uri":2283},"https://www.virustotal.com/gui/file/de8c50e8ccd240ef9d10ec26c26eeb37a4d1cad7c1e0edf3bb6e5689ec2dde78",[2285],{"nodeType":411,"value":2286,"marks":2287,"data":2288},"flagged on VirusTotal",[],{},{"nodeType":411,"value":1933,"marks":2290,"data":2291},[],{},{"nodeType":431,"data":2293,"content":2297},{"target":2294},{"sys":2295},{"id":2296,"type":436,"linkType":437},"3FSbwoFJYQrcyo9uMsQIWI",[],{"nodeType":446,"data":2299,"content":2300},{},[],{"nodeType":450,"data":2302,"content":2303},{},[2304],{"nodeType":411,"value":2305,"marks":2306,"data":2308},"The Claude variant: same campaign, different platform",[2307],{"type":457},{},{"nodeType":407,"data":2310,"content":2311},{},[2312,2316,2323],{"nodeType":411,"value":2313,"marks":2314,"data":2315},"Alongside the ChatGPT rendered-page variant, Push has also detected the previously reported style of attack using shared Claude.ai conversations. These follow the pattern documented by ",[],{},{"nodeType":416,"data":2317,"content":2318},{"uri":2117},[2319],{"nodeType":411,"value":2320,"marks":2321,"data":2322},"BleepingComputer",[],{},{"nodeType":411,"value":2324,"marks":2325,"data":2326},": a shared chat disguised as a \"Claude Code on Mac\" installation guide, attributed to \"Apple Support,\" containing a curl command that downloads and executes malware.",[],{},{"nodeType":431,"data":2328,"content":2332},{"target":2329},{"sys":2330},{"id":2331,"type":436,"linkType":437},"5sWayuTsVdiLSLoS4sv2Vc",[],{"nodeType":407,"data":2334,"content":2335},{},[2336],{"nodeType":411,"value":2337,"marks":2338,"data":2339},"The fact that both the ChatGPT and Claude variants are appearing in Push customer environments suggests a campaign — or at least a shared playbook — that is actively experimenting with different platforms and different social engineering approaches to find what converts best.",[],{},{"nodeType":446,"data":2341,"content":2342},{},[],{"nodeType":450,"data":2344,"content":2345},{},[2346],{"nodeType":411,"value":2347,"marks":2348,"data":2350},"Malvertising remains one of the top phishing delivery channels",[2349],{"type":457},{},{"nodeType":407,"data":2352,"content":2353},{},[2354],{"nodeType":411,"value":2355,"marks":2356,"data":2357},"Push has detected this variant across multiple customer environments, with users arriving at these shared chat URLs after searching for terms including \"chatgpt,\" \"chatgpt free,\" \"chat gpt,\" and common typos like \"chatgo,\" \"chatgot,\" and \"cvhatgpt.\" ",[],{},{"nodeType":407,"data":2359,"content":2360},{},[2361],{"nodeType":411,"value":2362,"marks":2363,"data":2364},"You can see an example of this below: it's incredibly convincing, and uses the real ChatGPT domain — so even users that are paying attention are liable to fall for it. ",[],{},{"nodeType":431,"data":2366,"content":2370},{"target":2367},{"sys":2368},{"id":2369,"type":436,"linkType":437},"1GYWOyHpZT1rdTm6IGOKu8",[],{"nodeType":431,"data":2372,"content":2376},{"target":2373},{"sys":2374},{"id":2375,"type":436,"linkType":437},"4HpFJRAZH2lbygaEk2xOnN",[],{"nodeType":407,"data":2378,"content":2379},{},[2380,2384,2392,2396,2404,2408,2417],{"nodeType":411,"value":2381,"marks":2382,"data":2383},"This fits a pattern Push has tracked extensively. ",[],{},{"nodeType":416,"data":2385,"content":2387},{"uri":2386},"https://pushsecurity.com/blog/verizon-dbir-2026-review/",[2388],{"nodeType":411,"value":2389,"marks":2390,"data":2391},"Search-based delivery is now the dominant channel for malware distribution",[],{},{"nodeType":411,"value":2393,"marks":2394,"data":2395}," — our own data shows that ClickFix attacks are reached via search results rather than email in 4 of 5 cases, and Push's own research into ",[],{},{"nodeType":416,"data":2397,"content":2399},{"uri":2398},"https://pushsecurity.com/blog/analysing-a-sophisticated-google-malvertising-attack/",[2400],{"nodeType":411,"value":2401,"marks":2402,"data":2403},"malvertising campaigns impersonating brands like TradingView",[],{},{"nodeType":411,"value":2405,"marks":2406,"data":2407}," and ",[],{},{"nodeType":416,"data":2409,"content":2411},{"uri":2410},"https://pushsecurity.com/blog/google-search-malvertising-campaign-continues-now-impersonating-ahrefs/",[2412],{"nodeType":411,"value":2413,"marks":2414,"data":2416},"Ahrefs",[2415],{"type":424},{},{"nodeType":411,"value":2418,"marks":2419,"data":2420}," has demonstrated how effectively search ads can funnel victims to malicious pages. ",[],{},{"nodeType":407,"data":2422,"content":2423},{},[2424],{"nodeType":411,"value":2425,"marks":2426,"data":2427},"The shared-chat technique adds a new dimension: the destination URL itself is genuine (chatgpt.com, claude.ai), which means even a cautious user who checks the URL before clicking will see nothing suspicious.",[],{},{"nodeType":446,"data":2429,"content":2430},{},[],{"nodeType":450,"data":2432,"content":2433},{},[2434],{"nodeType":411,"value":2435,"marks":2436,"data":2438},"Legitimate platform abuse is everywhere",[2437],{"type":457},{},{"nodeType":407,"data":2440,"content":2441},{},[2442],{"nodeType":411,"value":2443,"marks":2444,"data":2445},"This is one example of a much broader pattern that has become one of the defining characteristics of the 2026 threat landscape: attackers systematically abusing legitimate platforms as attack infrastructure. The scale and variety of this abuse in recent months alone is striking, and it spans every stage of the phishing chain.",[],{},{"nodeType":460,"data":2447,"content":2448},{},[2449],{"nodeType":411,"value":2450,"marks":2451,"data":2452},"Legit platform abuse for delivery",[],{},{"nodeType":407,"data":2454,"content":2455},{},[2456,2460,2468,2472,2480,2484,2492],{"nodeType":411,"value":2457,"marks":2458,"data":2459},"On the delivery side, attackers have been ",[],{},{"nodeType":416,"data":2461,"content":2463},{"uri":2462},"https://www.bleepingcomputer.com/news/security/amazon-ses-increasingly-abused-in-phishing-to-evade-detection/",[2464],{"nodeType":411,"value":2465,"marks":2466,"data":2467},"weaponizing stolen AWS credentials to send phishing through Amazon SES",[],{},{"nodeType":411,"value":2469,"marks":2470,"data":2471}," that passes SPF, DKIM, and DMARC validation because SES is a legitimate Amazon service. A Vietnamese operation dubbed ",[],{},{"nodeType":416,"data":2473,"content":2475},{"uri":2474},"https://thehackernews.com/2026/05/30000-facebook-accounts-hacked-via.html",[2476],{"nodeType":411,"value":2477,"marks":2478,"data":2479},"AccountDumpling used Google AppSheet's built-in email capability",[],{},{"nodeType":411,"value":2481,"marks":2482,"data":2483}," as a phishing relay to harvest 30,000 Facebook credentials. ",[],{},{"nodeType":416,"data":2485,"content":2487},{"uri":2486},"https://techcrunch.com/2026/05/21/scammers-are-abusing-an-internal-microsoft-account-to-send-spam/",[2488],{"nodeType":411,"value":2489,"marks":2490,"data":2491},"Scammers exploited Microsoft's own internal notification pipeline",[],{},{"nodeType":411,"value":2493,"marks":2494,"data":2495}," — sending phishing from the same msonlineservicesteam@microsoftonline.com address that delivers legitimate 2FA codes — with Spamhaus confirming months of ongoing abuse.",[],{},{"nodeType":460,"data":2497,"content":2498},{},[2499],{"nodeType":411,"value":2500,"marks":2501,"data":2502},"Legit platform abuse for hosting",[],{},{"nodeType":407,"data":2504,"content":2505},{},[2506,2510,2518,2522,2530],{"nodeType":411,"value":2507,"marks":2508,"data":2509},"For hosting, the platforms being abused read like a who's who of modern web infrastructure. ",[],{},{"nodeType":416,"data":2511,"content":2513},{"uri":2512},"https://www.securityweek.com/over-500-organizations-hit-in-years-long-phishing-campaign/",[2514],{"nodeType":411,"value":2515,"marks":2516,"data":2517},"Operation HookedWing ran for four years",[],{},{"nodeType":411,"value":2519,"marks":2520,"data":2521}," on GitHub Pages and Vercel, compromising 500+ organizations across more than 100 GitHub Pages domains before anyone documented it publicly. Cofense has separately ",[],{},{"nodeType":416,"data":2523,"content":2525},{"uri":2524},"https://cofense.com/blog/steal-smarter-not-harder-malicious-use-of-vercel-for-credential-phishing/",[2526],{"nodeType":411,"value":2527,"marks":2528,"data":2529},"documented the growing abuse of Vercel",[],{},{"nodeType":411,"value":2531,"marks":2532,"data":2533}," for credential phishing hosting. Pixm's Q1 2026 phishing report tracked over 100 unique Azure Blob Storage subdomain variants hosting phishing content that carried Microsoft's own domain reputation, alongside abuse of Cloudflare CDN, Cloudflare Workers, Cloudflare R2, Backblaze B2, and Supabase. ",[],{},{"nodeType":460,"data":2535,"content":2536},{},[2537],{"nodeType":411,"value":2538,"marks":2539,"data":2540},"Abuse of compromised websites that are otherwise legit",[],{},{"nodeType":407,"data":2542,"content":2543},{},[2544,2548,2556,2560,2568,2572,2580],{"nodeType":411,"value":2545,"marks":2546,"data":2547},"Compromised legitimate sites are also being repurposed at scale. A mass exploitation of a ",[],{},{"nodeType":416,"data":2549,"content":2551},{"uri":2550},"https://www.bleepingcomputer.com/news/security/ghost-cms-sql-injection-flaw-exploited-in-large-scale-clickfix-campaign/",[2552],{"nodeType":411,"value":2553,"marks":2554,"data":2555},"Ghost CMS vulnerability planted ClickFix pages across 700+ websites",[],{},{"nodeType":411,"value":2557,"marks":2558,"data":2559}," including Harvard, Oxford, and DuckDuckGo subdomains. Microsoft recently documented a campaign where ",[],{},{"nodeType":416,"data":2561,"content":2563},{"uri":2562},"https://www.microsoft.com/en-us/security/blog/2026/05/26/poisoned-search-results-gpu-mining-cryptojacking-campaign-abusing-screenconnect-microsoft-net-utilities/",[2564],{"nodeType":411,"value":2565,"marks":2566,"data":2567},"SEO poisoning was combined with AI chatbot recommendation manipulation",[],{},{"nodeType":411,"value":2569,"marks":2570,"data":2571}," to deliver GPU mining malware — extending the poisoning from traditional search results into AI-generated software recommendations. And ",[],{},{"nodeType":416,"data":2573,"content":2575},{"uri":2574},"https://www.helpnetsecurity.com/2026/05/27/deno-rat-malware-fake-chatgpt-claude-installers/",[2576],{"nodeType":411,"value":2577,"marks":2578,"data":2579},"fake ChatGPT and Claude installers on GitHub and SourceForge",[],{},{"nodeType":411,"value":2581,"marks":2582,"data":2583}," have been delivering the DinDoor backdoor and a Deno-based RAT via repositories that mimic legitimate developer tool distributions.",[],{},{"nodeType":407,"data":2585,"content":2586},{},[2587],{"nodeType":411,"value":2588,"marks":2589,"data":2590},"The structural problem is that every one of these platforms is genuinely legitimate, and the security controls that evaluate them — domain reputation, email authentication, URL categorization — confirm them as trusted because they are trusted. This attack extends this pattern into new territory by weaponizing the content-sharing features of AI chatbot platforms specifically, but the underlying principles are the same. ",[],{},{"nodeType":446,"data":2592,"content":2593},{},[],{"nodeType":450,"data":2595,"content":2596},{},[2597],{"nodeType":411,"value":2598,"marks":2599,"data":2601},"Impact analysis",[2600],{"type":457},{},{"nodeType":407,"data":2603,"content":2604},{},[2605,2609,2617],{"nodeType":411,"value":2606,"marks":2607,"data":2608},"Shared-chat malware delivery exploits a structural property of AI platforms that traditional security controls aren't designed to handle. Domain reputation, URL categorization, and safe browsing databases all treat chatgpt.com and claude.ai as trusted — because they are. Using these trusted pages to link off to further convincing-looking pages hosting malware allows the attacker to run campaigns that blend in, as well as rotate the phishing delivery pages later in the chain should they ever be flagged, allowing the campaign to continue without interruption (a well known ",[],{},{"nodeType":416,"data":2610,"content":2612},{"uri":2611},"https://phishing-techniques.pushsecurity.com/",[2613],{"nodeType":411,"value":2614,"marks":2615,"data":2616},"detection evasion technique",[],{},{"nodeType":411,"value":2618,"marks":2619,"data":2620},"). ",[],{},{"nodeType":407,"data":2622,"content":2623},{},[2624],{"nodeType":411,"value":2625,"marks":2626,"data":2627},"What makes the rendered-page variant particularly concerning is that it eliminates the most obvious red flag in the earlier attacks. The Claude.ai conversation variants required the victim to recognize that a shared chat instructing them to paste terminal commands might be suspicious — a tall order for many users, but at least the attack surface was visible. The rendered-page variant shows nothing that looks like an attack. It presents what appears to be a routine service disruption with a reasonable call to action: download the desktop app to continue using ChatGPT. ",[],{},{"nodeType":460,"data":2629,"content":2630},{},[2631],{"nodeType":411,"value":2632,"marks":2633,"data":2635},"How Push detected the attack",[2634],{"type":457},{},{"nodeType":407,"data":2637,"content":2638},{},[2639,2643,2647],{"nodeType":411,"value":2640,"marks":2641,"data":2642},"We've aligned our detection logic for this technique under the name ",[],{},{"nodeType":411,"value":786,"marks":2644,"data":2646},[2645],{"type":457},{},{"nodeType":411,"value":2648,"marks":2649,"data":2650}," — a technique-level detection that covers shared content abuse across LLM platforms, not tied to any single campaign or set of IOCs. ",[],{},{"nodeType":407,"data":2652,"content":2653},{},[2654],{"nodeType":411,"value":2655,"marks":2656,"data":2657},"Because Push sees the full context of how a user arrived at a page and what that page does once it renders, we can identify LLMShare attacks regardless of which AI platform is being abused or what social engineering wrapper the attacker has chosen. ",[],{},{"nodeType":407,"data":2659,"content":2660},{},[2661,2665,2673],{"nodeType":411,"value":2662,"marks":2663,"data":2664},"When we identified the initial instances of this campaign, we used our ",[],{},{"nodeType":416,"data":2666,"content":2668},{"uri":2667},"https://pushsecurity.com/blog/can-ai-replace-a-threat-researcher-what-we-learned-building-an-agentic-threat-hunting-pipeline/",[2669],{"nodeType":411,"value":2670,"marks":2671,"data":2672},"agentic threat hunting pipeline",[],{},{"nodeType":411,"value":2674,"marks":2675,"data":2676}," to hunt for additional examples across our customer telemetry, develop the LLMShare detection, and rapidly deploy it to customers. Push blocks users from interacting with the page before any malicious activity can occur. ",[],{},{"nodeType":407,"data":2678,"content":2679},{},[2680],{"nodeType":411,"value":2681,"marks":2682,"data":2683},"Push customers do not need to take any further action.",[],{},{"nodeType":446,"data":2685,"content":2686},{},[],{"nodeType":407,"data":2688,"content":2689},{},[2690],{"nodeType":411,"value":1086,"marks":2691,"data":2692},[],{},{"nodeType":407,"data":2694,"content":2695},{},[2696],{"nodeType":411,"value":1093,"marks":2697,"data":2698},[],{},{"nodeType":407,"data":2700,"content":2701},{},[2702,2705,2712],{"nodeType":411,"value":29,"marks":2703,"data":2704},[],{},{"nodeType":416,"data":2706,"content":2707},{"uri":1104},[2708],{"nodeType":411,"value":1107,"marks":2709,"data":2711},[2710],{"type":424},{},{"nodeType":411,"value":29,"marks":2713,"data":2714},[],{},{"nodeType":446,"data":2716,"content":2717},{},[],{"nodeType":450,"data":2719,"content":2720},{},[2721],{"nodeType":411,"value":2722,"marks":2723,"data":2725},"Indicators of compromise",[2724],{"type":457},{},{"nodeType":407,"data":2727,"content":2728},{},[2729,2733,2741],{"nodeType":411,"value":2730,"marks":2731,"data":2732},"As we always say, short-lived IoCs are of limited value when tackling modern phishing attacks due to the rate at which attackers are able to ",[],{},{"nodeType":416,"data":2734,"content":2736},{"uri":2735},"https://phishing-techniques.pushsecurity.com/techniques/domain-rotation-redirection/",[2737],{"nodeType":411,"value":2738,"marks":2739,"data":2740},"quickly spin up and rotate the sites used",[],{},{"nodeType":411,"value":2742,"marks":2743,"data":2744}," in the attack chain. IoC-based detections for campaigns like this are of limited value.",[],{},{"nodeType":407,"data":2746,"content":2747},{},[2748],{"nodeType":411,"value":2749,"marks":2750,"data":2751},"At the time of writing, the indicators observed were:",[],{},{"nodeType":2753,"data":2754,"content":2755},"table",{},[2756,2783,2807,2829,2852],{"nodeType":2757,"data":2758,"content":2759},"table-row",{},[2760,2772],{"nodeType":2761,"data":2762,"content":2763},"table-header-cell",{},[2764],{"nodeType":407,"data":2765,"content":2766},{},[2767],{"nodeType":411,"value":2768,"marks":2769,"data":2771},"Indicator",[2770],{"type":457},{},{"nodeType":2761,"data":2773,"content":2774},{},[2775],{"nodeType":407,"data":2776,"content":2777},{},[2778],{"nodeType":411,"value":2779,"marks":2780,"data":2782},"Type",[2781],{"type":457},{},{"nodeType":2757,"data":2784,"content":2785},{},[2786,2797],{"nodeType":2787,"data":2788,"content":2789},"table-cell",{},[2790],{"nodeType":407,"data":2791,"content":2792},{},[2793],{"nodeType":411,"value":2794,"marks":2795,"data":2796},"hxxps://claude[.]ai/share/8e6401b5-4849-46c4-a3cb-29e1c3c49131",[],{},{"nodeType":2787,"data":2798,"content":2799},{},[2800],{"nodeType":407,"data":2801,"content":2802},{},[2803],{"nodeType":411,"value":2804,"marks":2805,"data":2806},"URL",[],{},{"nodeType":2757,"data":2808,"content":2809},{},[2810,2820],{"nodeType":2787,"data":2811,"content":2812},{},[2813],{"nodeType":407,"data":2814,"content":2815},{},[2816],{"nodeType":411,"value":2817,"marks":2818,"data":2819},"hxxps://chatgpt[.]com/s/cb_6a0f1e6bbec88191aa7fede27163f08d",[],{},{"nodeType":2787,"data":2821,"content":2822},{},[2823],{"nodeType":407,"data":2824,"content":2825},{},[2826],{"nodeType":411,"value":2804,"marks":2827,"data":2828},[],{},{"nodeType":2757,"data":2830,"content":2831},{},[2832,2842],{"nodeType":2787,"data":2833,"content":2834},{},[2835],{"nodeType":407,"data":2836,"content":2837},{},[2838],{"nodeType":411,"value":2839,"marks":2840,"data":2841},"openew[.]app",[],{},{"nodeType":2787,"data":2843,"content":2844},{},[2845],{"nodeType":407,"data":2846,"content":2847},{},[2848],{"nodeType":411,"value":2849,"marks":2850,"data":2851},"Domain",[],{},{"nodeType":2757,"data":2853,"content":2854},{},[2855,2865],{"nodeType":2787,"data":2856,"content":2857},{},[2858],{"nodeType":407,"data":2859,"content":2860},{},[2861],{"nodeType":411,"value":2862,"marks":2863,"data":2864},"de8c50e8ccd240ef9d10ec26c26eeb37a4d1cad7c1e0edf3bb6e5689ec2dde78",[],{},{"nodeType":2787,"data":2866,"content":2867},{},[2868],{"nodeType":407,"data":2869,"content":2870},{},[2871],{"nodeType":411,"value":2872,"marks":2873,"data":2874},"SHA256",[],{},{"nodeType":407,"data":2876,"content":2877},{},[2878],{"nodeType":411,"value":29,"marks":2879,"data":2880},[],{},"LLMShare: how attackers are turning AI chatbot pages into malware delivery platforms","How attackers are using shared content features on AI chatbot platforms to deliver malware via pages hosted on legitimate domains, sent via malvertising.","2026-05-29T00:00:00.000Z","llmshare-malvertising-campaign",{"items":2886},[2887,2889],{"sys":2888,"name":2074},{"id":2073},{"sys":2890,"name":2078},{"id":2077},{"items":2892},[2893],{"fullName":2894,"firstName":2895,"jobTitle":2896,"profilePicture":2897},"Keanu Maharaj","Keanu","Senior Security Researcher",{"url":2898},"https://images.ctfassets.net/y1cdw1ablpvd/VCGOm62jiocjwngWTh32U/e9a30637b1c76bf988d2fec90f5b6c36/1689361049351_1.png",{"__typename":1214,"sys":2900,"content":2902,"title":3662,"synopsis":3663,"hashTags":62,"publishedDate":3664,"slug":3665,"tagsCollection":3666,"authorsCollection":3672},{"id":2901},"5RDOpmzJolwT1hk0fNIxzf",{"json":2903},{"nodeType":403,"data":2904,"content":2905},{},[2906,2925,2931,2938,2945,2948,2956,2975,2994,3001,3007,3014,3020,3027,3035,3042,3060,3091,3097,3103,3111,3118,3136,3166,3198,3205,3211,3219,3226,3238,3245,3286,3292,3333,3370,3376,3379,3387,3394,3400,3407,3414,3420,3427,3434,3462,3465,3473,3480,3488,3495,3502,3521,3528,3534,3541,3549,3556,3573,3580,3598,3601,3609,3616,3623,3630,3633,3639,3645],{"nodeType":407,"data":2907,"content":2908},{},[2909,2913,2921],{"nodeType":411,"value":2910,"marks":2911,"data":2912},"Back in 2024, we wrote about ",[],{},{"nodeType":416,"data":2914,"content":2916},{"uri":2915},"https://pushsecurity.com/blog/our-design-philosophy-detecting-what-matters/",[2917],{"nodeType":411,"value":2918,"marks":2919,"data":2920},"how the Pyramid of Pain shapes Push's detection philosophy",[],{},{"nodeType":411,"value":2922,"marks":2923,"data":2924}," — detections targeting indicators that are easy for attackers to change deliver diminishing returns, while detections targeting attacker techniques impose a cost that's hard to absorb. Two years on, every force that made IoC-based detection fragile has intensified.",[],{},{"nodeType":431,"data":2926,"content":2930},{"target":2927},{"sys":2928},{"id":2929,"type":436,"linkType":437},"1iuLYxwI8T1wDUIFSom0G0",[],{"nodeType":407,"data":2932,"content":2933},{},[2934],{"nodeType":411,"value":2935,"marks":2936,"data":2937},"AI hasn't introduced a new problem so much as it's compressed the timelines on an existing one — attackers can generate infrastructure, iterate on tooling, and industrialize newly discovered techniques faster than before. The bottom layers of the Pyramid are collapsing under the weight of machine-speed operations, and the middle layers are starting to buckle too.",[],{},{"nodeType":407,"data":2939,"content":2940},{},[2941],{"nodeType":411,"value":2942,"marks":2943,"data":2944},"These changes mean that technique-level detection is more important than ever. In this article, we’ll dig into how the Pyramid is changing, and what this means for our detection philosophy at Push (TL;DR — it reinforces the path we’re already on: building detections at the top of the Pyramid by harnessing browser visibility). ",[],{},{"nodeType":446,"data":2946,"content":2947},{},[],{"nodeType":450,"data":2949,"content":2950},{},[2951],{"nodeType":411,"value":2952,"marks":2953,"data":2955},"The bottom of the Pyramid was already crumbling",[2954],{"type":457},{},{"nodeType":407,"data":2957,"content":2958},{},[2959,2963,2971],{"nodeType":411,"value":2960,"marks":2961,"data":2962},"The case against indicator-based detection didn't need AI to be compelling. ",[],{},{"nodeType":416,"data":2964,"content":2966},{"uri":2965},"https://www.spamhaus.org/",[2967],{"nodeType":411,"value":2968,"marks":2969,"data":2970},"89% of phishing domains are active for fewer than two days",[],{},{"nodeType":411,"value":2972,"marks":2973,"data":2974},", with just 6.5% surviving past 15 days — by the time a domain makes it onto a blocklist, the campaign has moved on.",[],{},{"nodeType":407,"data":2976,"content":2977},{},[2978,2982,2990],{"nodeType":411,"value":2979,"marks":2980,"data":2981},"We've ",[],{},{"nodeType":416,"data":2983,"content":2985},{"uri":2984},"https://pushsecurity.com/blog/why-most-phishing-attacks-feel-like-a-zero-day/",[2986],{"nodeType":411,"value":2987,"marks":2988,"data":2989},"written before",[],{},{"nodeType":411,"value":2991,"marks":2992,"data":2993}," about how this makes every phishing attack effectively a zero-day for organizations relying on known-bad detection. The phishing kit's behavior — its page structure, script signatures, malicious payload mechanics — is the only detection target that outlasts a single campaign.",[],{},{"nodeType":407,"data":2995,"content":2996},{},[2997],{"nodeType":411,"value":2998,"marks":2999,"data":3000},"When we blogged about the Pyramid of Pain for modern attacks that happen predominantly over the internet, with minimal (or zero) endpoint contact, it first looked like this: ",[],{},{"nodeType":431,"data":3002,"content":3006},{"target":3003},{"sys":3004},{"id":3005,"type":436,"linkType":437},"2N04ycJ6RKGfHdX5X1TwU3",[],{"nodeType":407,"data":3008,"content":3009},{},[3010],{"nodeType":411,"value":3011,"marks":3012,"data":3013},"Now, it looks more like this:",[],{},{"nodeType":431,"data":3015,"content":3019},{"target":3016},{"sys":3017},{"id":3018,"type":436,"linkType":437},"mfhP4WToOQkrHnVkXU0tX",[],{"nodeType":407,"data":3021,"content":3022},{},[3023],{"nodeType":411,"value":3024,"marks":3025,"data":3026},"Let’s explore why. ",[],{},{"nodeType":460,"data":3028,"content":3029},{},[3030],{"nodeType":411,"value":3031,"marks":3032,"data":3034},"AI is accelerating phishing rotation and delivery",[3033],{"type":457},{},{"nodeType":407,"data":3036,"content":3037},{},[3038],{"nodeType":411,"value":3039,"marks":3040,"data":3041},"Attackers are harnessing AI at every stage, speeding up the process of creating, rotating, and replacing phishing infrastructure at every level, as well as capitalizing on AI adoption itself to enhance their lures. The operational signature is more domains, shorter lifespans, more variation, and fewer of the reuse patterns that blocklists depend on.",[],{},{"nodeType":407,"data":3043,"content":3044},{},[3045,3049,3056],{"nodeType":411,"value":3046,"marks":3047,"data":3048},"Attackers can ",[],{},{"nodeType":416,"data":3050,"content":3051},{"uri":2667},[3052],{"nodeType":411,"value":3053,"marks":3054,"data":3055},"vibe-code entire phishing pages in minutes",[],{},{"nodeType":411,"value":3057,"marks":3058,"data":3059}," — not just cloning legitimate login pages but vibe-cloning them, feeding an AI a screenshot and having it rebuild a convincing frontend with a completely unique backend. ",[],{},{"nodeType":407,"data":3061,"content":3062},{},[3063,3067,3075,3079,3087],{"nodeType":411,"value":3064,"marks":3065,"data":3066},"We've seen attackers clone free SaaS tools like background removers and PDF converters, then inject phishing components or ClickFix payloads into what looks like a functional utility. We’ve even seen attackers distributing malware using AI-generated pages shared using ",[],{},{"nodeType":416,"data":3068,"content":3069},{"uri":783},[3070],{"nodeType":411,"value":3071,"marks":3072,"data":3074},"LLM tool sharing functionality",[3073],{"type":424},{},{"nodeType":411,"value":3076,"marks":3077,"data":3078},", resulting in phishing delivery pages hosted on real claude.ai and chatgpt.com. And legitimate cloud platforms like ",[],{},{"nodeType":416,"data":3080,"content":3082},{"uri":3081},"https://www.huntress.com/blog/railway-paas-m365-token-replay-campaign",[3083],{"nodeType":411,"value":3084,"marks":3085,"data":3086},"Railway",[],{},{"nodeType":411,"value":3088,"marks":3089,"data":3090},", Cloudflare Workers, and Vercel host and dynamically rotate attack infrastructure, so the domains feeding into blocklists often belong to reputable services that can't simply be blocked. ",[],{},{"nodeType":431,"data":3092,"content":3096},{"target":3093},{"sys":3094},{"id":3095,"type":436,"linkType":437},"5yoLmqysyQazfzLITCUTfc",[],{"nodeType":431,"data":3098,"content":3102},{"target":3099},{"sys":3100},{"id":3101,"type":436,"linkType":437},"5XK5qZMQU19xlA8L2T5y0Z",[],{"nodeType":460,"data":3104,"content":3105},{},[3106],{"nodeType":411,"value":3107,"marks":3108,"data":3110},"The kit ecosystem is fragmenting faster than anyone can track",[3109],{"type":457},{},{"nodeType":407,"data":3112,"content":3113},{},[3114],{"nodeType":411,"value":3115,"marks":3116,"data":3117},"What we see across our install base is a huge and growing variation in phishing kits — new kits, derivative kits of known platforms, derivatives of those derivatives — appearing on a weekly basis.",[],{},{"nodeType":407,"data":3119,"content":3120},{},[3121,3125,3132],{"nodeType":411,"value":3122,"marks":3123,"data":3124},"As we reported in our ",[],{},{"nodeType":416,"data":3126,"content":3127},{"uri":2020},[3128],{"nodeType":411,"value":3129,"marks":3130,"data":3131},"Browser Attacks Report",[],{},{"nodeType":411,"value":3133,"marks":3134,"data":3135},", the most common AiTM kits we detected over the last year were Tycoon 2FA (59% of detections), followed by Sneaky 2FA, FlowerStorm, Evilginx (nominally a red team tool, but widely abused by attackers), NakedPages, Gabagool, and dozens more — but those established names are just the visible layer.",[],{},{"nodeType":407,"data":3137,"content":3138},{},[3139,3143,3151,3155,3162],{"nodeType":411,"value":3140,"marks":3141,"data":3142},"Code is forked, modified, and redeployed across kits in a pattern that ",[],{},{"nodeType":416,"data":3144,"content":3146},{"uri":3145},"https://blog.barracuda.com/2026/04/16/threat-spotlight-tycoon-2fa-scattered-everywhere",[3147],{"nodeType":411,"value":3148,"marks":3149,"data":3150},"resembles open-source development",[],{},{"nodeType":411,"value":3152,"marks":3153,"data":3154}," more than traditional criminal enterprise, and the rate at which new variants appear is accelerating. The ",[],{},{"nodeType":416,"data":3156,"content":3157},{"uri":1580},[3158],{"nodeType":411,"value":3159,"marks":3160,"data":3161},"Venom kit",[],{},{"nodeType":411,"value":3163,"marks":3164,"data":3165}," reuses Sneaky 2FA's AiTM infrastructure but carries different branding and adds device code phishing — whether it's the same developers, stolen code, or a deliberate fork is unclear.",[],{},{"nodeType":407,"data":3167,"content":3168},{},[3169,3173,3181,3185,3194],{"nodeType":411,"value":3170,"marks":3171,"data":3172},"Tycoon 2FA illustrates the scale of the evolution. The kit evolves continuously, addingnew capabilities, new evasion techniques, and hybridizing with other platforms. Even when Sekoia and Microsoft seized 330+ Tycoon domains in March 2026, the techniques it popularized were already embedded across competitors, and the slack was taken up by rival platforms within days. And in any case, Tycoon was back to ",[],{},{"nodeType":416,"data":3174,"content":3176},{"uri":3175},"https://www.crowdstrike.com/en-us/blog/tycoon2fa-phishing-as-a-service-platform-persists-following-takedown/",[3177],{"nodeType":411,"value":3178,"marks":3179,"data":3180},"normal levels of operation",[],{},{"nodeType":411,"value":3182,"marks":3183,"data":3184}," shortly after. It has also been observed ",[],{},{"nodeType":416,"data":3186,"content":3188},{"uri":3187},"https://www.okta.com/en-nl/blog/threat-intelligence/tycoon_2fa_phishing_actors_scatter/",[3189],{"nodeType":411,"value":3190,"marks":3191,"data":3193},"pivoting to add new device code phishing capabilities",[3192],{"type":424},{},{"nodeType":411,"value":3195,"marks":3196,"data":3197}," (more on that below). ",[],{},{"nodeType":407,"data":3199,"content":3200},{},[3201],{"nodeType":411,"value":3202,"marks":3203,"data":3204},"Tear one down and there are many more to take its place — and meanwhile the original is already evolving into something new.",[],{},{"nodeType":431,"data":3206,"content":3210},{"target":3207},{"sys":3208},{"id":3209,"type":436,"linkType":437},"3UDzUCCizPJhXp3SsoZuSK",[],{"nodeType":460,"data":3212,"content":3213},{},[3214],{"nodeType":411,"value":3215,"marks":3216,"data":3218},"New techniques are being industrialized faster than ever",[3217],{"type":457},{},{"nodeType":407,"data":3220,"content":3221},{},[3222],{"nodeType":411,"value":3223,"marks":3224,"data":3225},"As well as the fragmentation of existing kits, we’re seeing new techniques added at an accelerating rate. ",[],{},{"nodeType":407,"data":3227,"content":3228},{},[3229,3234],{"nodeType":411,"value":3230,"marks":3231,"data":3233},"Device code phishing",[3232],{"type":457},{},{"nodeType":411,"value":3235,"marks":3236,"data":3237}," is the clearest case study. From early nation state adoption in 2024, it took until 2026 for criminal adoption to really take off, but the take-up this year is unprecedented. The EvilTokens kit packaged device code phishing into a PhaaS offering with GPT-powered spear-phishing and adaptive landing pages, hitting 340+ organizations across five countries in March 2026. ",[],{},{"nodeType":407,"data":3239,"content":3240},{},[3241],{"nodeType":411,"value":3242,"marks":3243,"data":3244},"Now, device code functionality is now a core phish kit component. We’re tracking 18+ kits with device code phishing capabilities and a 37.5x increase in device code phishing detections this year alone, with the technique moving from state-sponsored exclusivity to something any PhaaS customer can rent.",[],{},{"nodeType":407,"data":3246,"content":3247},{},[3248,3252,3260,3264,3269,3273,3282],{"nodeType":411,"value":3249,"marks":3250,"data":3251},"Similarly, when we ",[],{},{"nodeType":416,"data":3253,"content":3255},{"uri":3254},"https://pushsecurity.com/blog/we-infiltrated-a-criminal-phishing-panel/",[3256],{"nodeType":411,"value":3257,"marks":3258,"data":3259},"infiltrated Doko's Panel",[],{},{"nodeType":411,"value":3261,"marks":3262,"data":3263}," — a ",[],{},{"nodeType":411,"value":3265,"marks":3266,"data":3268},"real-time vishing and AiTM platform",[3267],{"type":457},{},{"nodeType":411,"value":3270,"marks":3271,"data":3272}," used by ShinyHunters and affiliated groups — the codebase was full of LLM-generated artifacts. Multiple groups were using the templated vishing panel and spinning up their own variants, but the AI-generated indicators persisted throughout. This approach to real-time vishing + browser payload has been a ",[],{},{"nodeType":416,"data":3274,"content":3276},{"uri":3275},"https://pushsecurity.com/blog/analyzing-the-instructure-breach/",[3277],{"nodeType":411,"value":3278,"marks":3279,"data":3281},"mainstay of the Com affiliates like ShinyHunters this year",[3280],{"type":424},{},{"nodeType":411,"value":3283,"marks":3284,"data":3285},". ",[],{},{"nodeType":431,"data":3287,"content":3291},{"target":3288},{"sys":3289},{"id":3290,"type":436,"linkType":437},"01mOiserRBXraawXwQyJNm",[],{"nodeType":407,"data":3293,"content":3294},{},[3295,3299,3304,3308,3317,3321,3329],{"nodeType":411,"value":3296,"marks":3297,"data":3298},"The broader ",[],{},{"nodeType":411,"value":3300,"marks":3301,"data":3303},"ClickFix",[3302],{"type":457},{},{"nodeType":411,"value":3305,"marks":3306,"data":3307}," family shows the same acceleration: First reported in early 2024 and adopted by four nation-state groups within a single quarter. Fast forward and ",[],{},{"nodeType":416,"data":3309,"content":3311},{"uri":3310},"https://www.crowdstrike.com/en-us/global-threat-report/",[3312],{"nodeType":411,"value":3313,"marks":3314,"data":3316},"CrowdStrike's data",[3315],{"type":424},{},{"nodeType":411,"value":3318,"marks":3319,"data":3320}," shows a 563% increase in fake CAPTCHA incidents (one of the more common ClickFix lure types), while ",[],{},{"nodeType":416,"data":3322,"content":3323},{"uri":1441},[3324],{"nodeType":411,"value":3325,"marks":3326,"data":3328},"Microsoft reported",[3327],{"type":424},{},{"nodeType":411,"value":3330,"marks":3331,"data":3332}," it as making up 47% of observed attacks according to their Digital Defense Report.",[],{},{"nodeType":407,"data":3334,"content":3335},{},[3336,3340,3344,3348,3355,3359,3366],{"nodeType":411,"value":3337,"marks":3338,"data":3339},"And ",[],{},{"nodeType":411,"value":1510,"marks":3341,"data":3343},[3342],{"type":457},{},{"nodeType":411,"value":3345,"marks":3346,"data":3347}," — a combination of ClickFix and OAuth consent phishing techniques — suggests the next compression is already underway. Push researchers ",[],{},{"nodeType":416,"data":3349,"content":3350},{"uri":1507},[3351],{"nodeType":411,"value":3352,"marks":3353,"data":3354},"discovered the technique",[],{},{"nodeType":411,"value":3356,"marks":3357,"data":3358}," in December 2025 — a browser-native ClickFix variant hijacking OAuth consent grants via Azure CLI's localhost redirect. It was later confirmed to be tied to APT29. By January 2026, a ",[],{},{"nodeType":416,"data":3360,"content":3361},{"uri":1546},[3362],{"nodeType":411,"value":3363,"marks":3364,"data":3365},"criminal ConsentFix v3 toolkit",[],{},{"nodeType":411,"value":3367,"marks":3368,"data":3369}," had appeared on the XSS forum with Cloudflare Workers, ZoomInfo targeting, and automated exfiltration via Pipedream.",[],{},{"nodeType":431,"data":3371,"content":3375},{"target":3372},{"sys":3373},{"id":3374,"type":436,"linkType":437},"41FMif4T0y1maflzonWgL8",[],{"nodeType":446,"data":3377,"content":3378},{},[],{"nodeType":450,"data":3380,"content":3381},{},[3382],{"nodeType":411,"value":3383,"marks":3384,"data":3386},"Why technique-level detection is the only layer that holds",[3385],{"type":457},{},{"nodeType":407,"data":3388,"content":3389},{},[3390],{"nodeType":411,"value":3391,"marks":3392,"data":3393},"The middle of the Pyramid — tool signatures and artifacts — used to offer much more durable detection than infrastructure indicators. Fingerprinting a specific phishing kit by its JavaScript structure or HTML patterns provided a detection target that survived across dozens or hundreds of campaigns, even as the underlying domains rotated. Tool level detections are still better, but not by quite the same margin.",[],{},{"nodeType":431,"data":3395,"content":3399},{"target":3396},{"sys":3397},{"id":3398,"type":436,"linkType":437},"5pxaYdCIFiFKLPhRaPoldX",[],{"nodeType":407,"data":3401,"content":3402},{},[3403],{"nodeType":411,"value":3404,"marks":3405,"data":3406},"When the kit landscape was dominated by a handful of platforms, you could write signatures for Tycoon, Sneaky2FA, EvilProxy, and so on, and cover the lion's share of attacks. With the ecosystem now producing new variants and entirely new kits on a weekly basis, detecting by kit fingerprint starts to look uncomfortably similar to detecting by domain.",[],{},{"nodeType":407,"data":3408,"content":3409},{},[3410],{"nodeType":411,"value":3411,"marks":3412,"data":3413},"But many of these proliferating kits do share behavioral patterns at a deeper level than their code signatures. For example, every device code phishing kit implements fundamentally the same flow: present a lure, generate a device code via the OAuth Device Authorization endpoint, get the user to enter it on the legitimate authorization page, and poll for the resulting tokens. The frontends vary, the infrastructure varies, but the behavioral pattern doesn't.",[],{},{"nodeType":431,"data":3415,"content":3419},{"target":3416},{"sys":3417},{"id":3418,"type":436,"linkType":437},"FyyHayQtsJTwoB1kluMOl",[],{"nodeType":407,"data":3421,"content":3422},{},[3423],{"nodeType":411,"value":3424,"marks":3425,"data":3426},"Genuinely new attack techniques still require human creativity — an attacker has to identify a gap in how a legitimate protocol or feature can be subverted. That kind of innovation hasn't been automated. But the window to discover a technique, build a detection, and then deploy it before it is adopted by criminals at scale is compressing with each generation.",[],{},{"nodeType":407,"data":3428,"content":3429},{},[3430],{"nodeType":411,"value":3431,"marks":3432,"data":3433},"Organizations that detect at the technique level and deploy before commoditization have a structural advantage that increases over time. Waiting for indicators — even tool-level indicators — means chasing a curve that's accelerating away from you. This is the challenge we grapple with every day as we strive for the most resilient detections possible. ",[],{},{"nodeType":3435,"data":3436,"content":3437},"blockquote",{},[3438],{"nodeType":407,"data":3439,"content":3440},{},[3441,3445,3453,3457],{"nodeType":411,"value":3442,"marks":3443,"data":3444},"As our CPO Jacques Louw put it on ",[],{},{"nodeType":416,"data":3446,"content":3448},{"uri":3447},"https://risky.biz/RBNEWSSI128/",[3449],{"nodeType":411,"value":3450,"marks":3451,"data":3452},"Risky Business",[],{},{"nodeType":411,"value":3454,"marks":3455,"data":3456},": ",[],{},{"nodeType":411,"value":3458,"marks":3459,"data":3461},"\"There's no list of bad domains anywhere in the product. It's a crutch — a false cheat code that stops you from doing the detection in the way that actually is resilient, because the next time you see it, it will be on a different domain.\"",[3460],{"type":1822},{},{"nodeType":446,"data":3463,"content":3464},{},[],{"nodeType":450,"data":3466,"content":3467},{},[3468],{"nodeType":411,"value":3469,"marks":3470,"data":3472},"What it takes to detect at the top of the Pyramid",[3471],{"type":457},{},{"nodeType":407,"data":3474,"content":3475},{},[3476],{"nodeType":411,"value":3477,"marks":3478,"data":3479},"If technique-level detection is the only layer that holds, two things have to be true about your detection capability: You need the right vantage point, and you need the research velocity to stay ahead.",[],{},{"nodeType":460,"data":3481,"content":3482},{},[3483],{"nodeType":411,"value":3484,"marks":3485,"data":3487},"You need the right vantage point",[3486],{"type":457},{},{"nodeType":407,"data":3489,"content":3490},{},[3491],{"nodeType":411,"value":3492,"marks":3493,"data":3494},"Technique-level behaviors in browser-based identity attacks — how a phishing page orchestrates credential entry, how a device code flow presents its authorization prompt, how a ClickFix variant manipulates the clipboard — are visible in the browser session and nowhere else.",[],{},{"nodeType":407,"data":3496,"content":3497},{},[3498],{"nodeType":411,"value":3499,"marks":3500,"data":3501},"Network proxies see encrypted traffic and can attempt to reconstruct page behavior from metadata, but DOM manipulation, user interaction sequences, and script execution aren't visible from that vantage point. Email gateways see the delivery mechanism (or nothing at all in the increasing number of social media and search engine based attacks) but not the payload.",[],{},{"nodeType":407,"data":3503,"content":3504},{},[3505,3509,3517],{"nodeType":411,"value":3506,"marks":3507,"data":3508},"As we disclosed in our ",[],{},{"nodeType":416,"data":3510,"content":3511},{"uri":2020},[3512],{"nodeType":411,"value":3513,"marks":3514,"data":3516},"browser attacks report",[3515],{"type":424},{},{"nodeType":411,"value":3518,"marks":3519,"data":3520},", 95% of in-browser attacks we detect use some form of bot protection, often combined with conditional loading techniques like referrer and browser checks, reliably defeating automated analysis techniques. ",[],{},{"nodeType":407,"data":3522,"content":3523},{},[3524],{"nodeType":411,"value":3525,"marks":3526,"data":3527},"Behavioral detection at the technique level requires observing what happens on the page at the moment the user interacts with it — analyzing pages, not links. When you see the entire browsing flow — ad click, redirect chain, page render, credential prompt — an attack stands out immediately. Without that context, any detection system is forced to fill in gaps, and the gaps are where attacks hide.",[],{},{"nodeType":431,"data":3529,"content":3533},{"target":3530},{"sys":3531},{"id":3532,"type":436,"linkType":437},"4804g6u4POUDpL42bzP0EY",[],{"nodeType":407,"data":3535,"content":3536},{},[3537],{"nodeType":411,"value":3538,"marks":3539,"data":3540},"Push sits inside the browser session, observing this in real time. Its detections target the behavioral mechanics of techniques rather than the surface characteristics of individual kits or infrastructure.",[],{},{"nodeType":460,"data":3542,"content":3543},{},[3544],{"nodeType":411,"value":3545,"marks":3546,"data":3548},"You need the research expertise",[3547],{"type":457},{},{"nodeType":407,"data":3550,"content":3551},{},[3552],{"nodeType":411,"value":3553,"marks":3554,"data":3555},"When the window between technique discovery and industrialized exploitation is measured in weeks rather than years, the detection pipeline needs to operate on that same compressed timescale.",[],{},{"nodeType":407,"data":3557,"content":3558},{},[3559,3563,3569],{"nodeType":411,"value":3560,"marks":3561,"data":3562},"This is where our ",[],{},{"nodeType":416,"data":3564,"content":3565},{"uri":2667},[3566],{"nodeType":411,"value":2670,"marks":3567,"data":3568},[],{},{"nodeType":411,"value":3570,"marks":3571,"data":3572}," fits. It's tripled our monthly detection output — not by generating bigger blocklists, but by scaling the process of discovering behavioral patterns across the telemetry generated by 3+ million browser deployments.",[],{},{"nodeType":407,"data":3574,"content":3575},{},[3576],{"nodeType":411,"value":3577,"marks":3578,"data":3579},"The detections it produces are technique-class by design, targeting how attacks work rather than the infrastructure or specific tool that implements them. The goal is curation, not accumulation — hundreds of high-fidelity behavioral detections rather than the billions of signatures and domain entries that traditional approaches require.",[],{},{"nodeType":407,"data":3581,"content":3582},{},[3583,3587,3594],{"nodeType":411,"value":3584,"marks":3585,"data":3586},"When we detected the first in-the-wild ",[],{},{"nodeType":416,"data":3588,"content":3589},{"uri":1495},[3590],{"nodeType":411,"value":3591,"marks":3592,"data":3593},"InstallFix attack",[],{},{"nodeType":411,"value":3595,"marks":3596,"data":3597}," through the pipeline — a user had searched for NotebookLM, clicked a paid Google ad, and was redirected to a fake page with a WebAssembly C2 connector — the detection shipped to all customers within minutes. It didn't depend on knowing the domain, the ad creative, or the specific kit. It depended on recognizing the technique itself.",[],{},{"nodeType":446,"data":3599,"content":3600},{},[],{"nodeType":450,"data":3602,"content":3603},{},[3604],{"nodeType":411,"value":3605,"marks":3606,"data":3608},"Technique-level detection is now the only option",[3607],{"type":457},{},{"nodeType":407,"data":3610,"content":3611},{},[3612],{"nodeType":411,"value":3613,"marks":3614,"data":3615},"As a framework for detection durability, the Pyramid of Pain is more relevant than ever. ",[],{},{"nodeType":407,"data":3617,"content":3618},{},[3619],{"nodeType":411,"value":3620,"marks":3621,"data":3622},"AI has made infrastructure indicators essentially disposable. The tools tier is compressing as criminal vendors vibe-code, fork, and clone tooling at machine speed. Technique-level detection is the layer that holds long-term to be able to proactively detect and block net-new attacks and the kits that power them. ",[],{},{"nodeType":407,"data":3624,"content":3625},{},[3626],{"nodeType":411,"value":3627,"marks":3628,"data":3629},"Novel attack techniques still require human creativity to discover, and detections built around how those techniques work can survive infrastructure rotation, tool proliferation, and kit fragmentation. Defending that layer requires a vantage point inside the browser session and a research pipeline fast enough to stay ahead of the accelerating path from discovery to industrialization.",[],{},{"nodeType":446,"data":3631,"content":3632},{},[],{"nodeType":407,"data":3634,"content":3635},{},[3636],{"nodeType":411,"value":1086,"marks":3637,"data":3638},[],{},{"nodeType":407,"data":3640,"content":3641},{},[3642],{"nodeType":411,"value":1093,"marks":3643,"data":3644},[],{},{"nodeType":407,"data":3646,"content":3647},{},[3648,3651,3659],{"nodeType":411,"value":29,"marks":3649,"data":3650},[],{},{"nodeType":416,"data":3652,"content":3653},{"uri":2055},[3654],{"nodeType":411,"value":3655,"marks":3656,"data":3658},"Book a live demo",[3657],{"type":424},{},{"nodeType":411,"value":2062,"marks":3660,"data":3661},[],{},"The Pyramid of Pain in the AI era: Why technique-level detection matters more than ever","AI is accelerating the collapse of indicator-based threat detection. Here's why you need technique-level detection to stay ahead.","2026-06-01T00:00:00.000Z","the-pyramid-of-pain-in-the-ai-era",{"items":3667},[3668,3670],{"sys":3669,"name":2078},{"id":2077},{"sys":3671,"name":2074},{"id":2073},{"items":3673},[3674],{"fullName":2082,"firstName":2083,"jobTitle":2084,"profilePicture":3675},{"url":2086},"openai-poisoned-tenant-attack","blog/openai-poisoned-tenant-attack",{"json":3679},{"data":3680,"content":3681,"nodeType":403},{},[3682],{"data":3683,"content":3684,"nodeType":407},{},[3685],{"data":3686,"marks":3687,"value":3688,"nodeType":411},{},[],"Someone created a fake OpenAI organization using our company's name and invited specific Push employees to join it. Here's what we learned. ",{"id":3690,"publishedAt":3691},"gZ98u7GsQBtQWUZAbb9ct","2026-06-26T08:44:27.953Z",{"items":3693},[3694,3696],{"sys":3695,"name":2074},{"id":2073},{"sys":3697,"name":2078},{"id":2077},"r3ovH3WQIfyCL844aJ2ud9uvV6d7QJFBkTfcY48FiSs",{"id":3700,"title":3701,"authorsCollection":3702,"content":3710,"extension":1205,"faqItemsCollection":4609,"faqTitle":62,"featured":6,"hashTags":62,"meta":4611,"metaTitle":4612,"ogImage":62,"publishedDate":4613,"relatedBlogPostsCollection":4614,"slug":7849,"stem":7850,"subtitle":62,"summary":7851,"synopsis":7862,"sys":7863,"tagsCollection":7866,"__hash__":7872},"blog/blog/crossing-the-ai-security-chasm-sans-security-maturity-model.json","Crossing the AI security chasm with the SANS AI security maturity model",{"items":3703},[3704],{"fullName":3705,"firstName":3706,"jobTitle":3707,"profilePicture":3708},"Mark Orlando","Mark","Field CTO",{"url":3709},"https://images.ctfassets.net/y1cdw1ablpvd/592PMwIQQFaa24k5SKBEKF/a33090d0ad95d1e3081f5d16a46ba826/image__68_.png",{"json":3711,"links":4572},{"nodeType":403,"data":3712,"content":3713},{},[3714,3721,3751,3769,3775,3782,3798,3801,3809,3828,3891,3898,3904,3911,3994,4001,4008,4024,4027,4035,4042,4049,4057,4064,4076,4082,4089,4096,4103,4106,4114,4130,4146,4153,4160,4167,4188,4272,4279,4286,4289,4297,4313,4320,4327,4335,4338,4346,4364,4371,4378,4411,4418,4425,4428,4436,4443,4455,4461,4473,4485,4491,4503,4525,4532,4535,4543,4550,4556],{"nodeType":407,"data":3715,"content":3716},{},[3717],{"nodeType":411,"value":3718,"marks":3719,"data":3720},"Most security leaders I talk to know they have an AI problem. They've seen the board questions, read the reports, maybe even drafted a policy. But when they start measuring where they stand — not plans or roadmaps, but actual current state — the gap between awareness and operational capability comes into focus.",[],{},{"nodeType":407,"data":3722,"content":3723},{},[3724,3727,3735,3739,3747],{"nodeType":411,"value":1769,"marks":3725,"data":3726},[],{},{"nodeType":416,"data":3728,"content":3730},{"uri":3729},"https://pushsecurity.com/blog/verizon-dbir-2026-review",[3731],{"nodeType":411,"value":3732,"marks":3733,"data":3734},"2026 Verizon DBIR",[],{},{"nodeType":411,"value":3736,"marks":3737,"data":3738}," quantifies the scale: 45% of employees are now regular AI users on corporate devices (up from 15% the prior year), with 67% using personal accounts. ",[],{},{"nodeType":416,"data":3740,"content":3742},{"uri":3741},"https://pushsecurity.com/blog/what-push-data-reveals-about-the-state-of-shadow-ai",[3743],{"nodeType":411,"value":3744,"marks":3745,"data":3746},"Push data",[],{},{"nodeType":411,"value":3748,"marks":3749,"data":3750}," further shows that 38% of file uploads to AI tools come from those shadow accounts rather than approved organizational ones — and the DBIR shows what's going into them: of 858,000+ DLP events targeting GenAI applications, the most common data types were source code (28%), structured data (14%), and documents and PDFs (23% combined).",[],{},{"nodeType":407,"data":3752,"content":3753},{},[3754,3758,3765],{"nodeType":411,"value":3755,"marks":3756,"data":3757},"The average organization now has ",[],{},{"nodeType":416,"data":3759,"content":3760},{"uri":3741},[3761],{"nodeType":411,"value":3762,"marks":3763,"data":3764},"16 unique AI apps, 17 AI browser extensions, and 17 AI OAuth integrations",[],{},{"nodeType":411,"value":3766,"marks":3767,"data":3768}," in active use, most unapproved. Shadow AI was the third most common non-malicious insider action in the DBIR, up 4x year over year.",[],{},{"nodeType":431,"data":3770,"content":3774},{"target":3771},{"sys":3772},{"id":3773,"type":436,"linkType":437},"2hsKQ9DEspflhmtR0bE7QY",[],{"nodeType":407,"data":3776,"content":3777},{},[3778],{"nodeType":411,"value":3779,"marks":3780,"data":3781},"These statistics expose an attack surface and unmanaged risks at a high level. But the real problem is that most organizations can't produce a basic inventory of which AI tools are in use, let alone demonstrate controls around any of them. ",[],{},{"nodeType":407,"data":3783,"content":3784},{},[3785,3789,3794],{"nodeType":411,"value":3786,"marks":3787,"data":3788},"That gap between awareness and capability is where most organizations are stuck. And understanding ",[],{},{"nodeType":411,"value":3790,"marks":3791,"data":3793},"why",[3792],{"type":1822},{},{"nodeType":411,"value":3795,"marks":3796,"data":3797}," they're stuck requires a framework for what progress actually looks like.",[],{},{"nodeType":446,"data":3799,"content":3800},{},[],{"nodeType":450,"data":3802,"content":3803},{},[3804],{"nodeType":411,"value":3805,"marks":3806,"data":3808},"A model for measuring what most organizations already feel",[3807],{"type":457},{},{"nodeType":407,"data":3810,"content":3811},{},[3812,3816,3824],{"nodeType":411,"value":3813,"marks":3814,"data":3815},"Chris Cochran's ",[],{},{"nodeType":416,"data":3817,"content":3819},{"uri":3818},"https://sansorg.egnyte.com/dl/XtgqfjkjBjp8",[3820],{"nodeType":411,"value":3821,"marks":3822,"data":3823},"SANS AI Security Maturity Model",[],{},{"nodeType":411,"value":3825,"marks":3826,"data":3827},", published earlier this year, provides a framework for addressing this gap. It defines five stages of AI security maturity across three pillars:",[],{},{"nodeType":1038,"data":3829,"content":3830},{},[3831,3847,3863],{"nodeType":1042,"data":3832,"content":3833},{},[3834],{"nodeType":407,"data":3835,"content":3836},{},[3837,3843],{"nodeType":411,"value":3838,"marks":3839,"data":3842},"Protect AI:",[3840,3841],{"type":457},{"type":424},{},{"nodeType":411,"value":3844,"marks":3845,"data":3846}," Defending against AI-enabled threats like adversarial attacks, prompt injection, compromised browser extensions, and AI agents operating with unchecked permissions.",[],{},{"nodeType":1042,"data":3848,"content":3849},{},[3850],{"nodeType":407,"data":3851,"content":3852},{},[3853,3859],{"nodeType":411,"value":3854,"marks":3855,"data":3858},"Utilize AI:",[3856,3857],{"type":457},{"type":424},{},{"nodeType":411,"value":3860,"marks":3861,"data":3862}," Using AI to strengthen security operations by using AI-powered detection and triage, behavioral analytics, and automated response playbooks.",[],{},{"nodeType":1042,"data":3864,"content":3865},{},[3866],{"nodeType":407,"data":3867,"content":3868},{},[3869,3875,3879,3888],{"nodeType":411,"value":3870,"marks":3871,"data":3874},"Govern AI:",[3872,3873],{"type":457},{"type":424},{},{"nodeType":411,"value":3876,"marks":3877,"data":3878}," Managing how the organization adopts and uses AI tools. Things like acceptable use policies, shadow AI discovery, data classification, access controls, and risk assessment. This is the pillar that gets the most attention in boardroom conversations today, driven in part by ",[],{},{"nodeType":416,"data":3880,"content":3882},{"uri":3881},"https://pushsecurity.com/blog/browser-visibility-and-control-can-achieve-ai-compliance",[3883],{"nodeType":411,"value":3884,"marks":3885,"data":3887},"regulatory pressure",[3886],{"type":424},{},{"nodeType":411,"value":1933,"marks":3889,"data":3890},[],{},{"nodeType":407,"data":3892,"content":3893},{},[3894],{"nodeType":411,"value":3895,"marks":3896,"data":3897},"How an organization invests across these three pillars, and whether it invests across all of them, determines whether it advances toward maturity in this area or stalls out at the early steps.",[],{},{"nodeType":431,"data":3899,"content":3903},{"target":3900},{"sys":3901},{"id":3902,"type":436,"linkType":437},"1JV3KG97JQNFKwODnMCMq2",[],{"nodeType":407,"data":3905,"content":3906},{},[3907],{"nodeType":411,"value":3908,"marks":3909,"data":3910},"The SANS AI maturity model outlines 5 stages that organizations must progress through in order to reach an optimal security posture:",[],{},{"nodeType":1038,"data":3912,"content":3913},{},[3914,3930,3946,3962,3978],{"nodeType":1042,"data":3915,"content":3916},{},[3917],{"nodeType":407,"data":3918,"content":3919},{},[3920,3926],{"nodeType":411,"value":3921,"marks":3922,"data":3925},"Stage 1 (Unaware / Ad Hoc)",[3923,3924],{"type":457},{"type":424},{},{"nodeType":411,"value":3927,"marks":3928,"data":3929}," is where employees are freely using AI tools with no oversight, no inventory exists, and leadership may not even know how much AI is in use. There's no policy to violate, so technically it's not even shadow AI yet; it's just unmanaged adoption.",[],{},{"nodeType":1042,"data":3931,"content":3932},{},[3933],{"nodeType":407,"data":3934,"content":3935},{},[3936,3942],{"nodeType":411,"value":3937,"marks":3938,"data":3941},"Stage 2 (Reactive / Policy-Emerging)",[3939,3940],{"type":457},{"type":424},{},{"nodeType":411,"value":3943,"marks":3944,"data":3945}," means a policy exists, but it's course-grained: \"Don't use AI\" or \"use with caution.\" Known AI tools may be blocked at the network level. Security teams are learning about AI-specific threats but don't have dedicated expertise or tooling.",[],{},{"nodeType":1042,"data":3947,"content":3948},{},[3949],{"nodeType":407,"data":3950,"content":3951},{},[3952,3958],{"nodeType":411,"value":3953,"marks":3954,"data":3957},"Stage 3 (Defined / Risk-Informed)",[3955,3956],{"type":457},{"type":424},{},{"nodeType":411,"value":3959,"marks":3960,"data":3961}," is where things get intentional. AI usage is governed through enterprise tools rather than outright bans. AI systems are included in security assessments. The organization can demonstrate mature governance to regulators and partners. For many organizations, this is a strong and defensible operating position.",[],{},{"nodeType":1042,"data":3963,"content":3964},{},[3965],{"nodeType":407,"data":3966,"content":3967},{},[3968,3974],{"nodeType":411,"value":3969,"marks":3970,"data":3973},"Stage 4 (Managed / Integrated)",[3971,3972],{"type":457},{"type":424},{},{"nodeType":411,"value":3975,"marks":3976,"data":3977}," means AI is deeply embedded in security operations with measurable outcomes. AI systems are secured by design. Risk is quantified, not estimated. Decisions are data-driven. This is where organizations can handle AI-specific threats and operate at the tempo that AI-augmented adversaries demand.",[],{},{"nodeType":1042,"data":3979,"content":3980},{},[3981],{"nodeType":407,"data":3982,"content":3983},{},[3984,3990],{"nodeType":411,"value":3985,"marks":3986,"data":3989},"Stage 5 (Optimizing / Adaptive)",[3987,3988],{"type":457},{"type":424},{},{"nodeType":411,"value":3991,"marks":3992,"data":3993}," is the frontier of AI-native security with self-improving defenses. Elements of this stage exist primarily in large technology companies, defense contractors, and AI-native firms. For most organizations, this is a multi-year journey.",[],{},{"nodeType":407,"data":3995,"content":3996},{},[3997],{"nodeType":411,"value":3998,"marks":3999,"data":4000},"Most of the security leaders I talk to land between Stage 1 and Stage 2. They have awareness, maybe a policy, but not the tooling or telemetry to demonstrate much beyond that. ",[],{},{"nodeType":407,"data":4002,"content":4003},{},[4004],{"nodeType":411,"value":4005,"marks":4006,"data":4007},"The model is pragmatic about these challenges. It doesn't expect every organization to reach Stage 5, and it adjusts maturity targets by sector. ",[],{},{"nodeType":407,"data":4009,"content":4010},{},[4011,4015,4020],{"nodeType":411,"value":4012,"marks":4013,"data":4014},"But it ",[],{},{"nodeType":411,"value":4016,"marks":4017,"data":4019},"does",[4018],{"type":1822},{},{"nodeType":411,"value":4021,"marks":4022,"data":4023}," require evidence of progress, not just intent. And for the majority sitting at Stage 2, the hard part is identifying the right steps to move from being merely reactive to a posture of operational readiness. That’s the chasm to cross.",[],{},{"nodeType":446,"data":4025,"content":4026},{},[],{"nodeType":450,"data":4028,"content":4029},{},[4030],{"nodeType":411,"value":4031,"marks":4032,"data":4034},"The chasm",[4033],{"type":457},{},{"nodeType":407,"data":4036,"content":4037},{},[4038],{"nodeType":411,"value":4039,"marks":4040,"data":4041},"For the organizations sitting at Stage 2, current state often looks like this: They've written an AI acceptable use policy, and maybe they've blocked known AI apps at the network level. They've trained employees on what's allowed and what isn't. ",[],{},{"nodeType":407,"data":4043,"content":4044},{},[4045],{"nodeType":411,"value":4046,"marks":4047,"data":4048},"To be sure, blocking is the fastest lever a security team can pull, and it represents visible progress to the business. The problem is that it rarely stays effective. ",[],{},{"nodeType":407,"data":4050,"content":4051},{},[4052],{"nodeType":411,"value":4053,"marks":4054,"data":4056},"SANS calls the pattern that traps most organizations at Stage 2 the \"Framework of No.\" ",[4055],{"type":457},{},{"nodeType":407,"data":4058,"content":4059},{},[4060],{"nodeType":411,"value":4061,"marks":4062,"data":4063},"\"A block-based AI policy may feel like risk management, but practitioner experience shows it typically drives AI usage underground rather than preventing it,” the report notes. “This is the pattern SANS has documented as the 'Framework of No,' and it is why the Stage 2 to Stage 3 transition is so critical.\"",[],{},{"nodeType":407,"data":4065,"content":4066},{},[4067,4072],{"nodeType":411,"value":4068,"marks":4069,"data":4071},"This",[4070],{"type":1822},{},{"nodeType":411,"value":4073,"marks":4074,"data":4075}," is the chasm. On one side: awareness and policy. On the other: operational capability - the tooling, telemetry, and controls that let a security team see what's happening and respond to it. Most organizations are standing on the awareness side, looking across, not sure how to get over.",[],{},{"nodeType":431,"data":4077,"content":4081},{"target":4078},{"sys":4079},{"id":4080,"type":436,"linkType":437},"187mKPZV8tVbsw17L2cWIU",[],{"nodeType":407,"data":4083,"content":4084},{},[4085],{"nodeType":411,"value":4086,"marks":4087,"data":4088},"The model is specific about what crossing requires. The steps from Stage 2 to Stage 3 include technical BYOAI discovery (not a survey, but automated discovery), AI-specific data classification, AI-aware controls, and a cross-functional governance body. Data classification is a critical prerequisite: \"You cannot write an effective AI policy without knowing where sensitive data lives,\" the report emphasizes.",[],{},{"nodeType":407,"data":4090,"content":4091},{},[4092],{"nodeType":411,"value":4093,"marks":4094,"data":4095},"These are visibility and measurement problems before they're policy problems. You can't govern what you can't see. You can't classify risk you can't measure. And a blocklist that pushes usage underground doesn't give you either: it just makes the gap between your policy and your reality harder to detect.",[],{},{"nodeType":407,"data":4097,"content":4098},{},[4099],{"nodeType":411,"value":4100,"marks":4101,"data":4102},"Getting this visibility right is necessary for crossing the chasm. But it’s not the only step organizations must undertake if they want to address their AI risk.",[],{},{"nodeType":446,"data":4104,"content":4105},{},[],{"nodeType":450,"data":4107,"content":4108},{},[4109],{"nodeType":411,"value":4110,"marks":4111,"data":4113},"Governance is key, but don't forget about protection",[4112],{"type":457},{},{"nodeType":407,"data":4115,"content":4116},{},[4117,4121,4126],{"nodeType":411,"value":4118,"marks":4119,"data":4120},"Most AI security conversations today - the vendor pitches, board decks, and compliance checklists - are about the ",[],{},{"nodeType":411,"value":4122,"marks":4123,"data":4125},"Govern",[4124],{"type":457},{},{"nodeType":411,"value":4127,"marks":4128,"data":4129}," pillar. Shadow AI discovery. Usage policies. Data classification. Controls around what employees paste into AI prompts or upload to AI tools. It's important work.",[],{},{"nodeType":407,"data":4131,"content":4132},{},[4133,4137,4142],{"nodeType":411,"value":4134,"marks":4135,"data":4136},"But the SANS model gives roughly equal weight to a second pillar that gets almost no attention: ",[],{},{"nodeType":411,"value":4138,"marks":4139,"data":4141},"Protect",[4140],{"type":457},{},{"nodeType":411,"value":4143,"marks":4144,"data":4145}," - defending against AI-enabled attacks.",[],{},{"nodeType":407,"data":4147,"content":4148},{},[4149],{"nodeType":411,"value":4150,"marks":4151,"data":4152},"The Protect pillar starts from a stark baseline. At Stage 1, most organizations have no visibility into which AI agents or browser extensions have access to their corporate environment, let alone a framework for understanding how those could be attacked. ",[],{},{"nodeType":407,"data":4154,"content":4155},{},[4156],{"nodeType":411,"value":4157,"marks":4158,"data":4159},"By Stage 3, the model expects runtime validation of AI tools and plugins, detection capabilities mapped to AI-specific attack frameworks, and controls that cover the growing surface area of agentic AI. ",[],{},{"nodeType":407,"data":4161,"content":4162},{},[4163],{"nodeType":411,"value":4164,"marks":4165,"data":4166},"By Stage 4, organizations need real-time monitoring of AI agent behavior and defenses against attacks that exploit trust relationships between AI systems — capabilities most security teams haven't started scoping, much less building or procuring.",[],{},{"nodeType":407,"data":4168,"content":4169},{},[4170,4174,4184],{"nodeType":411,"value":4171,"marks":4172,"data":4173},"These are detection and response capabilities, not governance exercises — and the attacks they address are already well underway. ",[],{},{"nodeType":416,"data":4175,"content":4177},{"uri":4176},"https://pushsecurity.com/blog/the-cisos-data-problem-and-how-browser-telemetry-can-help/",[4178],{"nodeType":411,"value":4179,"marks":4180,"data":4183},"One in three phishing payloads",[4181,4182],{"type":424},{"type":457},{},{"nodeType":411,"value":4185,"marks":4186,"data":4187}," intercepted by Push arrive outside of email, through channels where most security controls don't exist. Evidence of the growth of browser-based attack methods enabled by AI tooling abounds:",[],{},{"nodeType":1038,"data":4189,"content":4190},{},[4191,4212,4233],{"nodeType":1042,"data":4192,"content":4193},{},[4194],{"nodeType":407,"data":4195,"content":4196},{},[4197,4201,4208],{"nodeType":411,"value":4198,"marks":4199,"data":4200},"CrowdStrike's 2026 Global Threat Report documented a ",[],{},{"nodeType":416,"data":4202,"content":4203},{"uri":1453},[4204],{"nodeType":411,"value":4205,"marks":4206,"data":4207},"563% increase in ClickFix lures",[],{},{"nodeType":411,"value":4209,"marks":4210,"data":4211}," — fake CAPTCHA pages that trick users into executing malicious commands on their own machines.",[],{},{"nodeType":1042,"data":4213,"content":4214},{},[4215],{"nodeType":407,"data":4216,"content":4217},{},[4218,4222,4229],{"nodeType":411,"value":4219,"marks":4220,"data":4221},"Push has tracked a ",[],{},{"nodeType":416,"data":4223,"content":4224},{"uri":1580},[4225],{"nodeType":411,"value":4226,"marks":4227,"data":4228},"37x increase in device code phishing",[],{},{"nodeType":411,"value":4230,"marks":4231,"data":4232}," since the start of 2026, with 18+ distinct kits now offering the technique.",[],{},{"nodeType":1042,"data":4234,"content":4235},{},[4236],{"nodeType":407,"data":4237,"content":4238},{},[4239,4242,4251,4255,4260,4264,4269],{"nodeType":411,"value":29,"marks":4240,"data":4241},[],{},{"nodeType":416,"data":4243,"content":4245},{"uri":4244},"https://www.anthropic.com/news/AI-enabled-cyber-threats-mitre-attack",[4246],{"nodeType":411,"value":4247,"marks":4248,"data":4250},"Anthropic",[4249],{"type":424},{},{"nodeType":411,"value":4252,"marks":4253,"data":4254}," identified ",[],{},{"nodeType":411,"value":4256,"marks":4257,"data":4259},"793 threat actors using AI",[4258],{"type":457},{},{"nodeType":411,"value":4261,"marks":4262,"data":4263}," for malicious cybersecurity purposes between March 2025 and February 2026, with the 2026 Verizon DBIR finding that ",[],{},{"nodeType":411,"value":4265,"marks":4266,"data":4268},"44% of AI-assisted initial access was phishing-related",[4267],{"type":457},{},{"nodeType":411,"value":1933,"marks":4270,"data":4271},[],{},{"nodeType":407,"data":4273,"content":4274},{},[4275],{"nodeType":411,"value":4276,"marks":4277,"data":4278},"Attackers are already vibecoding phishing kits, rotating infrastructure daily, and exploiting identity flows that traditional endpoint and network tools can't see.",[],{},{"nodeType":407,"data":4280,"content":4281},{},[4282],{"nodeType":411,"value":4283,"marks":4284,"data":4285},"The SANS model makes the speed argument a central focus at Stage 4: Detection built for human-pace adversaries is increasingly insufficient when threats operate at machine speed. For organizations investing exclusively in AI governance, AI-enabled threats represent an entire category of risk that is not being addressed.",[],{},{"nodeType":446,"data":4287,"content":4288},{},[],{"nodeType":460,"data":4290,"content":4291},{},[4292],{"nodeType":411,"value":4293,"marks":4294,"data":4296},"Why governance alone can't close the gap",[4295],{"type":457},{},{"nodeType":407,"data":4298,"content":4299},{},[4300,4304,4309],{"nodeType":411,"value":4301,"marks":4302,"data":4303},"An organization can have an AI policy, shadow AI discovery, data classification, and usage controls, and ",[],{},{"nodeType":411,"value":4305,"marks":4306,"data":4308},"still",[4307],{"type":1822},{},{"nodeType":411,"value":4310,"marks":4311,"data":4312}," be exposed. When an employee hits a device code phishing page or a ClickFix lure, the governance program documented the risk perfectly. It just couldn't stop the attack. The policy existed but the detection (and ideally, mitigation) didn't.",[],{},{"nodeType":407,"data":4314,"content":4315},{},[4316],{"nodeType":411,"value":4317,"marks":4318,"data":4319},"The reverse is equally true, and it's why the SANS model treats the pillars as interdependent rather than sequential. Detection capabilities that fire into a void with no policy to act on findings, no classification to assess exposure, and no governance body to shape proactive policy just create alerts, not security. ",[],{},{"nodeType":407,"data":4321,"content":4322},{},[4323],{"nodeType":411,"value":4324,"marks":4325,"data":4326},"Yet most organizations are only investing heavily in one side of the solution, which is almost always Govern. The maturity model is explicit about the risks of this approach: Governance with no attack detection leaves a critical gap. ",[],{},{"nodeType":407,"data":4328,"content":4329},{},[4330],{"nodeType":411,"value":4331,"marks":4332,"data":4334},"Closing the gap requires a control point where both problems are visible and addressable.",[4333],{"type":457},{},{"nodeType":446,"data":4336,"content":4337},{},[],{"nodeType":450,"data":4339,"content":4340},{},[4341],{"nodeType":411,"value":4342,"marks":4343,"data":4345},"Crossing the chasm requires addressing both pillars at once",[4344],{"type":457},{},{"nodeType":407,"data":4347,"content":4348},{},[4349,4353,4360],{"nodeType":411,"value":4350,"marks":4351,"data":4352},"The bottleneck for most security programs ",[],{},{"nodeType":416,"data":4354,"content":4355},{"uri":4176},[4356],{"nodeType":411,"value":4357,"marks":4358,"data":4359},"isn't frameworks or strategy — it's data quality",[],{},{"nodeType":411,"value":4361,"marks":4362,"data":4363},". For teams taking on the dual problems of shadow AI and AI-enabled attacks, browser telemetry is the foundation to any meaningful solution. That’s because both problems converge in the same place.",[],{},{"nodeType":407,"data":4365,"content":4366},{},[4367],{"nodeType":411,"value":4368,"marks":4369,"data":4370},"AI-enabled phishing attacks, credential theft, malicious browser extensions, and OAuth exploitation happen in the browser. So do shadow AI adoption, sensitive data pasted into AI prompts, file uploads to unapproved tools, and unauthorized integrations. The browser is where external attacks and internal misuse are both visible and stoppable.",[],{},{"nodeType":407,"data":4372,"content":4373},{},[4374],{"nodeType":411,"value":4375,"marks":4376,"data":4377},"For the security team trying to advance past the Framework of No, browser telemetry replaces the blunt instrument of network-level blocking with actual visibility:",[],{},{"nodeType":1038,"data":4379,"content":4380},{},[4381,4391,4401],{"nodeType":1042,"data":4382,"content":4383},{},[4384],{"nodeType":407,"data":4385,"content":4386},{},[4387],{"nodeType":411,"value":4388,"marks":4389,"data":4390},"which AI apps are in use (including personal account usage)",[],{},{"nodeType":1042,"data":4392,"content":4393},{},[4394],{"nodeType":407,"data":4395,"content":4396},{},[4397],{"nodeType":411,"value":4398,"marks":4399,"data":4400},"what data is moving into them (file uploads, clipboard activity)",[],{},{"nodeType":1042,"data":4402,"content":4403},{},[4404],{"nodeType":407,"data":4405,"content":4406},{},[4407],{"nodeType":411,"value":4408,"marks":4409,"data":4410},"graduated controls - per-app, per-user group, per-content pattern - that can monitor, warn, or block based on context rather than allow/deny",[],{},{"nodeType":407,"data":4412,"content":4413},{},[4414],{"nodeType":411,"value":4415,"marks":4416,"data":4417},"The same browser-layer instrumentation can also provide real-time detection of credential phishing, ClickFix, adversary-in-the-middle attacks, and device code phishing. And it can detect and disable malicious browser extensions based on confirmed threat intelligence, monitor OAuth integrations, and generate the identity attack surface data (login behaviors, MFA gaps, SSO coverage) that the Protect pillar requires at Stage 3 maturity and beyond.",[],{},{"nodeType":407,"data":4419,"content":4420},{},[4421],{"nodeType":411,"value":4422,"marks":4423,"data":4424},"We built Push around this insight: that the browser is where both problems converge, and a single deployment can advance AI security maturity in both areas simultaneously. The SANS model makes the same argument.",[],{},{"nodeType":446,"data":4426,"content":4427},{},[],{"nodeType":450,"data":4429,"content":4430},{},[4431],{"nodeType":411,"value":4432,"marks":4433,"data":4435},"Where to start: 5 steps to maturity with Push",[4434],{"type":457},{},{"nodeType":407,"data":4437,"content":4438},{},[4439],{"nodeType":411,"value":4440,"marks":4441,"data":4442},"The chasm closes when organizations make meaningful strides forward in both AI governance and proactive defense against AI-enabled attacks. Here's the starting plan that I'd recommend, and Push can provide the tooling to automate these steps:",[],{},{"nodeType":407,"data":4444,"content":4445},{},[4446,4451],{"nodeType":411,"value":4447,"marks":4448,"data":4450},"1. Build an AI inventory automatically.",[4449],{"type":457},{},{"nodeType":411,"value":4452,"marks":4453,"data":4454}," Every stage transition in the SANS model starts with knowing what's in your environment. A manual survey won't cut it; employees won't self-report the tools they're not sure they're allowed to use, and may overlook apps where AI is a feature but not the core function (AI-enabled apps). Instead, organizations should deploy automated discovery for AI apps, browser extensions, and OAuth integrations across the workforce - including the ones using personal accounts. Until this inventory exists, every policy decision is based on incomplete information.",[],{},{"nodeType":431,"data":4456,"content":4460},{"target":4457},{"sys":4458},{"id":4459,"type":436,"linkType":437},"2t3u0NydllImv6NzvAY058",[],{"nodeType":407,"data":4462,"content":4463},{},[4464,4469],{"nodeType":411,"value":4465,"marks":4466,"data":4468},"2. Classify what you find.",[4467],{"type":457},{},{"nodeType":411,"value":4470,"marks":4471,"data":4472}," Not all AI usage carries the same risk. A developer pasting code into ChatGPT and a salesperson using an AI notetaker are different problems. Once you can see the tools, categorize them by data sensitivity, authorization status, and access scope. The SANS model calls out data classification as a critical prerequisite; you can't write an effective AI policy without knowing where sensitive data lives.",[],{},{"nodeType":407,"data":4474,"content":4475},{},[4476,4481],{"nodeType":411,"value":4477,"marks":4478,"data":4480},"3. Turn on browser-layer detection.",[4479],{"type":457},{},{"nodeType":411,"value":4482,"marks":4483,"data":4484}," This is the step most organizations skip, and it's why addressing only the Protect pillar will keep you at Stage 1. AI-enabled phishing, ClickFix attacks, device code phishing, malicious extension updates, and OAuth exploitation all execute in the browser. Without detection in that layer, there's no visibility into the fastest-growing attack category, and no path to advancing beyond basic AI usage awareness.",[],{},{"nodeType":431,"data":4486,"content":4490},{"target":4487},{"sys":4488},{"id":4489,"type":436,"linkType":437},"1fzuGjA6VSbVl1p7vM1mt7",[],{"nodeType":407,"data":4492,"content":4493},{},[4494,4499],{"nodeType":411,"value":4495,"marks":4496,"data":4498},"4. Move from blocking to graduated controls.",[4497],{"type":457},{},{"nodeType":411,"value":4500,"marks":4501,"data":4502}," The Framework of No fails because it's binary: allow or deny, with nothing in between. Organizations that cross the chasm adopt monitor, warn, and block modes — per app, per user group, per content pattern. Monitor first to see what's happening, warn to change behavior without disrupting workflows, and block only where the risk justifies it. This is the operational difference between Stage 2 and Stage 3.",[],{},{"nodeType":407,"data":4504,"content":4505},{},[4506,4511,4515,4521],{"nodeType":411,"value":4507,"marks":4508,"data":4510},"5. Assess yourself honestly against evidence, not aspiration.",[4509],{"type":457},{},{"nodeType":411,"value":4512,"marks":4513,"data":4514}," The ",[],{},{"nodeType":416,"data":4516,"content":4517},{"uri":3818},[4518],{"nodeType":411,"value":3821,"marks":4519,"data":4520},[],{},{"nodeType":411,"value":4522,"marks":4523,"data":4524}," includes a self-assessment and industry-specific weighting profiles. The value isn't in the score, but in identifying which pillar is keeping you from advancing.",[],{},{"nodeType":407,"data":4526,"content":4527},{},[4528],{"nodeType":411,"value":4529,"marks":4530,"data":4531},"The organizations that cross the AI security chasm will be the ones that recognize early that AI security isn't one problem with one solution. It's two problems that happen to share a control point. The most efficient path forward is a platform that addresses both.",[],{},{"nodeType":446,"data":4533,"content":4534},{},[],{"nodeType":450,"data":4536,"content":4537},{},[4538],{"nodeType":411,"value":4539,"marks":4540,"data":4542},"Learn more about Push",[4541],{"type":457},{},{"nodeType":407,"data":4544,"content":4545},{},[4546],{"nodeType":411,"value":4547,"marks":4548,"data":4549},"Push Security is the most powerful AI-native security tool in the browser. Think EDR, but for the browser - high-fidelity telemetry and real-time control across every session, on every device, with no browser migration required.",[],{},{"nodeType":407,"data":4551,"content":4552},{},[4553],{"nodeType":411,"value":1093,"marks":4554,"data":4555},[],{},{"nodeType":407,"data":4557,"content":4558},{},[4559,4562,4569],{"nodeType":411,"value":2050,"marks":4560,"data":4561},[],{},{"nodeType":416,"data":4563,"content":4564},{"uri":2055},[4565],{"nodeType":411,"value":2058,"marks":4566,"data":4568},[4567],{"type":424},{},{"nodeType":411,"value":2062,"marks":4570,"data":4571},[],{},{"entries":4573},{"hyperlink":4574,"inline":4575,"block":4576},[],[],[4577,4585,4591,4597,4603],{"sys":4578,"__typename":1128,"title":4579,"caption":4580,"layoutMode":62,"file":4581},{"id":3773},"ai-sprawl-infographic","AI sprawl is worse than most organizations realize. ",{"url":4582,"width":4583,"height":4584},"https://images.ctfassets.net/y1cdw1ablpvd/7vCbQdyRkjLs5EmsjBBAQp/3bfb13e7ec19be76325cdc69297c48c3/ai-sprawl-infographic_2x__3_.png",1800,1192,{"sys":4586,"__typename":1128,"title":4587,"caption":4587,"layoutMode":62,"file":4588},{"id":3902},"SANS AI Security Maturity Model. Credit: SANS Institute",{"url":4589,"width":1146,"height":4590},"https://images.ctfassets.net/y1cdw1ablpvd/7a9wgGdzZdS8c0nAzrlJqk/85657448d9d1bb34e126ba85e79ce27c/image2.png",1489,{"sys":4592,"__typename":1128,"title":4593,"caption":4593,"layoutMode":62,"file":4594},{"id":4080},"Crossing the AI security chasm requires focusing both on AI governance, and protection against AI-enabled attacks.",{"url":4595,"width":1146,"height":4596},"https://images.ctfassets.net/y1cdw1ablpvd/749gGzgSPy9n58LU9WFZ02/7c1327e38b1be213013f102f0dccc306/image4.png",1106,{"sys":4598,"__typename":1128,"title":4599,"caption":4599,"layoutMode":62,"file":4600},{"id":4459},"Push automatically inventories apps accessed by your employees and categorizes them.",{"url":4601,"width":1146,"height":4602},"https://images.ctfassets.net/y1cdw1ablpvd/6HZ0uOS63oeT1KmnRu0rWB/db9a27ff0a230237d3e5bfda56386592/image5.png",1138,{"sys":4604,"__typename":1128,"title":4605,"caption":4605,"layoutMode":62,"file":4606},{"id":4489},"Sample detection details in the Push admin console for a blocked phishing event",{"url":4607,"width":1146,"height":4608},"https://images.ctfassets.net/y1cdw1ablpvd/vIFT3CvEkR3MPQdI5DIoa/4f59424365c3c90c232e287dac85bf2c/image3.png",766,{"items":4610},[],{},"Crossing the chasm with the SANS AI security maturity model","2026-06-24T00:00:00.000Z",{"items":4615},[4616,5661,6597],{"__typename":1214,"sys":4617,"content":4619,"title":5639,"synopsis":5640,"hashTags":62,"publishedDate":5641,"slug":5642,"tagsCollection":5643,"authorsCollection":5653},{"id":4618},"19QvRR4NcSe3PHQEhID42Q",{"json":4620},{"nodeType":403,"data":4621,"content":4622},{},[4623,4631,4638,4646,5222,5228,5235,5242,5245,5253,5260,5268,5275,5281,5286,5294,5310,5318,5325,5333,5340,5346,5354,5361,5367,5370,5378,5397,5417,5436,5443,5446,5454,5461,5472,5479,5490,5497,5503,5514,5521,5532,5539,5546,5552,5563,5570,5573,5581,5588,5595,5602,5608,5611,5617,5623],{"nodeType":450,"data":4624,"content":4625},{},[4626],{"nodeType":411,"value":4627,"marks":4628,"data":4630},"The AI regulatory landscape is moving fast",[4629],{"type":457},{},{"nodeType":407,"data":4632,"content":4633},{},[4634],{"nodeType":411,"value":4635,"marks":4636,"data":4637},"The regulatory landscape around AI has shifted from theoretical to operational faster than most compliance teams expected. Several regulations are already in force, presenting not just a legal but also significant operational challenge to organizations covered by these regulations. ",[],{},{"nodeType":407,"data":4639,"content":4640},{},[4641],{"nodeType":411,"value":4642,"marks":4643,"data":4645},"First, here's a summary of the key frameworks and what they require:",[4644],{"type":457},{},{"nodeType":2753,"data":4647,"content":4648},{},[4649,4696,4786,4852,4907,5033,5088,5155],{"nodeType":2757,"data":4650,"content":4651},{},[4652,4663,4674,4685],{"nodeType":2787,"data":4653,"content":4654},{},[4655],{"nodeType":407,"data":4656,"content":4657},{},[4658],{"nodeType":411,"value":4659,"marks":4660,"data":4662},"Regulation",[4661],{"type":457},{},{"nodeType":2787,"data":4664,"content":4665},{},[4666],{"nodeType":407,"data":4667,"content":4668},{},[4669],{"nodeType":411,"value":4670,"marks":4671,"data":4673},"Jurisdiction",[4672],{"type":457},{},{"nodeType":2787,"data":4675,"content":4676},{},[4677],{"nodeType":407,"data":4678,"content":4679},{},[4680],{"nodeType":411,"value":4681,"marks":4682,"data":4684},"What it requires for AI",[4683],{"type":457},{},{"nodeType":2787,"data":4686,"content":4687},{},[4688],{"nodeType":407,"data":4689,"content":4690},{},[4691],{"nodeType":411,"value":4692,"marks":4693,"data":4695},"Status",[4694],{"type":457},{},{"nodeType":2757,"data":4697,"content":4698},{},[4699,4721,4731,4765],{"nodeType":2787,"data":4700,"content":4701},{},[4702],{"nodeType":407,"data":4703,"content":4704},{},[4705,4708,4718],{"nodeType":411,"value":29,"marks":4706,"data":4707},[],{},{"nodeType":416,"data":4709,"content":4711},{"uri":4710},"https://artificialintelligenceact.eu/",[4712],{"nodeType":411,"value":4713,"marks":4714,"data":4717},"EU AI Act",[4715,4716],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":4719,"data":4720},[],{},{"nodeType":2787,"data":4722,"content":4723},{},[4724],{"nodeType":407,"data":4725,"content":4726},{},[4727],{"nodeType":411,"value":4728,"marks":4729,"data":4730},"EU",[],{},{"nodeType":2787,"data":4732,"content":4733},{},[4734],{"nodeType":407,"data":4735,"content":4736},{},[4737,4741,4749,4753,4761],{"nodeType":411,"value":4738,"marks":4739,"data":4740},"AI system inventory and risk classification; ",[],{},{"nodeType":416,"data":4742,"content":4744},{"uri":4743},"https://artificialintelligenceact.eu/article/4/",[4745],{"nodeType":411,"value":4746,"marks":4747,"data":4748},"AI literacy",[],{},{"nodeType":411,"value":4750,"marks":4751,"data":4752}," for all staff; ",[],{},{"nodeType":416,"data":4754,"content":4756},{"uri":4755},"https://artificialintelligenceact.eu/article/15/",[4757],{"nodeType":411,"value":4758,"marks":4759,"data":4760},"cybersecurity resilience",[],{},{"nodeType":411,"value":4762,"marks":4763,"data":4764}," for high-risk AI; transparency and human oversight",[],{},{"nodeType":2787,"data":4766,"content":4767},{},[4768],{"nodeType":407,"data":4769,"content":4770},{},[4771,4774,4782],{"nodeType":411,"value":29,"marks":4772,"data":4773},[],{},{"nodeType":416,"data":4775,"content":4776},{"uri":4743},[4777],{"nodeType":411,"value":4778,"marks":4779,"data":4781},"Art. 4",[4780],{"type":424},{},{"nodeType":411,"value":4783,"marks":4784,"data":4785}," (literacy) in force Feb 2025; high-risk obligations Aug 2026",[],{},{"nodeType":2757,"data":4787,"content":4788},{},[4789,4811,4821,4842],{"nodeType":2787,"data":4790,"content":4791},{},[4792],{"nodeType":407,"data":4793,"content":4794},{},[4795,4798,4808],{"nodeType":411,"value":29,"marks":4796,"data":4797},[],{},{"nodeType":416,"data":4799,"content":4801},{"uri":4800},"https://eur-lex.europa.eu/eli/reg/2022/2554/oj",[4802],{"nodeType":411,"value":4803,"marks":4804,"data":4807},"DORA",[4805,4806],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":4809,"data":4810},[],{},{"nodeType":2787,"data":4812,"content":4813},{},[4814],{"nodeType":407,"data":4815,"content":4816},{},[4817],{"nodeType":411,"value":4818,"marks":4819,"data":4820},"EU financial services",[],{},{"nodeType":2787,"data":4822,"content":4823},{},[4824],{"nodeType":407,"data":4825,"content":4826},{},[4827,4831,4838],{"nodeType":411,"value":4828,"marks":4829,"data":4830},"AI tools in ICT risk framework; AI providers in ",[],{},{"nodeType":416,"data":4832,"content":4833},{"uri":4800},[4834],{"nodeType":411,"value":4835,"marks":4836,"data":4837},"third-party risk registers",[],{},{"nodeType":411,"value":4839,"marks":4840,"data":4841},"; resilience testing covering AI-enhanced attacks",[],{},{"nodeType":2787,"data":4843,"content":4844},{},[4845],{"nodeType":407,"data":4846,"content":4847},{},[4848],{"nodeType":411,"value":4849,"marks":4850,"data":4851},"In force Jan 2025",[],{},{"nodeType":2757,"data":4853,"content":4854},{},[4855,4877,4887,4897],{"nodeType":2787,"data":4856,"content":4857},{},[4858],{"nodeType":407,"data":4859,"content":4860},{},[4861,4864,4874],{"nodeType":411,"value":29,"marks":4862,"data":4863},[],{},{"nodeType":416,"data":4865,"content":4867},{"uri":4866},"https://eur-lex.europa.eu/eli/reg/2024/2847/oj",[4868],{"nodeType":411,"value":4869,"marks":4870,"data":4873},"EU Cyber Resilience Act",[4871,4872],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":4875,"data":4876},[],{},{"nodeType":2787,"data":4878,"content":4879},{},[4880],{"nodeType":407,"data":4881,"content":4882},{},[4883],{"nodeType":411,"value":4884,"marks":4885,"data":4886},"EU digital products",[],{},{"nodeType":2787,"data":4888,"content":4889},{},[4890],{"nodeType":407,"data":4891,"content":4892},{},[4893],{"nodeType":411,"value":4894,"marks":4895,"data":4896},"AI-enabled software must meet essential cybersecurity requirements; vulnerability management and incident reporting",[],{},{"nodeType":2787,"data":4898,"content":4899},{},[4900],{"nodeType":407,"data":4901,"content":4902},{},[4903],{"nodeType":411,"value":4904,"marks":4905,"data":4906},"Reporting Sep 2026; full compliance Dec 2027",[],{},{"nodeType":2757,"data":4908,"content":4909},{},[4910,4932,4942,4992],{"nodeType":2787,"data":4911,"content":4912},{},[4913],{"nodeType":407,"data":4914,"content":4915},{},[4916,4919,4929],{"nodeType":411,"value":29,"marks":4917,"data":4918},[],{},{"nodeType":416,"data":4920,"content":4922},{"uri":4921},"https://www.dfs.ny.gov/industry_guidance/cybersecurity",[4923],{"nodeType":411,"value":4924,"marks":4925,"data":4928},"NYDFS 23 NYCRR 500",[4926,4927],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":4930,"data":4931},[],{},{"nodeType":2787,"data":4933,"content":4934},{},[4935],{"nodeType":407,"data":4936,"content":4937},{},[4938],{"nodeType":411,"value":4939,"marks":4940,"data":4941},"US (NY financial services)",[],{},{"nodeType":2787,"data":4943,"content":4944},{},[4945],{"nodeType":407,"data":4946,"content":4947},{},[4948,4951,4960,4964,4972,4976,4989],{"nodeType":411,"value":29,"marks":4949,"data":4950},[],{},{"nodeType":416,"data":4952,"content":4954},{"uri":4953},"https://www.dfs.ny.gov/industry-guidance/industry-letters/il20241016-cyber-risks-ai-and-strategies-combat-related-risks",[4955],{"nodeType":411,"value":4956,"marks":4957,"data":4959},"AI-resistant MFA",[4958],{"type":424},{},{"nodeType":411,"value":4961,"marks":4962,"data":4963},"; employee training on AI threats; ",[],{},{"nodeType":416,"data":4965,"content":4967},{"uri":4966},"https://www.dfs.ny.gov/industry-guidance/industry-letters/il20251021-guidance-managing-risks-third-party",[4968],{"nodeType":411,"value":4969,"marks":4970,"data":4971},"third-party AI risk assessment",[],{},{"nodeType":411,"value":4973,"marks":4974,"data":4975},";",[],{},{"nodeType":416,"data":4977,"content":4979},{"uri":4978},"https://www.dfs.ny.gov/industry-guidance/industry-letters/20260521-heightened-cybersecurity-risks-assoc-with-frontier-ai-models",[4980,4984],{"nodeType":411,"value":4981,"marks":4982,"data":4983}," ",[],{},{"nodeType":411,"value":4985,"marks":4986,"data":4988},"frontier AI model defenses",[4987],{"type":424},{},{"nodeType":411,"value":29,"marks":4990,"data":4991},[],{},{"nodeType":2787,"data":4993,"content":4994},{},[4995],{"nodeType":407,"data":4996,"content":4997},{},[4998,5002,5009,5013,5020,5023,5030],{"nodeType":411,"value":4999,"marks":5000,"data":5001},"Phased 2023–2025; AI-specific guidance issued ",[],{},{"nodeType":416,"data":5003,"content":5004},{"uri":4953},[5005],{"nodeType":411,"value":5006,"marks":5007,"data":5008},"Oct 2024",[],{},{"nodeType":411,"value":5010,"marks":5011,"data":5012},", ",[],{},{"nodeType":416,"data":5014,"content":5015},{"uri":4966},[5016],{"nodeType":411,"value":5017,"marks":5018,"data":5019},"Oct 2025",[],{},{"nodeType":411,"value":5010,"marks":5021,"data":5022},[],{},{"nodeType":416,"data":5024,"content":5025},{"uri":4978},[5026],{"nodeType":411,"value":5027,"marks":5028,"data":5029},"May 2026",[],{},{"nodeType":411,"value":29,"marks":5031,"data":5032},[],{},{"nodeType":2757,"data":5034,"content":5035},{},[5036,5058,5068,5078],{"nodeType":2787,"data":5037,"content":5038},{},[5039],{"nodeType":407,"data":5040,"content":5041},{},[5042,5045,5055],{"nodeType":411,"value":29,"marks":5043,"data":5044},[],{},{"nodeType":416,"data":5046,"content":5048},{"uri":5047},"https://www.ncsl.org/technology-and-communication/2025-state-privacy-legislation-tracker",[5049],{"nodeType":411,"value":5050,"marks":5051,"data":5054},"US State Privacy laws",[5052,5053],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":5056,"data":5057},[],{},{"nodeType":2787,"data":5059,"content":5060},{},[5061],{"nodeType":407,"data":5062,"content":5063},{},[5064],{"nodeType":411,"value":5065,"marks":5066,"data":5067},"US (20+ states)",[],{},{"nodeType":2787,"data":5069,"content":5070},{},[5071],{"nodeType":407,"data":5072,"content":5073},{},[5074],{"nodeType":411,"value":5075,"marks":5076,"data":5077},"Automated decision-making transparency, opt-out rights, and impact assessments; AI and children's data protections",[],{},{"nodeType":2787,"data":5079,"content":5080},{},[5081],{"nodeType":407,"data":5082,"content":5083},{},[5084],{"nodeType":411,"value":5085,"marks":5086,"data":5087},"Rolling 2024–2027 (CA, CO, CT leading)",[],{},{"nodeType":2757,"data":5089,"content":5090},{},[5091,5113,5123,5133],{"nodeType":2787,"data":5092,"content":5093},{},[5094],{"nodeType":407,"data":5095,"content":5096},{},[5097,5100,5110],{"nodeType":411,"value":29,"marks":5098,"data":5099},[],{},{"nodeType":416,"data":5101,"content":5103},{"uri":5102},"https://www.hhs.gov/hipaa/for-professionals/security/hipaa-security-rule-nprm/index.html",[5104],{"nodeType":411,"value":5105,"marks":5106,"data":5109},"HIPAA Security Rule",[5107,5108],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":5111,"data":5112},[],{},{"nodeType":2787,"data":5114,"content":5115},{},[5116],{"nodeType":407,"data":5117,"content":5118},{},[5119],{"nodeType":411,"value":5120,"marks":5121,"data":5122},"US healthcare",[],{},{"nodeType":2787,"data":5124,"content":5125},{},[5126],{"nodeType":407,"data":5127,"content":5128},{},[5129],{"nodeType":411,"value":5130,"marks":5131,"data":5132},"AI tools in mandatory technology asset inventory; mandatory encryption covering AI; AI-enhanced attack preparedness",[],{},{"nodeType":2787,"data":5134,"content":5135},{},[5136],{"nodeType":407,"data":5137,"content":5138},{},[5139,5142,5151],{"nodeType":411,"value":29,"marks":5140,"data":5141},[],{},{"nodeType":416,"data":5143,"content":5145},{"uri":5144},"https://www.hhs.gov/hipaa/for-professionals/security/hipaa-security-rule-nprm/factsheet/index.html",[5146],{"nodeType":411,"value":5147,"marks":5148,"data":5150},"Final rule",[5149],{"type":424},{},{"nodeType":411,"value":5152,"marks":5153,"data":5154}," expected 2026",[],{},{"nodeType":2757,"data":5156,"content":5157},{},[5158,5180,5190,5212],{"nodeType":2787,"data":5159,"content":5160},{},[5161],{"nodeType":407,"data":5162,"content":5163},{},[5164,5167,5177],{"nodeType":411,"value":29,"marks":5165,"data":5166},[],{},{"nodeType":416,"data":5168,"content":5170},{"uri":5169},"https://www.legislation.gov.uk/ukpga/2025/18",[5171],{"nodeType":411,"value":5172,"marks":5173,"data":5176},"UK Data (Use and Access) Act",[5174,5175],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":5178,"data":5179},[],{},{"nodeType":2787,"data":5181,"content":5182},{},[5183],{"nodeType":407,"data":5184,"content":5185},{},[5186],{"nodeType":411,"value":5187,"marks":5188,"data":5189},"UK",[],{},{"nodeType":2787,"data":5191,"content":5192},{},[5193],{"nodeType":407,"data":5194,"content":5195},{},[5196,5200,5208],{"nodeType":411,"value":5197,"marks":5198,"data":5199},"Reformed ",[],{},{"nodeType":416,"data":5201,"content":5203},{"uri":5202},"https://www.legislation.gov.uk/ukpga/2025/18/section/80",[5204],{"nodeType":411,"value":5205,"marks":5206,"data":5207},"automated decision-making rules",[],{},{"nodeType":411,"value":5209,"marks":5210,"data":5211}," (new Arts. 22A-22D UK GDPR): meaningful information about decisions, right to make representations, human intervention and contestation rights; stricter controls for special category data; new complaints-handling duty with 30-day response clock (from June 2026)",[],{},{"nodeType":2787,"data":5213,"content":5214},{},[5215],{"nodeType":407,"data":5216,"content":5217},{},[5218],{"nodeType":411,"value":5219,"marks":5220,"data":5221},"Main provisions Feb 2026; complaints duty June 2026",[],{},{"nodeType":431,"data":5223,"content":5227},{"target":5224},{"sys":5225},{"id":5226,"type":436,"linkType":437},"1J7nJKJ5XDLLiicX9cD4H1",[],{"nodeType":407,"data":5229,"content":5230},{},[5231],{"nodeType":411,"value":5232,"marks":5233,"data":5234},"Even if your organization isn't yet subject to these specific regulations, the direction of travel matters. The EU has a track record of setting global regulatory standards: GDPR reshaped data privacy practices worldwide, and the Digital Markets Act is influencing antitrust enforcement well beyond European borders.",[],{},{"nodeType":407,"data":5236,"content":5237},{},[5238],{"nodeType":411,"value":5239,"marks":5240,"data":5241},"The EU AI Act is the world's first comprehensive AI law, and the pattern of obligation categories it establishes is already visible in NYDFS guidance, US state privacy legislation, and the UK's reformed automated decision-making framework. Organizations that build the operational foundations to meet these obligations now will be ahead of whatever comes next, regardless of jurisdiction.",[],{},{"nodeType":446,"data":5243,"content":5244},{},[],{"nodeType":450,"data":5246,"content":5247},{},[5248],{"nodeType":411,"value":5249,"marks":5250,"data":5252},"Five obligation categories appear across frameworks",[5251],{"type":457},{},{"nodeType":407,"data":5254,"content":5255},{},[5256],{"nodeType":411,"value":5257,"marks":5258,"data":5259},"Across these frameworks, the AI-specific obligations cluster into five categories. Individual regulations word them differently and scope them to different sectors, but the compliance actions they require are largely the same.",[],{},{"nodeType":460,"data":5261,"content":5262},{},[5263],{"nodeType":411,"value":5264,"marks":5265,"data":5267},"1. AI inventory and classification",[5266],{"type":457},{},{"nodeType":407,"data":5269,"content":5270},{},[5271],{"nodeType":411,"value":5272,"marks":5273,"data":5274},"You can't classify AI systems by risk level if you don't know which ones your employees are using. Multiple regulations now require organizations to maintain a complete inventory of AI tools in their environment — whether as part of risk classification, asset management, or third-party risk registers.",[],{},{"nodeType":431,"data":5276,"content":5280},{"target":5277},{"sys":5278},{"id":5279,"type":436,"linkType":437},"6MEapKaazFTulp7Ql0m7H1",[],{"nodeType":431,"data":5282,"content":5285},{"target":5283},{"sys":5284},{"id":3773,"type":436,"linkType":437},[],{"nodeType":460,"data":5287,"content":5288},{},[5289],{"nodeType":411,"value":5290,"marks":5291,"data":5293},"2. AI literacy and employee guidance",[5292],{"type":457},{},{"nodeType":407,"data":5295,"content":5296},{},[5297,5301,5306],{"nodeType":411,"value":5298,"marks":5299,"data":5300},"Regulators increasingly expect organizations to demonstrate that employees understand the AI tools they use — not through annual training alone, but through continuous, contextual guidance at the point of interaction. Several frameworks now require auditable evidence that staff have been educated about AI risks and acceptable use policies. The common thread is the need for ",[],{},{"nodeType":411,"value":5302,"marks":5303,"data":5305},"ongoing",[5304],{"type":457},{},{"nodeType":411,"value":5307,"marks":5308,"data":5309}," education, not as a one-off compliance exercise, but continuously at the point of interaction.",[],{},{"nodeType":460,"data":5311,"content":5312},{},[5313],{"nodeType":411,"value":5314,"marks":5315,"data":5317},"3. AI data governance and exposure control",[5316],{"type":457},{},{"nodeType":407,"data":5319,"content":5320},{},[5321],{"nodeType":411,"value":5322,"marks":5323,"data":5324},"Regulations are converging on the requirement for controls over what data enters AI tools. This includes sensitive personal data, health data, and data subject to automated decision-making. Organizations need to know where personal data is being processed by AI and have mechanisms to prevent unauthorized exposure.",[],{},{"nodeType":460,"data":5326,"content":5327},{},[5328],{"nodeType":411,"value":5329,"marks":5330,"data":5332},"4. AI-resistant authentication and phishing defense",[5331],{"type":457},{},{"nodeType":407,"data":5334,"content":5335},{},[5336],{"nodeType":411,"value":5337,"marks":5338,"data":5339},"AI is making phishing attacks more convincing and harder to detect through traditional means. Several frameworks now require authentication methods that can withstand AI-enhanced attacks, specifically naming phishing-resistant options like digital certificates and security keys over SMS or voice-based authentication. Beyond authentication, organizations need defenses against AI-powered phishing that bypasses the lure-quality signals users were trained to spot.",[],{},{"nodeType":431,"data":5341,"content":5345},{"target":5342},{"sys":5343},{"id":5344,"type":436,"linkType":437},"6v3l0lGH6twfYi2JaM5fKt",[],{"nodeType":460,"data":5347,"content":5348},{},[5349],{"nodeType":411,"value":5350,"marks":5351,"data":5353},"5. Third-party AI risk and supply chain governance",[5352],{"type":457},{},{"nodeType":407,"data":5355,"content":5356},{},[5357],{"nodeType":411,"value":5358,"marks":5359,"data":5360},"Employees adopt AI tools faster than procurement can track them, and each one that connects to corporate systems via OAuth creates a persistent trust relationship. Regulators now require organizations to know which third-party AI services they depend on, what permissions those services hold, and whether they introduce concentration risk. ",[],{},{"nodeType":431,"data":5362,"content":5366},{"target":5363},{"sys":5364},{"id":5365,"type":436,"linkType":437},"7xx2yYRJXBY55qTqBTTZcp",[],{"nodeType":446,"data":5368,"content":5369},{},[],{"nodeType":450,"data":5371,"content":5372},{},[5373],{"nodeType":411,"value":5374,"marks":5375,"data":5377},"How the regulations will be enforced",[5376],{"type":457},{},{"nodeType":407,"data":5379,"content":5380},{},[5381,5385,5393],{"nodeType":411,"value":5382,"marks":5383,"data":5384},"The consequences extend well beyond fines. EU AI Act penalties reach ",[],{},{"nodeType":416,"data":5386,"content":5388},{"uri":5387},"https://artificialintelligenceact.eu/article/99/",[5389],{"nodeType":411,"value":5390,"marks":5391,"data":5392},"€35 million or 7% of global turnover",[],{},{"nodeType":411,"value":5394,"marks":5395,"data":5396}," for prohibited practices, but the operational impact may bite harder: non-compliant AI systems cannot be placed on the EU market, and providers bear direct responsibility for conformity under Articles 16 and 26 — meaning the CISO who signed off on an AI deployment that turns out to be non-compliant has personal exposure, not just a budget line item.",[],{},{"nodeType":407,"data":5398,"content":5399},{},[5400,5404,5413],{"nodeType":411,"value":5401,"marks":5402,"data":5403},"Italy's implementation law (",[],{},{"nodeType":416,"data":5405,"content":5407},{"uri":5406},"https://www.nortonrosefulbright.com/en/knowledge/publications/9bfedfea/italy-enacts-law-no-132-2025-on-artificial-intelligence-sector-rules-and-next-steps",[5408],{"nodeType":411,"value":5409,"marks":5410,"data":5412},"Law No. 132/2025",[5411],{"type":424},{},{"nodeType":411,"value":5414,"marks":5415,"data":5416},") goes further, introducing criminal penalties including imprisonment for AI-related offenses like deepfake dissemination.",[],{},{"nodeType":407,"data":5418,"content":5419},{},[5420,5424,5432],{"nodeType":411,"value":5421,"marks":5422,"data":5423},"NYDFS penalties accumulate at $2,500 per day per violation, and the regulator has been aggressive: it levied ",[],{},{"nodeType":416,"data":5425,"content":5427},{"uri":5426},"https://pushsecurity.com/blog/what-the-expansion-of-nydfs-nycrr-part-500-means-for-mfa-compliance/",[5428],{"nodeType":411,"value":5429,"marks":5430,"data":5431},"$14 million in fines",[],{},{"nodeType":411,"value":5433,"marks":5434,"data":5435}," from companies with inadequate MFA. CISOs sign annual compliance certifications under §500.17 where false certification carries personal liability.",[],{},{"nodeType":407,"data":5437,"content":5438},{},[5439],{"nodeType":411,"value":5440,"marks":5441,"data":5442},"The UK's Data (Use and Access) Act preserves ICO enforcement powers with fines up to £17.5 million or 4% of global turnover, and introduces a new statutory right for individuals to complain directly to controllers about automated decisions, with a 30-day response clock.",[],{},{"nodeType":446,"data":5444,"content":5445},{},[],{"nodeType":450,"data":5447,"content":5448},{},[5449],{"nodeType":411,"value":5450,"marks":5451,"data":5453},"Where Push maps to these obligations",[5452],{"type":457},{},{"nodeType":407,"data":5455,"content":5456},{},[5457],{"nodeType":411,"value":5458,"marks":5459,"data":5460},"The five obligation categories above map to specific Push capabilities, some directly, others as supporting evidence. Push's relevance to AI regulation isn't a new product direction. The same capabilities that security teams already use for shadow SaaS discovery, phishing defense, and identity posture hardening are what compliance teams need to demonstrate AI governance.",[],{},{"nodeType":460,"data":5462,"content":5463},{},[5464,5469],{"nodeType":411,"value":5465,"marks":5466,"data":5468},"AI inventory and shadow AI discovery.",[5467],{"type":457},{},{"nodeType":411,"value":4981,"marks":5470,"data":5471},[],{},{"nodeType":407,"data":5473,"content":5474},{},[5475],{"nodeType":411,"value":5476,"marks":5477,"data":5478},"Push identifies every AI app, AI browser extension, and AI OAuth integration in use across the organization, not from network traffic patterns or procurement records, but from actual observed usage in the browser.",[],{},{"nodeType":460,"data":5480,"content":5481},{},[5482,5487],{"nodeType":411,"value":5483,"marks":5484,"data":5486},"AI usage policy enforcement and literacy evidence.",[5485],{"type":457},{},{"nodeType":411,"value":4981,"marks":5488,"data":5489},[],{},{"nodeType":407,"data":5491,"content":5492},{},[5493],{"nodeType":411,"value":5494,"marks":5495,"data":5496},"Push's custom app banners deliver contextual policy guidance the moment an employee accesses an AI tool: linking to approved usage policies, data handling guidelines, or approved alternatives. Banners are fully customizable: they can include specific instructions, link to AI policy documents or approved alternatives, and messages from the security team tailored to the tool or user group. ",[],{},{"nodeType":431,"data":5498,"content":5502},{"target":5499},{"sys":5500},{"id":5501,"type":436,"linkType":437},"4bt65QXDiyTi1eq7wnbHUh",[],{"nodeType":460,"data":5504,"content":5505},{},[5506,5511],{"nodeType":411,"value":5507,"marks":5508,"data":5510},"AI data exposure controls.",[5509],{"type":457},{},{"nodeType":411,"value":4981,"marks":5512,"data":5513},[],{},{"nodeType":407,"data":5515,"content":5516},{},[5517],{"nodeType":411,"value":5518,"marks":5519,"data":5520},"Push observes what users type, paste, and upload into AI tools, and can apply real-time controls, warning or blocking when sensitive patterns are detected. This is browser-layer DLP scoped to the AI interaction surface: it won't replace a dedicated DLP platform, but it closes the specific gap that most DLP tools miss because they lack visibility into browser-based AI interactions. Push provides the detection and enforcement layer at the point where the data actually leaves the organization.",[],{},{"nodeType":460,"data":5522,"content":5523},{},[5524,5529],{"nodeType":411,"value":5525,"marks":5526,"data":5528},"MFA verification and phishing defense.",[5527],{"type":457},{},{"nodeType":411,"value":4981,"marks":5530,"data":5531},[],{},{"nodeType":407,"data":5533,"content":5534},{},[5535],{"nodeType":411,"value":5536,"marks":5537,"data":5538},"Push detects where MFA is missing and identifies the type of MFA in use, directly supporting the push toward phishing-resistant authentication methods.",[],{},{"nodeType":407,"data":5540,"content":5541},{},[5542],{"nodeType":411,"value":5543,"marks":5544,"data":5545},"Push's behavioral phishing detection stops AiTM phishing, credential harvesting, device code phishing, and ClickFix attacks because Push detects malicious behavior in the browser, making it effective against even AI-powered phishing attacks, or those that are delivered over traditionally unmonitored channels such as search engines, social media, or even via phone call.",[],{},{"nodeType":431,"data":5547,"content":5551},{"target":5548},{"sys":5549},{"id":5550,"type":436,"linkType":437},"3hqv1nql8FvB8j7uRiddqB",[],{"nodeType":460,"data":5553,"content":5554},{},[5555,5560],{"nodeType":411,"value":5556,"marks":5557,"data":5559},"Third-party AI risk visibility.",[5558],{"type":457},{},{"nodeType":411,"value":4981,"marks":5561,"data":5562},[],{},{"nodeType":407,"data":5564,"content":5565},{},[5566],{"nodeType":411,"value":5567,"marks":5568,"data":5569},"Push maps exactly which AI services employees have accessed and used, connected to other business apps via OAuth, what permissions those integrations hold, and who authorized them. This surfaces the AI providers that procurement never approved but employees adopted anyway, before they become a compliance finding or a breach vector.",[],{},{"nodeType":446,"data":5571,"content":5572},{},[],{"nodeType":450,"data":5574,"content":5575},{},[5576],{"nodeType":411,"value":5577,"marks":5578,"data":5580},"The compliance gap is an observability gap",[5579],{"type":457},{},{"nodeType":407,"data":5582,"content":5583},{},[5584],{"nodeType":411,"value":5585,"marks":5586,"data":5587},"The common failure mode across all five obligation categories is the same: the organization has a policy but can't demonstrate enforcement, because the tooling that would provide evidence operates at the wrong layer. IdP logs show managed authentication but not shadow AI logins. Network tools see traffic to AI domains but not the OAuth consent grants or the data in the clipboard. Annual training records exist but can't prove that an employee received guidance at the point of AI interaction.",[],{},{"nodeType":407,"data":5589,"content":5590},{},[5591],{"nodeType":411,"value":5592,"marks":5593,"data":5594},"Browser-layer telemetry closes each of these gaps because it's where the regulated activity actually happens, and where (with Push) you can observe and control it too.",[],{},{"nodeType":407,"data":5596,"content":5597},{},[5598],{"nodeType":411,"value":5599,"marks":5600,"data":5601},"The regulations covered here are the current landscape, but they aren't the final one. AI governance requirements are accelerating: NIST's AI cybersecurity framework profile is expected this summer, CISA's Five Eyes agentic AI guidance landed in May, and EU member states are still building out their national enforcement regimes.",[],{},{"nodeType":431,"data":5603,"content":5607},{"target":5604},{"sys":5605},{"id":5606,"type":436,"linkType":437},"OThPeKuFnpoo1e1FAGsFP",[],{"nodeType":446,"data":5609,"content":5610},{},[],{"nodeType":407,"data":5612,"content":5613},{},[5614],{"nodeType":411,"value":1086,"marks":5615,"data":5616},[],{},{"nodeType":407,"data":5618,"content":5619},{},[5620],{"nodeType":411,"value":1093,"marks":5621,"data":5622},[],{},{"nodeType":407,"data":5624,"content":5625},{},[5626,5629,5636],{"nodeType":411,"value":29,"marks":5627,"data":5628},[],{},{"nodeType":416,"data":5630,"content":5631},{"uri":2055},[5632],{"nodeType":411,"value":1107,"marks":5633,"data":5635},[5634],{"type":424},{},{"nodeType":411,"value":29,"marks":5637,"data":5638},[],{},"AI regulation is here: how browser visibility and control can achieve compliance","AI regulations across the US, EU, and UK are converging on obligations that most organizations can't meet without browser visibility into AI tool use.","2026-06-02T00:00:00.000Z","browser-visibility-and-control-can-achieve-ai-compliance",{"items":5644},[5645,5649],{"sys":5646,"name":5648},{"id":5647},"1gZi8NrRy2v9OqPV7C4dwD","Risk management",{"sys":5650,"name":5652},{"id":5651},"3pjES4THCIfSAwhGdNwBcy","Browser security",{"items":5654},[5655],{"fullName":5656,"firstName":5657,"jobTitle":5658,"profilePicture":5659},"John Creaton","John","Head of Legal",{"url":5660},"https://images.ctfassets.net/y1cdw1ablpvd/ykgZqhGCFFxufznVsqTiM/6bd977c68dd504642f0064bdb90ebdee/1774636973277.jpeg",{"__typename":1214,"sys":5662,"content":5664,"title":6580,"synopsis":6581,"hashTags":62,"publishedDate":5641,"slug":6582,"tagsCollection":6583,"authorsCollection":6589},{"id":5663},"I5SoVIYsYVgutpLIzZRpC",{"json":5665},{"nodeType":403,"data":5666,"content":5667},{},[5668,5675,5682,5703,5710,5717,5720,5728,5735,5742,5765,5772,5779,5785,5788,5796,5803,5809,5816,5824,5855,5874,5880,5888,5895,5901,5919,5927,5934,5964,5970,5985,5988,5996,6003,6008,6024,6031,6038,6050,6070,6077,6084,6092,6099,6118,6124,6131,6137,6143,6146,6154,6161,6168,6231,6238,6245,6252,6259,6275,6282,6289,6296,6303,6310,6317,6324,6331,6338,6345,6352,6359,6366,6369,6377,6384,6396,6403,6410,6417,6424,6547,6553,6559,6562],{"nodeType":407,"data":5669,"content":5670},{},[5671],{"nodeType":411,"value":5672,"marks":5673,"data":5674},"When is a fork not a fork? When it's a browser security platform built to solve both problems of the AI era.",[],{},{"nodeType":407,"data":5676,"content":5677},{},[5678],{"nodeType":411,"value":5679,"marks":5680,"data":5681},"Many security leaders are rightly worried about two big problems in the age of AI: AI-enabled attacks targeting their employees via the browser; and employees introducing the risk of data loss through their use of AI tools.",[],{},{"nodeType":407,"data":5683,"content":5684},{},[5685,5690,5694,5699],{"nodeType":411,"value":5686,"marks":5687,"data":5689},"For security teams researching browser-based solutions to these challenges, the decision at first looks like a fork in the road: ",[5688],{"type":457},{},{"nodeType":411,"value":5691,"marks":5692,"data":5693},"Choose a solution that's purpose-built to detect and respond to modern browser-based attacks like AI-enabled phish kits, ClickFix and other *Fix-style attacks, malicious browser extensions, device code phishing, and others; ",[],{},{"nodeType":411,"value":5695,"marks":5696,"data":5698},"or",[5697],{"type":1822},{},{"nodeType":411,"value":5700,"marks":5701,"data":5702}," select an AI governance tool to enforce sensible policies for sensitive data in the browser.",[],{},{"nodeType":407,"data":5704,"content":5705},{},[5706],{"nodeType":411,"value":5707,"marks":5708,"data":5709},"Push solves both of these problems. One platform, one SKU.",[],{},{"nodeType":407,"data":5711,"content":5712},{},[5713],{"nodeType":411,"value":5714,"marks":5715,"data":5716},"In this article, we'll take a look at the two big AI security and data governance problems that security teams are facing and outline how Push solves them in a single solution. We’ll cover what questions to ask as you evaluate browser security solutions, and describe Push's focus on providing foundational telemetry, detections, and controls that allow you to answer the question “What actually happened here?” not just “What policy was violated?”",[],{},{"nodeType":446,"data":5718,"content":5719},{},[],{"nodeType":450,"data":5721,"content":5722},{},[5723],{"nodeType":411,"value":5724,"marks":5725,"data":5727},"The AI risks every security team is now responsible for",[5726],{"type":457},{},{"nodeType":407,"data":5729,"content":5730},{},[5731],{"nodeType":411,"value":5732,"marks":5733,"data":5734},"AI is an amplifier, for adversaries and for your employees. Whatever they could do before, they can now do faster, more powerfully, and at scale.",[],{},{"nodeType":407,"data":5736,"content":5737},{},[5738],{"nodeType":411,"value":5739,"marks":5740,"data":5741},"The two risks that every security team now must manage: ",[],{},{"nodeType":1038,"data":5743,"content":5744},{},[5745,5755],{"nodeType":1042,"data":5746,"content":5747},{},[5748],{"nodeType":407,"data":5749,"content":5750},{},[5751],{"nodeType":411,"value":5752,"marks":5753,"data":5754},"AI is making browser-based attacks faster, cheaper, and harder to detect.",[],{},{"nodeType":1042,"data":5756,"content":5757},{},[5758],{"nodeType":407,"data":5759,"content":5760},{},[5761],{"nodeType":411,"value":5762,"marks":5763,"data":5764},"Employee AI adoption is creating data exposure faster than security teams can respond.",[],{},{"nodeType":407,"data":5766,"content":5767},{},[5768],{"nodeType":411,"value":5769,"marks":5770,"data":5771},"Both of these challenges intersect in the same place: The browser. It's the place where adversaries target employees with modern attacks designed to accomplish account takeover and data exfiltration. It's also the place where workers discover and use new AI-enabled apps and introduce risk into the business in the form of data loss, shadow apps, risky browser extensions, and shadow integrations.",[],{},{"nodeType":407,"data":5773,"content":5774},{},[5775],{"nodeType":411,"value":5776,"marks":5777,"data":5778},"To address both problems, security teams need visibility and control in the browser.",[],{},{"nodeType":431,"data":5780,"content":5784},{"target":5781},{"sys":5782},{"id":5783,"type":436,"linkType":437},"1U2Hmn4XrFpdcxyjxY3aCc",[],{"nodeType":446,"data":5786,"content":5787},{},[],{"nodeType":450,"data":5789,"content":5790},{},[5791],{"nodeType":411,"value":5792,"marks":5793,"data":5795},"How AI is transforming attacks",[5794],{"type":457},{},{"nodeType":407,"data":5797,"content":5798},{},[5799],{"nodeType":411,"value":5800,"marks":5801,"data":5802},"On the adversary side of the equation, adversaries are using AI tooling to rapidly iterate on new attack types or new iterations of existing browser-based TTPs that target employees to achieve account or endpoint compromise — usually with the end goal of harvesting valuable corporate identities in order to exfiltrate data or hold it for ransom.",[],{},{"nodeType":431,"data":5804,"content":5808},{"target":5805},{"sys":5806},{"id":5807,"type":436,"linkType":437},"G8xv1seFz1wJnY5HpfV6z",[],{"nodeType":407,"data":5810,"content":5811},{},[5812],{"nodeType":411,"value":5813,"marks":5814,"data":5815},"AI is changing attacks in three key ways.",[],{},{"nodeType":460,"data":5817,"content":5818},{},[5819],{"nodeType":411,"value":5820,"marks":5821,"data":5823},"AI has supercharged the iteration and evolution of adversary tools and techniques",[5822],{"type":457},{},{"nodeType":407,"data":5825,"content":5826},{},[5827,5831,5839,5843,5851],{"nodeType":411,"value":5828,"marks":5829,"data":5830},"Attackers are using the same AI capabilities as any other engineer who wants to multiply their output. That translates to an array of new attack techniques: multiple increasingly sophisticated variations of the ",[],{},{"nodeType":416,"data":5832,"content":5833},{"uri":1546},[5834],{"nodeType":411,"value":5835,"marks":5836,"data":5838},"ClickFix-style attacks",[5837],{"type":424},{},{"nodeType":411,"value":5840,"marks":5841,"data":5842}," that use social engineering techniques to get users to unknowingly install malware via malicious scripts; as well as creative ",[],{},{"nodeType":416,"data":5844,"content":5845},{"uri":1580},[5846],{"nodeType":411,"value":5847,"marks":5848,"data":5850},"exploitation of device codes",[5849],{"type":424},{},{"nodeType":411,"value":5852,"marks":5853,"data":5854},", a legitimate authentication mechanism, that allows attackers to phish access post-authentication.",[],{},{"nodeType":407,"data":5856,"content":5857},{},[5858,5862,5870],{"nodeType":411,"value":5859,"marks":5860,"data":5861},"Device code phishing in particular demonstrates the rapid growth of new techniques, with early documented appearances of the TTP occurring in 2024, and by early the next year, the method had been packaged as a PhaaS offering with GPT-enhanced spear-phishing and customized landing pages. The ",[],{},{"nodeType":416,"data":5863,"content":5865},{"uri":5864},"https://www.huntress.com/blog/device-code-phishing-ai-mfa-bypass",[5866],{"nodeType":411,"value":5867,"marks":5868,"data":5869},"campaign",[],{},{"nodeType":411,"value":5871,"marks":5872,"data":5873}," targeted more than 340 organizations across five countries in March 2026, using personalized AI-generated lures at a scale that would have been impractical to produce manually.",[],{},{"nodeType":431,"data":5875,"content":5879},{"target":5876},{"sys":5877},{"id":5878,"type":436,"linkType":437},"eNUpU2GtGOcXRrHBKHnLN",[],{"nodeType":460,"data":5881,"content":5882},{},[5883],{"nodeType":411,"value":5884,"marks":5885,"data":5887},"Infrastructure-based detections are increasingly degraded by AI-enabled approaches",[5886],{"type":457},{},{"nodeType":407,"data":5889,"content":5890},{},[5891],{"nodeType":411,"value":5892,"marks":5893,"data":5894},"AI has also collapsed the cost and time it takes to build convincing phishing infrastructure: Attackers can vibecode a convincing phishing page in minutes, burn the domain, and regenerate another one before any blocklist updates. ",[],{},{"nodeType":431,"data":5896,"content":5900},{"target":5897},{"sys":5898},{"id":5899,"type":436,"linkType":437},"2obvOhMWjy64h94tEIbx04",[],{"nodeType":407,"data":5902,"content":5903},{},[5904,5908,5915],{"nodeType":411,"value":5905,"marks":5906,"data":5907},"The impact on IOC-based detections that rely on infrastructure elements is severe: When elements constantly change, every phishing attack is essentially a zero-day. Complicating the picture further is the increasing use of legitimate cloud platforms like ",[],{},{"nodeType":416,"data":5909,"content":5910},{"uri":3081},[5911],{"nodeType":411,"value":3084,"marks":5912,"data":5914},[5913],{"type":424},{},{"nodeType":411,"value":5916,"marks":5917,"data":5918},", Cloudflare Workers, and Vercel, which attackers use to host and dynamically rotate attack infrastructure.",[],{},{"nodeType":460,"data":5920,"content":5921},{},[5922],{"nodeType":411,"value":5923,"marks":5924,"data":5926},"AI is making it easier to build and run omni-channel campaigns",[5925],{"type":457},{},{"nodeType":407,"data":5928,"content":5929},{},[5930],{"nodeType":411,"value":5931,"marks":5932,"data":5933},"Push researchers have written extensively over the last year about malvertising campaigns that serve malicious pages to users via search engine results, enticing them to visit sites designed to steal credentials or deliver malware. ",[],{},{"nodeType":407,"data":5935,"content":5936},{},[5937,5941,5950,5954,5960],{"nodeType":411,"value":5938,"marks":5939,"data":5940},"We've tracked ",[],{},{"nodeType":416,"data":5942,"content":5944},{"uri":5943},"https://pushsecurity.com/blog/cyber-criminal-ecosystem-analysis/",[5945],{"nodeType":411,"value":5946,"marks":5947,"data":5949},"sustained campaigns",[5948],{"type":424},{},{"nodeType":411,"value":5951,"marks":5952,"data":5953}," impersonating Onfido, TradingView, Ahrefs, Semrush, and others. These campaigns are part of a self-reinforcing criminal ecosystem: Malvertising campaigns paid for by stolen ad accounts, with credential theft that funds the next round of credential theft. And the recent ",[],{},{"nodeType":416,"data":5955,"content":5956},{"uri":783},[5957],{"nodeType":411,"value":786,"marks":5958,"data":5959},[],{},{"nodeType":411,"value":5961,"marks":5962,"data":5963}," campaign identified by Push shows how attackers are combining their abuse of AI tools of AI-assisted phishing page creation with malvertising, helping them to spin up lookalike pages quickly and cheaply to serve as convincing lures.",[],{},{"nodeType":431,"data":5965,"content":5969},{"target":5966},{"sys":5967},{"id":5968,"type":436,"linkType":437},"2Gwj25KBjClQ5u8uiEYuYR",[],{"nodeType":407,"data":5971,"content":5972},{},[5973,5977,5982],{"nodeType":411,"value":5974,"marks":5975,"data":5976},"These are just a few examples of how phishing has moved beyond the inbox, targeting users through malvertising, SEO poisoning, and social media DMs. Over the last year, Push researchers found that ",[],{},{"nodeType":411,"value":5978,"marks":5979,"data":5981},"1 in 3 payloads intercepted by the platform were sent outside of email",[5980],{"type":457},{},{"nodeType":411,"value":1933,"marks":5983,"data":5984},[],{},{"nodeType":446,"data":5986,"content":5987},{},[],{"nodeType":450,"data":5989,"content":5990},{},[5991],{"nodeType":411,"value":5992,"marks":5993,"data":5995},"How AI is creating risky employee behaviors ",[5994],{"type":457},{},{"nodeType":407,"data":5997,"content":5998},{},[5999],{"nodeType":411,"value":6000,"marks":6001,"data":6002},"Meanwhile, on the employee side of the equation, there are three other key concerns that security teams should be paying attention to when it comes to the risks associated with AI use.",[],{},{"nodeType":431,"data":6004,"content":6007},{"target":6005},{"sys":6006},{"id":3773,"type":436,"linkType":437},[],{"nodeType":460,"data":6009,"content":6010},{},[6011,6016,6019],{"nodeType":411,"value":6012,"marks":6013,"data":6015},"Data leaving the business via shadow AI",[6014],{"type":457},{},{"nodeType":411,"value":4981,"marks":6017,"data":6018},[],{},{"nodeType":411,"value":6020,"marks":6021,"data":6023},"and AI extensions",[6022],{"type":457},{},{"nodeType":407,"data":6025,"content":6026},{},[6027],{"nodeType":411,"value":6028,"marks":6029,"data":6030},"Employees are signing up to AI tools directly, beyond the bounds of procurement or security review. That means security teams can't see sensitive data going into LLMs — clipboard pastes of API keys, file uploads to coding assistants, customer data in uploaded spreadsheets, etc.",[],{},{"nodeType":407,"data":6032,"content":6033},{},[6034],{"nodeType":411,"value":6035,"marks":6036,"data":6037},"Most teams also don't have visibility of AI browser extensions, another avenue for data to leave the business. Extensions are also an attack surface in their own right, as previously benign extensions can be compromised by threat actors through account takeover of the extension developer.",[],{},{"nodeType":460,"data":6039,"content":6040},{},[6041,6046],{"nodeType":411,"value":6042,"marks":6043,"data":6045},"Employees using personal accounts on corporate AI app tenants",[6044],{"type":457},{},{"nodeType":411,"value":6047,"marks":6048,"data":6049}," ",[],{},{"nodeType":407,"data":6051,"content":6052},{},[6053,6057,6066],{"nodeType":411,"value":6054,"marks":6055,"data":6056},"The 2026 ",[],{},{"nodeType":416,"data":6058,"content":6060},{"uri":6059},"https://www.verizon.com/business/resources/reports/dbir/",[6061],{"nodeType":411,"value":6062,"marks":6063,"data":6065},"Verizon DBIR",[6064],{"type":424},{},{"nodeType":411,"value":6067,"marks":6068,"data":6069}," found that 67% of GenAI users on corporate devices are using non-corporate accounts, and our own data shows that 38% of file uploads to AI tools are made from shadow accounts rather than approved organizational ones.",[],{},{"nodeType":407,"data":6071,"content":6072},{},[6073],{"nodeType":411,"value":6074,"marks":6075,"data":6076},"That means a large number of employees in most organizations are using AI apps with personal accounts, outside of organizational data governance, retention policies, access controls, or basic security oversight. ",[],{},{"nodeType":407,"data":6078,"content":6079},{},[6080],{"nodeType":411,"value":6081,"marks":6082,"data":6083},"The compounding risk is that personal accounts are typically protected by weaker passwords, inconsistent MFA, and credential reuse from other personal services — meaning a compromise of the personal account could give an attacker access to corporate data and tools.",[],{},{"nodeType":460,"data":6085,"content":6086},{},[6087],{"nodeType":411,"value":6088,"marks":6089,"data":6091},"Shadow integrations between AI tools and corporate systems",[6090],{"type":457},{},{"nodeType":407,"data":6093,"content":6094},{},[6095],{"nodeType":411,"value":6096,"marks":6097,"data":6098},"App-to-app connections accomplished through OAuth are also proliferating faster than most teams can observe and review them. For the average organization, Push sees 17 unique AI app OAuth integrations connected just to Microsoft and Google corporate tenants.",[],{},{"nodeType":407,"data":6100,"content":6101},{},[6102,6105,6114],{"nodeType":411,"value":1769,"marks":6103,"data":6104},[],{},{"nodeType":416,"data":6106,"content":6108},{"uri":6107},"https://pushsecurity.com/blog/unpacking-the-vercel-breach/",[6109],{"nodeType":411,"value":6110,"marks":6111,"data":6113},"recent Vercel breach",[6112],{"type":424},{},{"nodeType":411,"value":6115,"marks":6116,"data":6117}," illustrates the risks of even a single OAuth connection from a compromised third-party AI SaaS provider. This isn't really a new AI threat so much as a shadow SaaS problem that's accelerating alongside AI adoption, given that AI apps are specifically designed to pull data from one system, analyze it in another, and present it in a third — with MCP connections now creating the same kind of persistent, permissioned access through an authentication protocol (OAuth) that most organizations have no process to review.",[],{},{"nodeType":431,"data":6119,"content":6123},{"target":6120},{"sys":6121},{"id":6122,"type":436,"linkType":437},"1t2jn4fLxMlH0adMyQqkXk",[],{"nodeType":407,"data":6125,"content":6126},{},[6127],{"nodeType":411,"value":6128,"marks":6129,"data":6130},"This is the same web of OAuth-connected apps that is being exposed at scale through AI tool integrations. For many organizations, AI tools are now the hub of modern activity that orchestrates and automates across the mesh of cloud apps, which adds a useful perspective on what's changed. ",[],{},{"nodeType":431,"data":6132,"content":6136},{"target":6133},{"sys":6134},{"id":6135,"type":436,"linkType":437},"6cRnPkGdwWXRWcct6LfMzo",[],{"nodeType":431,"data":6138,"content":6142},{"target":6139},{"sys":6140},{"id":6141,"type":436,"linkType":437},"5WQZNpnPETWeys1VqubVW",[],{"nodeType":446,"data":6144,"content":6145},{},[],{"nodeType":450,"data":6147,"content":6148},{},[6149],{"nodeType":411,"value":6150,"marks":6151,"data":6153},"What to ask when evaluating browser-based AI visibility and control solutions",[6152],{"type":457},{},{"nodeType":407,"data":6155,"content":6156},{},[6157],{"nodeType":411,"value":6158,"marks":6159,"data":6160},"When you're evaluating AI visibility and control platforms that operate in the browser, there are two lines of questioning that can be useful to unpack.",[],{},{"nodeType":407,"data":6162,"content":6163},{},[6164],{"nodeType":411,"value":6165,"marks":6166,"data":6167},"The first is the tactical basics: What use cases does the product cover, and how quickly will you see value? In this category, you'll likely be looking for:",[],{},{"nodeType":1038,"data":6169,"content":6170},{},[6171,6186,6201,6216],{"nodeType":1042,"data":6172,"content":6173},{},[6174],{"nodeType":407,"data":6175,"content":6176},{},[6177,6182],{"nodeType":411,"value":6178,"marks":6179,"data":6181},"Depth of visibility:",[6180],{"type":457},{},{"nodeType":411,"value":6183,"marks":6184,"data":6185}," Can the solution observe both corporate and personal account usage of AI apps? Does the solution work with all major browsers, including emerging AI browsers? Does the solution automatically classify AI apps and automatically discover shadow AI?",[],{},{"nodeType":1042,"data":6187,"content":6188},{},[6189],{"nodeType":407,"data":6190,"content":6191},{},[6192,6197],{"nodeType":411,"value":6193,"marks":6194,"data":6196},"Granularity of controls:",[6195],{"type":457},{},{"nodeType":411,"value":6198,"marks":6199,"data":6200}," Does the solution support visibility and control over clipboard interactions, allowing you to identify sensitive data strings like personal access tokens (PATs) or API keys? Does the solution allow you to set multiple enforcement modes (monitor, warn, block) and carve out exceptions for tools, teams and individuals where necessary? ",[],{},{"nodeType":1042,"data":6202,"content":6203},{},[6204],{"nodeType":407,"data":6205,"content":6206},{},[6207,6212],{"nodeType":411,"value":6208,"marks":6209,"data":6211},"Ease of deployment:",[6210],{"type":457},{},{"nodeType":411,"value":6213,"marks":6214,"data":6215}," How is the solution deployed? Browser extension-based solutions like Push can be deployed at scale in an hour. Solutions that require an endpoint agent or a complete browser replacement will be a heavier lift.",[],{},{"nodeType":1042,"data":6217,"content":6218},{},[6219],{"nodeType":407,"data":6220,"content":6221},{},[6222,6227],{"nodeType":411,"value":6223,"marks":6224,"data":6226},"Scope of coverage:",[6225],{"type":457},{},{"nodeType":411,"value":6228,"marks":6229,"data":6230}," Does the solution only enforce policy around AI usage, or does it also prevent AI-enabled attacks in the browser? ",[],{},{"nodeType":407,"data":6232,"content":6233},{},[6234],{"nodeType":411,"value":6235,"marks":6236,"data":6237},"The second set of questions is more about the underlying architectural choices a product has made, and how those translate into actionable intelligence for security teams — or where there may be blind spots. In this category, you will want to ask:",[],{},{"nodeType":460,"data":6239,"content":6240},{},[6241],{"nodeType":411,"value":6242,"marks":6243,"data":6244},"Does the tool capture AI interactions that didn’t trigger a policy violation — or only the ones it blocked?",[],{},{"nodeType":407,"data":6246,"content":6247},{},[6248],{"nodeType":411,"value":6249,"marks":6250,"data":6251},"This is the most useful diagnostic if you're focused on understanding the wider security meaning and impact of an AI interaction, not just whether it violated a policy. ",[],{},{"nodeType":407,"data":6253,"content":6254},{},[6255],{"nodeType":411,"value":6256,"marks":6257,"data":6258},"Enforcement-first tools record what they stopped: blocked uploads, attempted usage of unapproved apps, flagged file names, etc. ",[],{},{"nodeType":407,"data":6260,"content":6261},{},[6262,6266,6271],{"nodeType":411,"value":6263,"marks":6264,"data":6265},"That's useful for compliance reporting but incomplete for security investigation, because ",[],{},{"nodeType":411,"value":6267,"marks":6268,"data":6270},"the most significant events are often the ones that looked normal at the time",[6269],{"type":457},{},{"nodeType":411,"value":6272,"marks":6273,"data":6274},": A user whose behavior shifted gradually over weeks before a resignation. An approved AI browser extension that updates its permissions, putting it in risky territory. An OAuth consent grant that was technically permitted but shouldn't have been.",[],{},{"nodeType":407,"data":6276,"content":6277},{},[6278],{"nodeType":411,"value":6279,"marks":6280,"data":6281},"Ask whether the tool can collect user behavior telemetry, file upload and download activity, and AI usage logs for permitted events — not just policy violations — and whether that telemetry can be forwarded to your SIEM. ",[],{},{"nodeType":407,"data":6283,"content":6284},{},[6285],{"nodeType":411,"value":6286,"marks":6287,"data":6288},"One approach gives you an investigation tool. The other gives you compliance alerts without deeper context.",[],{},{"nodeType":460,"data":6290,"content":6291},{},[6292],{"nodeType":411,"value":6293,"marks":6294,"data":6295},"When an AI agent requests OAuth permissions to access your organization's data, does the tool capture the consent flow — what scopes were requested on which app, which user initiated the consent, and what was the outcome?",[],{},{"nodeType":407,"data":6297,"content":6298},{},[6299],{"nodeType":411,"value":6300,"marks":6301,"data":6302},"Most enforcement-first tools treat OAuth as a binary: approved app or blocked app. That was a reasonable model when OAuth grants were primarily app-to-app integrations managed by IT. It isn't sufficient for agentic AI.",[],{},{"nodeType":407,"data":6304,"content":6305},{},[6306],{"nodeType":411,"value":6307,"marks":6308,"data":6309},"AI agents request OAuth permissions to access organizational data on behalf of users. These are user-initiated consent grants that happen inside browser sessions, often with broad scopes, and frequently without security team awareness. The right tool needs to capture the consent event itself: what permissions were requested, what scopes were granted, who approved them, and what application received them. ",[],{},{"nodeType":407,"data":6311,"content":6312},{},[6313],{"nodeType":411,"value":6314,"marks":6315,"data":6316},"Ask whether the tool monitors OAuth consent flows across authorization servers, whether it can warn or block consent grants in real time based on policy, and whether that coverage extends to AI-enabled apps and MCP connections.",[],{},{"nodeType":460,"data":6318,"content":6319},{},[6320],{"nodeType":411,"value":6321,"marks":6322,"data":6323},"When a new browser attack technique emerges that no tool has a signature for, how long does it take the platform to detect it — and can you show a specific example?",[],{},{"nodeType":407,"data":6325,"content":6326},{},[6327],{"nodeType":411,"value":6328,"marks":6329,"data":6330},"Attackers are rotating infrastructure in hours and using AI to generate new lures and phishing pages at scale. A detection model built on blocklists, reputation feeds, and known-bad indicators is architecturally behind any novel technique because by the time the indicator appears on a feed, the attacker has already moved on.",[],{},{"nodeType":407,"data":6332,"content":6333},{},[6334],{"nodeType":411,"value":6335,"marks":6336,"data":6337},"Ask vendors to show you a specific detection that fired on a novel technique before the infrastructure appeared on any threat feed.",[],{},{"nodeType":460,"data":6339,"content":6340},{},[6341],{"nodeType":411,"value":6342,"marks":6343,"data":6344},"What browser telemetry reaches your SIEM — just alerts, or the underlying session data that makes those alerts investigable?",[],{},{"nodeType":407,"data":6346,"content":6347},{},[6348],{"nodeType":411,"value":6349,"marks":6350,"data":6351},"Ask to see a sample SIEM event from a real detection. Many browser security tools integrate with SIEMs, but the depth of what they forward varies a lot. ",[],{},{"nodeType":407,"data":6353,"content":6354},{},[6355],{"nodeType":411,"value":6356,"marks":6357,"data":6358},"Some send alert metadata that captures policy violations, timestamps, and involved users. Others forward a broader set of telemetry for deeper context — credential reuse, app logins, newly installed extensions, detected phishing kits, file uploads, clipboard activity, OAuth consent flows, file downloads, etc. ",[],{},{"nodeType":407,"data":6360,"content":6361},{},[6362],{"nodeType":411,"value":6363,"marks":6364,"data":6365},"The difference determines whether your SOC team can easily correlate signals from the browser-based tool with other layers of their stack and begin an investigation from the SIEM event itself — or whether they need to pivot back into the vendor's console for the actual evidence.",[],{},{"nodeType":446,"data":6367,"content":6368},{},[],{"nodeType":450,"data":6370,"content":6371},{},[6372],{"nodeType":411,"value":6373,"marks":6374,"data":6376},"AI visibility and control is a feature of the right browser security platform, not a separate purchase",[6375],{"type":457},{},{"nodeType":407,"data":6378,"content":6379},{},[6380],{"nodeType":411,"value":6381,"marks":6382,"data":6383},"Ultimately, the choice of browser platform for solving the two big problems of the AI era comes down to whether you need broader attack coverage and telemetry context in order to secure your organization, or whether a policy-based approach is enough. ",[],{},{"nodeType":407,"data":6385,"content":6386},{},[6387,6391],{"nodeType":411,"value":6388,"marks":6389,"data":6390},"Push treats the challenges of stopping AI-enabled attacks and providing visibility and control over AI usage as features that extend naturally from the platform's underlying architectural model: Rich browser-layer telemetry in ",[],{},{"nodeType":411,"value":6392,"marks":6393,"data":6395},"a single tool that helps security teams answer the question “What actually happened here?” not just “What policy was violated?”",[6394],{"type":457},{},{"nodeType":407,"data":6397,"content":6398},{},[6399],{"nodeType":411,"value":6400,"marks":6401,"data":6402},"This unified architecture matters because the AI control problem and the browser threat detection problem share a root cause: Security-relevant activity is happening inside browser sessions that most tools can't see. ",[],{},{"nodeType":407,"data":6404,"content":6405},{},[6406],{"nodeType":411,"value":6407,"marks":6408,"data":6409},"A standalone AI governance tool can tell you which AI apps are in use and whether employees violated a usage policy. It can't tell you whether the OAuth grant an AI agent just received was part of a broader pattern that includes credential entry on an unfamiliar domain, a clipboard paste from an internal document, and a login to a shadow SaaS app — all in the same session, all visible in the same telemetry stream. ",[],{},{"nodeType":407,"data":6411,"content":6412},{},[6413],{"nodeType":411,"value":6414,"marks":6415,"data":6416},"Separating AI governance from browser security means maintaining two tools that each only see half the picture. ",[],{},{"nodeType":460,"data":6418,"content":6419},{},[6420],{"nodeType":411,"value":6421,"marks":6422,"data":6423},"How Push can help",[],{},{"nodeType":1038,"data":6425,"content":6426},{},[6427,6450,6472,6494,6504,6514,6524],{"nodeType":1042,"data":6428,"content":6429},{},[6430],{"nodeType":407,"data":6431,"content":6432},{},[6433,6437,6446],{"nodeType":411,"value":6434,"marks":6435,"data":6436},"Block emerging ",[],{},{"nodeType":416,"data":6438,"content":6440},{"uri":6439},"https://pushsecurity.com/blog/introducing-the-browser-and-identity-attacks-matrix/",[6441],{"nodeType":411,"value":6442,"marks":6443,"data":6445},"browser-based attack techniques",[6444],{"type":424},{},{"nodeType":411,"value":6447,"marks":6448,"data":6449},", including AI-enabled phishing and quickly evolving *Fix-style attacks.",[],{},{"nodeType":1042,"data":6451,"content":6452},{},[6453],{"nodeType":407,"data":6454,"content":6455},{},[6456,6460,6468],{"nodeType":411,"value":6457,"marks":6458,"data":6459},"Benefit from Push's ",[],{},{"nodeType":416,"data":6461,"content":6462},{"uri":2667},[6463],{"nodeType":411,"value":6464,"marks":6465,"data":6467},"agentic detection pipeline",[6466],{"type":424},{},{"nodeType":411,"value":6469,"marks":6470,"data":6471},", which continuously hunts across customer environments to identify emerging threats and ship new detections.",[],{},{"nodeType":1042,"data":6473,"content":6474},{},[6475],{"nodeType":407,"data":6476,"content":6477},{},[6478,6481,6490],{"nodeType":411,"value":29,"marks":6479,"data":6480},[],{},{"nodeType":416,"data":6482,"content":6484},{"uri":6483},"https://pushsecurity.com/help/audience/engineering/rest-v1",[6485],{"nodeType":411,"value":6486,"marks":6487,"data":6489},"Stream telemetry",[6488],{"type":424},{},{"nodeType":411,"value":6491,"marks":6492,"data":6493}," to your SIEM for a wide variety of events, including attack detections; newly installed browser extensions or newly adopted apps; updates to extension permissions; file uploads and downloads; clipboard pastes; app logins; credential reuse; OAuth consents; and more.",[],{},{"nodeType":1042,"data":6495,"content":6496},{},[6497],{"nodeType":407,"data":6498,"content":6499},{},[6500],{"nodeType":411,"value":6501,"marks":6502,"data":6503},"Block file uploads and downloads.",[],{},{"nodeType":1042,"data":6505,"content":6506},{},[6507],{"nodeType":407,"data":6508,"content":6509},{},[6510],{"nodeType":411,"value":6511,"marks":6512,"data":6513},"Block clipboard pastes of sensitive data, with regex-based patterns you can define.",[],{},{"nodeType":1042,"data":6515,"content":6516},{},[6517],{"nodeType":407,"data":6518,"content":6519},{},[6520],{"nodeType":411,"value":6521,"marks":6522,"data":6523},"Monitor for or block unauthorized MCP connections.",[],{},{"nodeType":1042,"data":6525,"content":6526},{},[6527],{"nodeType":407,"data":6528,"content":6529},{},[6530,6534,6543],{"nodeType":411,"value":6531,"marks":6532,"data":6533},"Write your own ",[],{},{"nodeType":416,"data":6535,"content":6537},{"uri":6536},"https://pushsecurity.com/help/audience/engineering/resources/custom-detections",[6538],{"nodeType":411,"value":6539,"marks":6540,"data":6542},"custom YAML rules",[6541],{"type":424},{},{"nodeType":411,"value":6544,"marks":6545,"data":6546}," targeting specific elements of the page DOM, web requests and responses, HTTP headers such as cookies, and a lot more.",[],{},{"nodeType":407,"data":6548,"content":6549},{},[6550],{"nodeType":411,"value":29,"marks":6551,"data":6552},[],{},{"nodeType":431,"data":6554,"content":6558},{"target":6555},{"sys":6556},{"id":6557,"type":436,"linkType":437},"7AwQv7bLbARq6mdAgv7uGq",[],{"nodeType":446,"data":6560,"content":6561},{},[],{"nodeType":407,"data":6563,"content":6564},{},[6565,6569,6577],{"nodeType":411,"value":6566,"marks":6567,"data":6568},"If you'd like to learn more about Push, ",[],{},{"nodeType":416,"data":6570,"content":6571},{"uri":2055},[6572],{"nodeType":411,"value":6573,"marks":6574,"data":6576},"book a live demo",[6575],{"type":424},{},{"nodeType":411,"value":1933,"marks":6578,"data":6579},[],{},"Why you can't control AI without being in the browser","Why the right browser security tool makes a separate AI visibility and control purchase unnecessary — and how to decide what you actually need.","why-you-cant-control-ai-without-being-in-the-browser",{"items":6584},[6585,6587],{"sys":6586,"name":5652},{"id":5651},{"sys":6588,"name":5648},{"id":5647},{"items":6590},[6591],{"fullName":6592,"firstName":6593,"jobTitle":6594,"profilePicture":6595},"Kelly Davenport","Kelly","Product Team",{"url":6596},"https://images.ctfassets.net/y1cdw1ablpvd/1hi8bEuVfn5sF57LivAq6d/9a3b82426c697d765e2e450e33a18424/kelly_profile_pic.jpeg",{"__typename":1214,"sys":6598,"content":6600,"title":7832,"synopsis":7833,"hashTags":62,"publishedDate":7834,"slug":7835,"tagsCollection":7836,"authorsCollection":7842},{"id":6599},"6MoHWfQlVildcFYKSbfMcE",{"json":6601},{"nodeType":403,"data":6602,"content":6603},{},[6604,6620,6626,6633,6640,6646,6649,6657,6665,6684,6731,6737,6752,6755,6763,6770,6798,6839,6846,6849,6857,6865,6872,6878,6885,6888,6896,6903,6945,6981,6988,6991,6999,7006,7031,7038,7081,7088,7091,7099,7107,7152,7159,7165,7168,7176,7184,7217,7224,7230,7237,7240,7248,7256,7285,7292,7299,7306,7309,7317,7325,7332,7338,7345,7368,7397,7400,7408,7416,7423,7430,7433,7441,7504,7507,7515,7522,7813,7816],{"nodeType":407,"data":6605,"content":6606},{},[6607,6611,6616],{"nodeType":411,"value":6608,"marks":6609,"data":6610},"Browser security solutions are one of the most significant additions to the enterprise security stack in recent years — and the data shows it. The browser is where ",[],{},{"nodeType":411,"value":6612,"marks":6613,"data":6615},"85% of work now happens",[6614],{"type":457},{},{"nodeType":411,"value":6617,"marks":6618,"data":6619},", where AI tools are accessed, and where attackers increasingly choose to strike.",[],{},{"nodeType":431,"data":6621,"content":6625},{"target":6622},{"sys":6623},{"id":6624,"type":436,"linkType":437},"5P6PyFbn4EakRNlIWtNzyL",[],{"nodeType":407,"data":6627,"content":6628},{},[6629],{"nodeType":411,"value":6630,"marks":6631,"data":6632},"But browser security is a nascent category. Getting a clear picture of which solution is right for your team, and how to get the most out of it, isn't straightforward. Current solutions on the market serve a wide range of IT and security use cases, with varying degrees of depth and differentiation across them. Not all use cases are equal in terms of their security value, and not all of them are best addressed in the browser.",[],{},{"nodeType":407,"data":6634,"content":6635},{},[6636],{"nodeType":411,"value":6637,"marks":6638,"data":6639},"This article ranks the security problems that browser security solutions can address by the value they deliver: a combination of the risk reduction on offer, and the degree to which the browser is genuinely the best (or only) layer to solve the problem. ",[],{},{"nodeType":431,"data":6641,"content":6645},{"target":6642},{"sys":6643},{"id":6644,"type":436,"linkType":437},"6SJPvEHizSYk29lEvVVNj",[],{"nodeType":446,"data":6647,"content":6648},{},[],{"nodeType":450,"data":6650,"content":6651},{},[6652],{"nodeType":411,"value":6653,"marks":6654,"data":6656},"#1 — Account takeover prevention: detecting credential attacks across all vectors",[6655],{"type":457},{},{"nodeType":407,"data":6658,"content":6659},{},[6660],{"nodeType":411,"value":6661,"marks":6662,"data":6664},"Security value: Very high | Browser fit: Uniquely suited",[6663],{"type":457},{},{"nodeType":407,"data":6666,"content":6667},{},[6668,6672,6680],{"nodeType":411,"value":6669,"marks":6670,"data":6671},"Account takeover (ATO) is the dominant entry point for enterprise breaches: ",[],{},{"nodeType":416,"data":6673,"content":6675},{"uri":6674},"https://www.crowdstrike.com/en-gb/resources/infographics/identity-security-risk-review/",[6676],{"nodeType":411,"value":6677,"marks":6678,"data":6679},"80% of all modern breaches involve compromised or stolen identities",[],{},{"nodeType":411,"value":6681,"marks":6682,"data":6683},". The attack surface is far wider than most identity tooling can see: credential stuffing, password spraying, ghost logins (password-based fallback authentication that persists after SSO is configured), weak or reused credentials on shadow SaaS apps, and accounts where MFA was never enforced.",[],{},{"nodeType":407,"data":6685,"content":6686},{},[6687,6691,6699,6702,6707,6711,6716,6720,6727],{"nodeType":411,"value":6688,"marks":6689,"data":6690},"According to ",[],{},{"nodeType":416,"data":6692,"content":6694},{"uri":6693},"https://cf-assets.www.cloudflare.com/slt3lc6tev37/sWDBUMNVtEJB9ZFLt1dUU/8d69e92de2edfb3bf59e7d21d57e7e1a/Cloudflare-2026-threat-report.pdf",[6695],{"nodeType":411,"value":6696,"marks":6697,"data":6698},"Cloudflare's 2026 Threat Report",[],{},{"nodeType":411,"value":5010,"marks":6700,"data":6701},[],{},{"nodeType":411,"value":6703,"marks":6704,"data":6706},"63% of all human logins involve credentials already compromised elsewhere",[6705],{"type":457},{},{"nodeType":411,"value":6708,"marks":6709,"data":6710},", and ",[],{},{"nodeType":411,"value":6712,"marks":6713,"data":6715},"94% of all login attempts originate from bots",[6714],{"type":457},{},{"nodeType":411,"value":6717,"marks":6718,"data":6719},". The ",[],{},{"nodeType":416,"data":6721,"content":6723},{"uri":6722},"https://pushsecurity.com/blog/snowflake-retro/",[6724],{"nodeType":411,"value":1777,"marks":6725,"data":6726},[],{},{"nodeType":411,"value":6728,"marks":6729,"data":6730}," — 165+ organizations compromised, 1 billion+ records stolen — was powered almost entirely by ghost logins: accounts missing MFA that were susceptible to credential stuffing. It's particularly telling that 80% of the accounts impacted had prior breach exposure.",[],{},{"nodeType":431,"data":6732,"content":6736},{"target":6733},{"sys":6734},{"id":6735,"type":436,"linkType":437},"HbZ66kp5DiAZtwNGFJK7d",[],{"nodeType":407,"data":6738,"content":6739},{},[6740,6744,6749],{"nodeType":411,"value":6741,"marks":6742,"data":6743},"For organizations with contractors and BYOD users, the browser extension is also the only enterprise control deployable on devices that can't be MDM-enrolled — extending ATO detection to exactly the place where, per Verizon DBIR 2025, ",[],{},{"nodeType":411,"value":6745,"marks":6746,"data":6748},"46% of infostealer infections originate",[6747],{"type":457},{},{"nodeType":411,"value":1933,"marks":6750,"data":6751},[],{},{"nodeType":446,"data":6753,"content":6754},{},[],{"nodeType":450,"data":6756,"content":6757},{},[6758],{"nodeType":411,"value":6759,"marks":6760,"data":6762},"#2 — Detecting and stopping advanced phishing: AiTM, multi-channel delivery, and zero-day lures",[6761],{"type":457},{},{"nodeType":407,"data":6764,"content":6765},{},[6766],{"nodeType":411,"value":6661,"marks":6767,"data":6769},[6768],{"type":457},{},{"nodeType":407,"data":6771,"content":6772},{},[6773,6777,6785,6789,6794],{"nodeType":411,"value":6774,"marks":6775,"data":6776},"Adversary-in-the-Middle (AiTM) phishing — where an attacker's reverse proxy intercepts credentials and session tokens in real time — has become the standard technique for bypassing MFA at scale. ",[],{},{"nodeType":416,"data":6778,"content":6780},{"uri":6779},"https://www.esentire.com/resources/library/2026-threat-report",[6781],{"nodeType":411,"value":6782,"marks":6783,"data":6784},"eSentire's 2026 Threat Report",[],{},{"nodeType":411,"value":6786,"marks":6787,"data":6788}," attributes ",[],{},{"nodeType":411,"value":6790,"marks":6791,"data":6793},"63% of account compromise incidents to PhaaS kits",[6792],{"type":457},{},{"nodeType":411,"value":6795,"marks":6796,"data":6797},", with account compromise surging 389% year-over-year.",[],{},{"nodeType":407,"data":6799,"content":6800},{},[6801,6805,6813,6817,6822,6826,6835],{"nodeType":411,"value":6802,"marks":6803,"data":6804},"Traditional phishing controls are also no longer in the right place to intercept these attacks. The delivery channel has shifted decisively away from email: ",[],{},{"nodeType":416,"data":6806,"content":6808},{"uri":6807},"https://cloud.google.com/blog/topics/threat-intelligence/m-trends-2026",[6809],{"nodeType":411,"value":6810,"marks":6811,"data":6812},"Mandiant M-Trends 2026",[],{},{"nodeType":411,"value":6814,"marks":6815,"data":6816}," found email phishing dropped from 14% to 6% as an infection vector, and Push data shows ",[],{},{"nodeType":411,"value":6818,"marks":6819,"data":6821},"roughly 1 in 3 phishing payloads intercepted were delivered outside email entirely",[6820],{"type":457},{},{"nodeType":411,"value":6823,"marks":6824,"data":6825}," — via search engine malvertising, social platforms, and compromised websites. Meanwhile, ",[],{},{"nodeType":416,"data":6827,"content":6829},{"uri":6828},"https://www.spamhaus.com/resource-center/supporting-researchers-with-passive-dns/",[6830],{"nodeType":411,"value":6831,"marks":6832,"data":6834},"89% of phishing domains are active for less than two days",[6833],{"type":457},{},{"nodeType":411,"value":6836,"marks":6837,"data":6838},", making blocklist-based detection structurally too slow — attackers can spin up, tear down, and move on before blocklists can catch up.",[],{},{"nodeType":407,"data":6840,"content":6841},{},[6842],{"nodeType":411,"value":6843,"marks":6844,"data":6845},"Modern phishing plays out entirely inside the browser session. The only detection layer that can see the phishing page structure, the credential entry, and the anomalous token context is the browser itself. Browser-native detection analyses page behavior rather than matching known-bad domains, which means it fires on zero-day kits regardless of how recently the infrastructure was stood up. Controls like credential entry guardrails add an additional layer — blocking corporate passwords from being submitted to unauthorized domains independently of content and behavior-based detections.",[],{},{"nodeType":446,"data":6847,"content":6848},{},[],{"nodeType":450,"data":6850,"content":6851},{},[6852],{"nodeType":411,"value":6853,"marks":6854,"data":6856},"#3 — Identity posture hardening: enforcing security across the apps your IdP doesn't manage",[6855],{"type":457},{},{"nodeType":407,"data":6858,"content":6859},{},[6860],{"nodeType":411,"value":6861,"marks":6862,"data":6864},"Security value: High | Browser fit: Uniquely suited",[6863],{"type":457},{},{"nodeType":407,"data":6866,"content":6867},{},[6868],{"nodeType":411,"value":6869,"marks":6870,"data":6871},"The first challenge is knowing what you're protecting. Every identity an employee creates — every app they sign up to, every password they set, every login that bypasses SSO — is an authentication event that happens inside a browser session. The browser is the only layer that observes all of these events regardless of whether the app is sanctioned, managed, or even known to IT. Solutions that rely on API-level integrations with known apps, network traffic inspection, or email sign-up notifications can only ever build a partial picture, because they can only see apps they already know about. The browser sees the login itself, which means it discovers the identity at the moment it's created or used — authentication method, password strength, MFA status, and all.",[],{},{"nodeType":431,"data":6873,"content":6877},{"target":6874},{"sys":6875},{"id":6876,"type":436,"linkType":437},"HETvBCPsKGkqLVtaasXH0",[],{"nodeType":407,"data":6879,"content":6880},{},[6881],{"nodeType":411,"value":6882,"marks":6883,"data":6884},"But discovery without enforcement is just an inventory problem. Being in the browser means that you're in a great position to act on what it finds at the moment of authentication. Browser-native guardrails that prompt MFA enrollment, guide users toward stronger credentials, and redirect to SSO login paths close the gap at scale, on every app, including those the IdP has never seen. They also produce the continuous, auditable evidence of MFA coverage and credential hygiene across the full application estate that regulators, insurers, and auditors increasingly require — evidence that no IdP-centric tool can provide for apps outside its scope.",[],{},{"nodeType":446,"data":6886,"content":6887},{},[],{"nodeType":450,"data":6889,"content":6890},{},[6891],{"nodeType":411,"value":6892,"marks":6893,"data":6895},"#4 — Browser extension security",[6894],{"type":457},{},{"nodeType":407,"data":6897,"content":6898},{},[6899],{"nodeType":411,"value":6861,"marks":6900,"data":6902},[6901],{"type":457},{},{"nodeType":407,"data":6904,"content":6905},{},[6906,6910,6919,6922,6930,6933,6941],{"nodeType":411,"value":6907,"marks":6908,"data":6909},"Browser extensions have become one of the most talked-about attack surfaces in security over the past 18 months, and understandably so — a string of high-profile supply chain compromises have collectively impacted tens of millions of users since late 2024 (",[],{},{"nodeType":416,"data":6911,"content":6913},{"uri":6912},"https://www.cyberhaven.com/blog/cyberhavens-chrome-extension-security-incident-and-what-were-doing-about-it",[6914],{"nodeType":411,"value":6915,"marks":6916,"data":6918},"Cyberhaven",[6917],{"type":424},{},{"nodeType":411,"value":5010,"marks":6920,"data":6921},[],{},{"nodeType":416,"data":6923,"content":6925},{"uri":6924},"https://thehackernews.com/2025/12/darkspectre-browser-extension-campaigns.html",[6926],{"nodeType":411,"value":6927,"marks":6928,"data":6929},"DarkSpectre",[],{},{"nodeType":411,"value":5010,"marks":6931,"data":6932},[],{},{"nodeType":416,"data":6934,"content":6936},{"uri":6935},"https://thehackernews.com/2025/12/trust-wallet-chrome-extension-hack.html",[6937],{"nodeType":411,"value":6938,"marks":6939,"data":6940},"Trust Wallet",[],{},{"nodeType":411,"value":6942,"marks":6943,"data":6944},", among many others).",[],{},{"nodeType":407,"data":6946,"content":6947},{},[6948,6951,6959,6963,6968,6972,6977],{"nodeType":411,"value":29,"marks":6949,"data":6950},[],{},{"nodeType":416,"data":6952,"content":6953},{"uri":1634},[6954],{"nodeType":411,"value":6955,"marks":6956,"data":6958},"Analysis of 20,000+ extensions across Push customers",[6957],{"type":424},{},{"nodeType":411,"value":6960,"marks":6961,"data":6962}," found ",[],{},{"nodeType":411,"value":6964,"marks":6965,"data":6967},"46.76% have the permission combinations needed to perform account takeover with no user interaction",[6966],{"type":457},{},{"nodeType":411,"value":6969,"marks":6970,"data":6971},", making permissions-based risk scoring effectively useless as a triage tool. The real threat model is not malicious extensions at install time — it's legitimate extensions that ",[],{},{"nodeType":411,"value":6973,"marks":6974,"data":6976},"become",[6975],{"type":1822},{},{"nodeType":411,"value":6978,"marks":6979,"data":6980}," malicious after an ownership transfer, developer account compromise, or silent update push. Every major extension supply chain breach of the past 18 months scored as low-risk immediately before compromise.",[],{},{"nodeType":407,"data":6982,"content":6983},{},[6984],{"nodeType":411,"value":6985,"marks":6986,"data":6987},"SWGs and network tools are structurally blind to this attack surface: a malicious extension exfiltrating session tokens generates no anomalous network signal — its traffic is indistinguishable from normal browsing. Endpoint agents have no visibility into extension behavior at the session level. Extension inventory, supply chain change monitoring — ownership transfers, permission escalations, developer contact changes — and enforcement all require browser-layer access by definition.",[],{},{"nodeType":446,"data":6989,"content":6990},{},[],{"nodeType":450,"data":6992,"content":6993},{},[6994],{"nodeType":411,"value":6995,"marks":6996,"data":6998},"#5 — Shadow SaaS discovery and OAuth integration governance",[6997],{"type":457},{},{"nodeType":407,"data":7000,"content":7001},{},[7002],{"nodeType":411,"value":6861,"marks":7003,"data":7005},[7004],{"type":457},{},{"nodeType":407,"data":7007,"content":7008},{},[7009,7013,7018,7022,7027],{"nodeType":411,"value":7010,"marks":7011,"data":7012},"Shadow SaaS discovery shares DNA with identity posture hardening (#3) — both start with the same browser-native visibility into login events that no other layer can replicate. Where identity posture focuses on hardening ",[],{},{"nodeType":411,"value":7014,"marks":7015,"data":7017},"how",[7016],{"type":1822},{},{"nodeType":411,"value":7019,"marks":7020,"data":7021}," employees authenticate, shadow SaaS discovery focuses on ",[],{},{"nodeType":411,"value":7023,"marks":7024,"data":7026},"what",[7025],{"type":1822},{},{"nodeType":411,"value":7028,"marks":7029,"data":7030}," they authenticate to: surfacing the full estate of applications in use across the organization, including those that IT has never sanctioned or even heard of.",[],{},{"nodeType":407,"data":7032,"content":7033},{},[7034],{"nodeType":411,"value":7035,"marks":7036,"data":7037},"OAuth integration governance is the component of shadow SaaS that is both the most potentially damaging and the hardest to surface through other means. The SaaS-to-SaaS OAuth pivot is now an industrialized attack pattern.",[],{},{"nodeType":1038,"data":7039,"content":7040},{},[7041,7061],{"nodeType":1042,"data":7042,"content":7043},{},[7044],{"nodeType":407,"data":7045,"content":7046},{},[7047,7050,7057],{"nodeType":411,"value":1769,"marks":7048,"data":7049},[],{},{"nodeType":416,"data":7051,"content":7052},{"uri":3275},[7053],{"nodeType":411,"value":7054,"marks":7055,"data":7056},"ShinyHunters",[],{},{"nodeType":411,"value":7058,"marks":7059,"data":7060}," Salesforce campaign — which compromised 1,000+ organizations and 1.5 billion records — demonstrated the full chain: the attacker didn't stop at stealing customer data but harvested OAuth tokens, AWS access keys, and Snowflake tokens from breached tenants and pivoted through connected services like Salesloft, Drift, and Gainsight to reach hundreds more organizations.",[],{},{"nodeType":1042,"data":7062,"content":7063},{},[7064],{"nodeType":407,"data":7065,"content":7066},{},[7067,7070,7077],{"nodeType":411,"value":1769,"marks":7068,"data":7069},[],{},{"nodeType":416,"data":7071,"content":7072},{"uri":6107},[7073],{"nodeType":411,"value":7074,"marks":7075,"data":7076},"Context.ai → Vercel",[],{},{"nodeType":411,"value":7078,"marks":7079,"data":7080}," chain followed the same logic — stored OAuth tokens from a forgotten AI app trial provided the bridge into Google Workspace, internal dashboards, and API keys. These are not isolated incidents; they are the repeatable playbook for extracting maximum value from a single compromise through the trust relationships that OAuth connections encode.",[],{},{"nodeType":407,"data":7082,"content":7083},{},[7084],{"nodeType":411,"value":7085,"marks":7086,"data":7087},"Every OAuth consent grant transits the browser — the authorization prompt, the scope disclosure, the user's approval click, and the redirect that completes the grant all happen inside a browser session — which makes the browser the only layer where an unwanted grant can be intercepted before the token is issued and the persistent access path is created. Once a token exists, the damage is done: it survives password resets, MFA changes, and session revocations, and revoking it after the fact requires first knowing it was granted, which most organizations do not.",[],{},{"nodeType":446,"data":7089,"content":7090},{},[],{"nodeType":450,"data":7092,"content":7093},{},[7094],{"nodeType":411,"value":7095,"marks":7096,"data":7098},"#6 — Blocking ClickFix and social engineering-based malware delivery",[7097],{"type":457},{},{"nodeType":407,"data":7100,"content":7101},{},[7102],{"nodeType":411,"value":7103,"marks":7104,"data":7106},"Security value: High | Browser fit: Strong for interception — shared with endpoint security for execution. ConsentFix is a browser-native exception that is T1-aligned.",[7105],{"type":457},{},{"nodeType":407,"data":7108,"content":7109},{},[7110,7114,7119,7123,7130,7134,7139,7143,7148],{"nodeType":411,"value":7111,"marks":7112,"data":7113},"ClickFix was the most common initial access vector reported by Microsoft in 2025, accounting for ",[],{},{"nodeType":411,"value":7115,"marks":7116,"data":7118},"47% of observed attacks",[7117],{"type":457},{},{"nodeType":411,"value":7120,"marks":7121,"data":7122},". CrowdStrike's ",[],{},{"nodeType":416,"data":7124,"content":7125},{"uri":1453},[7126],{"nodeType":411,"value":7127,"marks":7128,"data":7129},"2026 Global Threat Report",[],{},{"nodeType":411,"value":7131,"marks":7132,"data":7133}," identified fake CAPTCHA lures as the most common malware download type, increasing ",[],{},{"nodeType":411,"value":7135,"marks":7136,"data":7138},"563% year-over-year",[7137],{"type":457},{},{"nodeType":411,"value":7140,"marks":7141,"data":7142},". The technique writes a malicious command to the victim's clipboard and social-engineers them into executing it. It is fileless (bypassing download scanning), user-executed (bypassing endpoint behavioral detections), and ",[],{},{"nodeType":411,"value":7144,"marks":7145,"data":7147},"4 in 5 ClickFix payloads intercepted by Push arrived via search engines",[7146],{"type":457},{},{"nodeType":411,"value":7149,"marks":7150,"data":7151}," — not email (bypassing email anti-phishing controls).",[],{},{"nodeType":407,"data":7153,"content":7154},{},[7155],{"nodeType":411,"value":7156,"marks":7157,"data":7158},"The browser is the earliest and most effective intervention point — detecting the clipboard injection and social engineering lure before anything reaches the endpoint in executable form. But the problem doesn't end at the browser boundary: once the command has been pasted and run, detection and remediation become endpoint problems, and a mature defense requires both layers. The broader *Fix family — FileFix, InstallFix, and similar derivatives — follows the same pattern, with the browser providing the critical early-warning layer within a defense that spans browser and endpoint.",[],{},{"nodeType":431,"data":7160,"content":7164},{"target":7161},{"sys":7162},{"id":7163,"type":436,"linkType":437},"39alMHtw9FPHbQINqbAgBN",[],{"nodeType":446,"data":7166,"content":7167},{},[],{"nodeType":450,"data":7169,"content":7170},{},[7171],{"nodeType":411,"value":7172,"marks":7173,"data":7175},"#7 — AI visibility and control: enforcing which AI tools employees can use and how",[7174],{"type":457},{},{"nodeType":407,"data":7177,"content":7178},{},[7179],{"nodeType":411,"value":7180,"marks":7181,"data":7183},"Security value: High | Browser fit: Strong for access enforcement — but AI governance is not a new security problem so much as a force multiplier on existing ones",[7182],{"type":457},{},{"nodeType":407,"data":7185,"content":7186},{},[7187,7191,7200,7204,7213],{"nodeType":411,"value":7188,"marks":7189,"data":7190},"AI adoption is outpacing security governance at nearly every organization, and ",[],{},{"nodeType":416,"data":7192,"content":7194},{"uri":7193},"https://pushsecurity.com/blog/7-things-omdias-latest-report-tells-us-about-the-secure-enterprise-browser-market/",[7195],{"nodeType":411,"value":7196,"marks":7197,"data":7199},"71% of organizations are concerned about data leakage via unsanctioned AI apps",[7198],{"type":457},{},{"nodeType":411,"value":7201,"marks":7202,"data":7203},". But the security problems that AI creates are not, for the most part, novel — they are existing Tier 1 problems amplified by a new category of tooling. Shadow AI apps are shadow SaaS (#5). AI OAuth integrations are OAuth governance (#5). AI browser extensions are extension security (#4). The risk of employees using personal AI accounts — ",[],{},{"nodeType":416,"data":7205,"content":7207},{"uri":7206},"https://keepaware.com/blog/46-of-sensitive-data-bypasses-your-dlp",[7208],{"nodeType":411,"value":7209,"marks":7210,"data":7212},"46% of sensitive inputs to AI tools are sent via personal accounts",[7211],{"type":457},{},{"nodeType":411,"value":7214,"marks":7215,"data":7216}," — is an identity posture problem (#3).",[],{},{"nodeType":407,"data":7218,"content":7219},{},[7220],{"nodeType":411,"value":7221,"marks":7222,"data":7223},"The component parts that allow you to govern AI are individually Tier 1 capabilities, and the browser is the best single layer for gaining visibility and control over AI usage — it sees the apps, the OAuth grants, the extensions, and the account context. But a complete end-to-end solution also requires a presence on the endpoint layer (for local AI tools, IDE-integrated agents, and API-level usage that never touches the browser), and prompt-level DLP on sanctioned tools is better handled by platform-native controls than by browser-layer observation.",[],{},{"nodeType":431,"data":7225,"content":7229},{"target":7226},{"sys":7227},{"id":7228,"type":436,"linkType":437},"6Py3z9VgjhKrchmYvhmbsq",[],{"nodeType":407,"data":7231,"content":7232},{},[7233],{"nodeType":411,"value":7234,"marks":7235,"data":7236},"The browser is what makes platform controls effective — if employees are using personal accounts, there are no enterprise audit logs to inspect. And for the growing category of AI agents, agentic browsers, and MCP-connected tools that operate through OAuth grants rather than direct user interaction, the browser is where the consent decisions that authorize those agents are made.",[],{},{"nodeType":446,"data":7238,"content":7239},{},[],{"nodeType":450,"data":7241,"content":7242},{},[7243],{"nodeType":411,"value":7244,"marks":7245,"data":7247},"#8 — Investigation acceleration and incident response: closing the missing middle",[7246],{"type":457},{},{"nodeType":407,"data":7249,"content":7250},{},[7251],{"nodeType":411,"value":7252,"marks":7253,"data":7255},"Security value: High | Browser fit: Strong — fills a structural gap complementary to endpoint, network, and identity telemetry",[7254],{"type":457},{},{"nodeType":407,"data":7257,"content":7258},{},[7259,7263,7268,7272,7281],{"nodeType":411,"value":7260,"marks":7261,"data":7262},"Endpoint logs show what processes executed. Network logs show traffic destinations. IdP logs show authentication events. None of them show what happened ",[],{},{"nodeType":411,"value":7264,"marks":7265,"data":7267},"inside the browser session",[7266],{"type":1822},{},{"nodeType":411,"value":7269,"marks":7270,"data":7271}," — the phishing page the user saw, the credentials they entered, the malicious OAuth consent grant, the data uploaded or pasted to an unsanctioned service. This is the missing middle of modern incident investigations, and for the ",[],{},{"nodeType":416,"data":7273,"content":7275},{"uri":7274},"https://www.paloaltonetworks.co.uk/resources/research/unit-42-incident-response-report",[7276],{"nodeType":411,"value":7277,"marks":7278,"data":7280},"48% of intrusions involving browser-based activity",[7279],{"type":457},{},{"nodeType":411,"value":7282,"marks":7283,"data":7284},", the absence of browser telemetry is a significant investigative gap.",[],{},{"nodeType":407,"data":7286,"content":7287},{},[7288],{"nodeType":411,"value":7289,"marks":7290,"data":7291},"Browser-layer telemetry fills that gap with a fundamentally different quality of signal: what users actually clicked, what pages loaded and how they behaved, what credentials were entered, what session activity followed — structured, high-fidelity data from inside the session where the attack played out. That's the difference between inferring what happened and seeing it directly, and it determines scope, drives containment decisions, and provides the direct evidential record that neither endpoint DLP nor network monitoring can supply for browser-native attacks.",[],{},{"nodeType":407,"data":7293,"content":7294},{},[7295],{"nodeType":411,"value":7296,"marks":7297,"data":7298},"Browser telemetry is a key addition to the investigative picture. Investigations are inherently multi-source — without browser data, reconstructing an incident from EDR, network, and IdP logs won't tell you the full picture (particularly when attacks are increasingly delivered outside of email, intercepting users as they browse the internet normally).",[],{},{"nodeType":407,"data":7300,"content":7301},{},[7302],{"nodeType":411,"value":7303,"marks":7304,"data":7305},"The browser provides the causal link that other sources miss: the bridge between \"a user visited a URL\" and \"credentials were submitted to a phishing page that issued a session token now being replayed from an attacker-controlled browser.\" Integrated with SIEM and SOAR platforms, that signal enables automated response workflows to execute on high-confidence detections without waiting for manual triage.",[],{},{"nodeType":446,"data":7307,"content":7308},{},[],{"nodeType":450,"data":7310,"content":7311},{},[7312],{"nodeType":411,"value":7313,"marks":7314,"data":7316},"#9 — Infostealer defense: detecting exposure and blocking delivery",[7315],{"type":457},{},{"nodeType":407,"data":7318,"content":7319},{},[7320],{"nodeType":411,"value":7321,"marks":7322,"data":7324},"Security value: High | Browser fit: Strong for delivery interception and stolen factor detection — complementary to endpoint security for execution",[7323],{"type":457},{},{"nodeType":407,"data":7326,"content":7327},{},[7328],{"nodeType":411,"value":7329,"marks":7330,"data":7331},"Infostealers are the upstream supply chain for a disproportionate share of the most damaging enterprise attacks — harvesting credentials, session cookies, and browser profile data en masse from infected devices, then selling the outputs on infostealer markets for use in credential stuffing, ATO, and ransomware campaigns.",[],{},{"nodeType":431,"data":7333,"content":7337},{"target":7334},{"sys":7335},{"id":7336,"type":436,"linkType":437},"5NF1afwu3zFGThZTtStVQA",[],{"nodeType":407,"data":7339,"content":7340},{},[7341],{"nodeType":411,"value":7342,"marks":7343,"data":7344},"The browser is relevant at two points in the infostealer kill chain. First, delivery interception: ClickFix (covered in #6) is now the primary infostealer delivery mechanism, and the browser is the only layer that can intercept it before execution. Second, detecting stolen factors when attackers attempt to use them — and infostealers produce two categories of stolen factor that the browser can guard against.",[],{},{"nodeType":1038,"data":7346,"content":7347},{},[7348,7358],{"nodeType":1042,"data":7349,"content":7350},{},[7351],{"nodeType":407,"data":7352,"content":7353},{},[7354],{"nodeType":411,"value":7355,"marks":7356,"data":7357},"Stolen credentials can be identified at the point of login: browser-layer detection flags credentials that appear in known breach datasets, catching infostealer-harvested passwords being replayed in credential stuffing campaigns before the account is compromised.",[],{},{"nodeType":1042,"data":7359,"content":7360},{},[7361],{"nodeType":407,"data":7362,"content":7363},{},[7364],{"nodeType":411,"value":7365,"marks":7366,"data":7367},"Stolen session tokens are caught through a different mechanism: sessions originating in instrumented browsers carry a marker, and when a token subsequently appears in an un-instrumented browser it is a confirmed stolen session — catching infostealer-harvested cookies being replayed regardless of how or where the token was originally harvested.",[],{},{"nodeType":407,"data":7369,"content":7370},{},[7371,7375,7384,7388,7393],{"nodeType":411,"value":7372,"marks":7373,"data":7374},"This is particularly critical for the ",[],{},{"nodeType":416,"data":7376,"content":7378},{"uri":7377},"https://www.verizon.com/business/en-gb/resources/reports/dbir/",[7379],{"nodeType":411,"value":7380,"marks":7381,"data":7383},"46% of infected devices that are unmanaged",[7382],{"type":457},{},{"nodeType":411,"value":7385,"marks":7386,"data":7387}," where EDR is absent and the stolen credentials and session tokens will never be detected at the endpoint. Infostealer ",[],{},{"nodeType":411,"value":7389,"marks":7390,"data":7392},"execution",[7391],{"type":1822},{},{"nodeType":411,"value":7394,"marks":7395,"data":7396}," remains an endpoint problem; the browser closes the delivery and replay gaps that endpoint tools miss.",[],{},{"nodeType":446,"data":7398,"content":7399},{},[],{"nodeType":450,"data":7401,"content":7402},{},[7403],{"nodeType":411,"value":7404,"marks":7405,"data":7407},"#10 — Data loss prevention: a key component of effective DLP, but not the full picture",[7406],{"type":457},{},{"nodeType":407,"data":7409,"content":7410},{},[7411],{"nodeType":411,"value":7412,"marks":7413,"data":7415},"Security value: Medium-high | Browser fit: Partial — complementary to dedicated DLP",[7414],{"type":457},{},{"nodeType":407,"data":7417,"content":7418},{},[7419],{"nodeType":411,"value":7420,"marks":7421,"data":7422},"File uploads to unsanctioned services, sensitive data pasted into AI tools, and exfiltration through personal accounts are genuine and growing risks that traditional email and endpoint-centric DLP tools were not designed to catch. Browser-layer controls provide real value here — particularly for BYOD users and contractors, where endpoint DLP agents cannot be deployed and the browser is the only available data loss visibility.",[],{},{"nodeType":407,"data":7424,"content":7425},{},[7426],{"nodeType":411,"value":7427,"marks":7428,"data":7429},"The honest scope: browser-layer DLP does not cover email-based loss, endpoint-to-endpoint transfers, or cloud API exfiltration. It closes specific and important gaps within a broader DLP strategy, not a replacement for one. A further distinction for organizations evaluating browser DLP for secure third-party access: full-stack enterprise browsers can enforce deeper output controls — watermarking, obfuscation, screenshot and print restrictions — at the OS rendering level that browser extensions cannot reliably replicate. Extension-based browser DLP is strongest for upload, input, and access control use cases rather than OS-level output restriction.",[],{},{"nodeType":446,"data":7431,"content":7432},{},[],{"nodeType":450,"data":7434,"content":7435},{},[7436],{"nodeType":411,"value":7437,"marks":7438,"data":7440},"Tier 3 — Lower Value: A problem best addressed outside of the browser",[7439],{"type":457},{},{"nodeType":1038,"data":7442,"content":7443},{},[7444,7459,7474,7489],{"nodeType":1042,"data":7445,"content":7446},{},[7447],{"nodeType":407,"data":7448,"content":7449},{},[7450,7455],{"nodeType":411,"value":7451,"marks":7452,"data":7454},"Browser exploit protection",[7453],{"type":457},{},{"nodeType":411,"value":7456,"marks":7457,"data":7458}," (narrow RCE/sandbox sense) ranks lower because browser zero-days represent just 9% of all zero-days reported to Google, and 82% of attack detections are now malware-free (CrowdStrike 2026). This is a problem for browser vendors to solve, and it's not a big enough problem to warrant enterprises investing in additional mitigating controls.",[],{},{"nodeType":1042,"data":7460,"content":7461},{},[7462],{"nodeType":407,"data":7463,"content":7464},{},[7465,7470],{"nodeType":411,"value":7466,"marks":7467,"data":7469},"Domain and URL category controls",[7468],{"type":457},{},{"nodeType":411,"value":7471,"marks":7472,"data":7473}," offer genuine browser-layer value but are commoditized by SWG and DNS filtering tools most organizations already operate. This can be provided in the browser, sure (and it's something we do at Push) but offers limited security value in terms of making a difference against modern attacks that quickly rotate these kinds of indicators and are designed to blend in.",[],{},{"nodeType":1042,"data":7475,"content":7476},{},[7477],{"nodeType":407,"data":7478,"content":7479},{},[7480,7485],{"nodeType":411,"value":7481,"marks":7482,"data":7484},"Access management",[7483],{"type":457},{},{"nodeType":411,"value":7486,"marks":7487,"data":7488}," — ZTNA, VPN replacement, PAM, BYOD access control — is an IT infrastructure and access architecture problem, not a security operations problem, and belongs to a different buyer with a different evaluation frame. There are numerous (typically full-stack) Enterprise Browser solutions on the market that address IT use cases like this well.",[],{},{"nodeType":1042,"data":7490,"content":7491},{},[7492],{"nodeType":407,"data":7493,"content":7494},{},[7495,7500],{"nodeType":411,"value":7496,"marks":7497,"data":7499},"Remote browser isolation",[7498],{"type":457},{},{"nodeType":411,"value":7501,"marks":7502,"data":7503}," addresses browser exploit risk rather than the identity-first attacks that represent the majority of current enterprise browser risk, and introduces UX friction that limits deployment at scale. When it triggers, it introduces latency but still fails to detect and stop browser-native attacks.",[],{},{"nodeType":446,"data":7505,"content":7506},{},[],{"nodeType":450,"data":7508,"content":7509},{},[7510],{"nodeType":411,"value":7511,"marks":7512,"data":7514},"How Push Security maps to the highest-value security use cases",[7513],{"type":457},{},{"nodeType":407,"data":7516,"content":7517},{},[7518],{"nodeType":411,"value":7519,"marks":7520,"data":7521},"Push is purpose-built to address all of these problems using a flexible browser extension — plug into any browser with no migration, no host agent deployment, and no IT overhead — that delivers telemetry and control from day one, and extends coverage to every enrolled browser regardless of device ownership.",[],{},{"nodeType":2753,"data":7523,"content":7524},{},[7525,7550,7574,7598,7622,7646,7670,7694,7718,7742,7766,7790],{"nodeType":2757,"data":7526,"content":7527},{},[7528,7539],{"nodeType":2787,"data":7529,"content":7530},{},[7531],{"nodeType":407,"data":7532,"content":7533},{},[7534],{"nodeType":411,"value":7535,"marks":7536,"data":7538},"Security use case",[7537],{"type":457},{},{"nodeType":2787,"data":7540,"content":7541},{},[7542],{"nodeType":407,"data":7543,"content":7544},{},[7545],{"nodeType":411,"value":7546,"marks":7547,"data":7549},"How Push addresses it",[7548],{"type":457},{},{"nodeType":2757,"data":7551,"content":7552},{},[7553,7564],{"nodeType":2787,"data":7554,"content":7555},{},[7556],{"nodeType":407,"data":7557,"content":7558},{},[7559],{"nodeType":411,"value":7560,"marks":7561,"data":7563},"Account takeover prevention",[7562],{"type":457},{},{"nodeType":2787,"data":7565,"content":7566},{},[7567],{"nodeType":407,"data":7568,"content":7569},{},[7570],{"nodeType":411,"value":7571,"marks":7572,"data":7573},"Surfaces and fixes ghost logins, weak and breached credentials and missing MFA controls across every app and device — including shadow SaaS and unmanaged devices invisible to the IdP. Push also detects and stops the attack techniques that typically lead to ATO early in the kill chain and before an account can be compromised.",[],{},{"nodeType":2757,"data":7575,"content":7576},{},[7577,7588],{"nodeType":2787,"data":7578,"content":7579},{},[7580],{"nodeType":407,"data":7581,"content":7582},{},[7583],{"nodeType":411,"value":7584,"marks":7585,"data":7587},"Advanced phishing detection",[7586],{"type":457},{},{"nodeType":2787,"data":7589,"content":7590},{},[7591],{"nodeType":407,"data":7592,"content":7593},{},[7594],{"nodeType":411,"value":7595,"marks":7596,"data":7597},"Behavioral page analysis detects phishing kits regardless of whether the domain is known-bad. Credential entry guardrails block corporate passwords from being submitted to unauthorized domains. TTP-based detection remains effective as attacker infrastructure rotates.",[],{},{"nodeType":2757,"data":7599,"content":7600},{},[7601,7612],{"nodeType":2787,"data":7602,"content":7603},{},[7604],{"nodeType":407,"data":7605,"content":7606},{},[7607],{"nodeType":411,"value":7608,"marks":7609,"data":7611},"Identity posture hardening",[7610],{"type":457},{},{"nodeType":2787,"data":7613,"content":7614},{},[7615],{"nodeType":407,"data":7616,"content":7617},{},[7618],{"nodeType":411,"value":7619,"marks":7620,"data":7621},"Enforces MFA, strong credentials, and SSO adoption across every app the IdP doesn't manage. Produces continuous, auditable MFA coverage and credential hygiene evidence across the full application and device estate.",[],{},{"nodeType":2757,"data":7623,"content":7624},{},[7625,7636],{"nodeType":2787,"data":7626,"content":7627},{},[7628],{"nodeType":407,"data":7629,"content":7630},{},[7631],{"nodeType":411,"value":7632,"marks":7633,"data":7635},"Browser extension security",[7634],{"type":457},{},{"nodeType":2787,"data":7637,"content":7638},{},[7639],{"nodeType":407,"data":7640,"content":7641},{},[7642],{"nodeType":411,"value":7643,"marks":7644,"data":7645},"Live extension inventory with supply chain change event monitoring — ownership transfers, permission escalations, developer contact changes — rather than static risk scoring. Supports default-deny allowlisting and remote extension removal. Blocks known-bad malicious extensions automatically.",[],{},{"nodeType":2757,"data":7647,"content":7648},{},[7649,7660],{"nodeType":2787,"data":7650,"content":7651},{},[7652],{"nodeType":407,"data":7653,"content":7654},{},[7655],{"nodeType":411,"value":7656,"marks":7657,"data":7659},"Shadow SaaS and OAuth governance",[7658],{"type":457},{},{"nodeType":2787,"data":7661,"content":7662},{},[7663],{"nodeType":407,"data":7664,"content":7665},{},[7666],{"nodeType":411,"value":7667,"marks":7668,"data":7669},"Discovers shadow SaaS from actual login events with full authentication context. Monitors and blocks OAuth consent flows — including AI and MCP integrations — in real time before persistent access paths are created.",[],{},{"nodeType":2757,"data":7671,"content":7672},{},[7673,7684],{"nodeType":2787,"data":7674,"content":7675},{},[7676],{"nodeType":407,"data":7677,"content":7678},{},[7679],{"nodeType":411,"value":7680,"marks":7681,"data":7683},"ClickFix and the *Fix family",[7682],{"type":457},{},{"nodeType":2787,"data":7685,"content":7686},{},[7687],{"nodeType":407,"data":7688,"content":7689},{},[7690],{"nodeType":411,"value":7691,"marks":7692,"data":7693},"Detects and blocks ClickFix lures, clipboard injection, and browser-native variants like ConsentFix in real time — before the payload executes or OAuth key material is captured.",[],{},{"nodeType":2757,"data":7695,"content":7696},{},[7697,7708],{"nodeType":2787,"data":7698,"content":7699},{},[7700],{"nodeType":407,"data":7701,"content":7702},{},[7703],{"nodeType":411,"value":7704,"marks":7705,"data":7707},"AI visibility & control",[7706],{"type":457},{},{"nodeType":2787,"data":7709,"content":7710},{},[7711],{"nodeType":407,"data":7712,"content":7713},{},[7714],{"nodeType":411,"value":7715,"marks":7716,"data":7717},"Enforces which AI tools employees can access and routes usage to corporate tenants. Governs AI browser extensions and blocks OAuth consent grants to unapproved AI applications — drawing on the same Tier 1 capabilities (OAuth governance, extension security, shadow SaaS discovery) that make this possible.",[],{},{"nodeType":2757,"data":7719,"content":7720},{},[7721,7732],{"nodeType":2787,"data":7722,"content":7723},{},[7724],{"nodeType":407,"data":7725,"content":7726},{},[7727],{"nodeType":411,"value":7728,"marks":7729,"data":7731},"Security investigations & incident response",[7730],{"type":457},{},{"nodeType":2787,"data":7733,"content":7734},{},[7735],{"nodeType":407,"data":7736,"content":7737},{},[7738],{"nodeType":411,"value":7739,"marks":7740,"data":7741},"High-fidelity session telemetry — page loads, credential entries, DOM changes, OAuth grants — fills the missing middle that endpoint, network, and IdP logs leave open. Feeds directly into SIEM and SOAR for automated response.",[],{},{"nodeType":2757,"data":7743,"content":7744},{},[7745,7756],{"nodeType":2787,"data":7746,"content":7747},{},[7748],{"nodeType":407,"data":7749,"content":7750},{},[7751],{"nodeType":411,"value":7752,"marks":7753,"data":7755},"Infostealer defense",[7754],{"type":457},{},{"nodeType":2787,"data":7757,"content":7758},{},[7759],{"nodeType":407,"data":7760,"content":7761},{},[7762],{"nodeType":411,"value":7763,"marks":7764,"data":7765},"Intercepts ClickFix-based infostealer delivery before execution. Detects token replay in unenrolled browser contexts — catching post-theft abuse from AiTM-sourced tokens and infostealer-harvested cookies, including from unmanaged devices.",[],{},{"nodeType":2757,"data":7767,"content":7768},{},[7769,7780],{"nodeType":2787,"data":7770,"content":7771},{},[7772],{"nodeType":407,"data":7773,"content":7774},{},[7775],{"nodeType":411,"value":7776,"marks":7777,"data":7779},"Data loss prevention",[7778],{"type":457},{},{"nodeType":2787,"data":7781,"content":7782},{},[7783],{"nodeType":407,"data":7784,"content":7785},{},[7786],{"nodeType":411,"value":7787,"marks":7788,"data":7789},"Observes file uploads, downloads, and sensitive data inputs across all applications. Extends data loss visibility to BYOD and contractor devices where endpoint DLP cannot reach.",[],{},{"nodeType":2757,"data":7791,"content":7792},{},[7793,7803],{"nodeType":2787,"data":7794,"content":7795},{},[7796],{"nodeType":407,"data":7797,"content":7798},{},[7799],{"nodeType":411,"value":7466,"marks":7800,"data":7802},[7801],{"type":457},{},{"nodeType":2787,"data":7804,"content":7805},{},[7806],{"nodeType":407,"data":7807,"content":7808},{},[7809],{"nodeType":411,"value":7810,"marks":7811,"data":7812},"Custom URL blocklists with wildcard support and REST API management for threat intelligence feed sync. Application category blocking restricts access to classes of apps (file-sharing, unsanctioned AI tools) configurable by user group. Domain categorization bringing SWG-style category blocking natively to the browser without a network proxy.",[],{},{"nodeType":446,"data":7814,"content":7815},{},[],{"nodeType":407,"data":7817,"content":7818},{},[7819,7823,7829],{"nodeType":411,"value":7820,"marks":7821,"data":7822},"Push Security is the most powerful AI-native security tool in the browser. Think EDR, but for the browser — high-fidelity telemetry and real-time control across every session, on every device, with no browser migration required. ",[],{},{"nodeType":416,"data":7824,"content":7825},{"uri":2055},[7826],{"nodeType":411,"value":1107,"marks":7827,"data":7828},[],{},{"nodeType":411,"value":29,"marks":7830,"data":7831},[],{},"The top 10 security problems you can solve in the browser — ranked by value","Ranking the security problems you can solve in the browser by security value and browser fit.","2026-05-14T00:00:00.000Z","the-top-10-security-problems-you-can-solve-in-the-browser-ranked-by-value",{"items":7837},[7838,7840],{"sys":7839,"name":5652},{"id":5651},{"sys":7841,"name":5648},{"id":5647},{"items":7843},[7844],{"fullName":7845,"firstName":7846,"jobTitle":6594,"profilePicture":7847},"Alex Henshall","Alex",{"url":7848},"https://images.ctfassets.net/y1cdw1ablpvd/2rz3Pre3b1MexPIQ4hzPUe/0ef8a092b7e7df00fbce3f7d1ccb96d1/Alex_Henshall.jpeg","crossing-the-ai-security-chasm-sans-security-maturity-model","blog/crossing-the-ai-security-chasm-sans-security-maturity-model",{"json":7852},{"data":7853,"content":7854,"nodeType":403},{},[7855],{"data":7856,"content":7857,"nodeType":407},{},[7858],{"data":7859,"marks":7860,"value":7861,"nodeType":411},{},[],"Most organizations know they have an AI security problem. A new SANS framework shows why so few are making progress – and what it actually takes to get unstuck.","Most organizations know they have an AI security problem. A new SANS framework shows why so few are making progress - and what it actually takes to get unstuck.",{"id":7864,"publishedAt":7865},"6Xn377JQfbDz49Np74cbGl","2026-06-24T15:25:10.021Z",{"items":7867},[7868,7870],{"sys":7869,"name":5652},{"id":5651},{"sys":7871,"name":5648},{"id":5647},"Eg3MHHJ4_IKYDgPbOMrwOSW8yRvKc_jdO1-wTCvv570",{"id":7874,"title":7875,"authorsCollection":7876,"content":7880,"extension":1205,"faqItemsCollection":8417,"faqTitle":62,"featured":6,"hashTags":62,"meta":8419,"metaTitle":8420,"ogImage":62,"publishedDate":4613,"relatedBlogPostsCollection":8421,"slug":11167,"stem":11168,"subtitle":62,"summary":11169,"synopsis":11180,"sys":11181,"tagsCollection":11184,"__hash__":11190},"blog/blog/why-your-training-budget-belongs-in-real-time-browser-security.json","Why your training budget belongs in real-time browser security",{"items":7877},[7878],{"fullName":3705,"firstName":3706,"jobTitle":3707,"profilePicture":7879},{"url":3709},{"json":7881,"links":8387},{"nodeType":403,"data":7882,"content":7883},{},[7884,7891,7898,7924,7929,7935,7943,7976,7983,7986,7994,8001,8042,8084,8102,8138,8154,8157,8165,8172,8189,8196,8202,8209,8215,8218,8226,8250,8257,8276,8283,8290,8319,8327,8334,8341,8348,8356,8359,8365,8371],{"nodeType":407,"data":7885,"content":7886},{},[7887],{"nodeType":411,"value":7888,"marks":7889,"data":7890},"The compliance email arrives on schedule: \"All employees must complete annual security awareness training by Friday.\" Across the organization, hundreds of employees skim through presentations about phishing emails, answer predictable quiz questions, and return to work feeling modestly more informed about cybersecurity.",[],{},{"nodeType":407,"data":7892,"content":7893},{},[7894],{"nodeType":411,"value":7895,"marks":7896,"data":7897},"Two weeks later, an employee in the marketing department — encouraged by the company's AI adoption initiative — searches Google for \"ChatGPT\" to access the tool they'd been told to start using. They click the top result, a sponsored ad pointing to a chatgpt.com URL. The page displays a professional-looking ChatGPT service disruption notice: \"We're experiencing high traffic right now. Download our desktop app to continue.\" They click the download button, which redirects to a pixel-perfect clone of ChatGPT's official download page. The file they install is an infostealer.",[],{},{"nodeType":407,"data":7899,"content":7900},{},[7901,7905,7912,7916,7920],{"nodeType":411,"value":7902,"marks":7903,"data":7904},"This scenario is fictional, but the campaign behind it isn't. Push researchers ",[],{},{"nodeType":416,"data":7906,"content":7907},{"uri":783},[7908],{"nodeType":411,"value":7909,"marks":7910,"data":7911},"detected and blocked exactly this attack",[],{},{"nodeType":411,"value":7913,"marks":7914,"data":7915}," across multiple customer environments. The attackers had used ChatGPT's own code-rendering feature to build a fully designed fake service page hosted on chatgpt.com itself, then drove traffic to it through search ads targeting queries like \"chatgpt,\" \"chatgpt free,\" and common typos. The destination URL was genuine, and the page looked like a real system notice. Every URL reputation check in the world considers chatgpt.com safe, because it ",[],{},{"nodeType":411,"value":227,"marks":7917,"data":7919},[7918],{"type":1822},{},{"nodeType":411,"value":7921,"marks":7922,"data":7923}," safe — except when an attacker builds a weapon inside it.",[],{},{"nodeType":431,"data":7925,"content":7928},{"target":7926},{"sys":7927},{"id":2369,"type":436,"linkType":437},[],{"nodeType":431,"data":7930,"content":7934},{"target":7931},{"sys":7932},{"id":7933,"type":436,"linkType":437},"33VcchmCetvLzSGcbazex3",[],{"nodeType":407,"data":7936,"content":7937},{},[7938],{"nodeType":411,"value":7939,"marks":7940,"data":7942},"No amount of training prepares someone to suspect a legitimate-looking page on a legitimate domain for a tool they've been explicitly told to use.",[7941],{"type":457},{},{"nodeType":407,"data":7944,"content":7945},{},[7946,7950,7959,7963,7972],{"nodeType":411,"value":7947,"marks":7948,"data":7949},"These scenarios aren’t unusual. We’ve covered ",[],{},{"nodeType":416,"data":7951,"content":7953},{"uri":7952},"https://pushsecurity.com/blog/how-push-stopped-a-high-risk-linkedin-spear-phishing-attack/",[7954],{"nodeType":411,"value":7955,"marks":7956,"data":7958},"multiple campaigns",[7957],{"type":424},{},{"nodeType":411,"value":7960,"marks":7961,"data":7962}," involving ",[],{},{"nodeType":416,"data":7964,"content":7966},{"uri":7965},"https://pushsecurity.com/blog/new-phishing-campaign-identified-targeting-linkedin-users/",[7967],{"nodeType":411,"value":7968,"marks":7969,"data":7971},"LinkedIn-delivered",[7970],{"type":424},{},{"nodeType":411,"value":7973,"marks":7974,"data":7975}," phishing attacks, where attackers compromised LinkedIn accounts and sent phishing links via direct message to first-degree connections — routing victims through trusted sites to a session-harvesting AITM page. The targets had every reason to trust the message: it came from someone they knew, on a platform they used daily for work.",[],{},{"nodeType":407,"data":7977,"content":7978},{},[7979],{"nodeType":411,"value":7980,"marks":7981,"data":7982},"These are the kinds of attacks that organizations are dealing with every single day. And that recent awareness training checkbox makes absolutely zero difference to the outcome. ",[],{},{"nodeType":446,"data":7984,"content":7985},{},[],{"nodeType":450,"data":7987,"content":7988},{},[7989],{"nodeType":411,"value":7990,"marks":7991,"data":7993},"What the research actually shows",[7992],{"type":457},{},{"nodeType":407,"data":7995,"content":7996},{},[7997],{"nodeType":411,"value":7998,"marks":7999,"data":8000},"The evidence on training effectiveness is more nuanced than either side of the debate usually admits — but the conclusion for security leaders is the same regardless of where you land.",[],{},{"nodeType":407,"data":8002,"content":8003},{},[8004,8008,8016,8020,8026,8030,8038],{"nodeType":411,"value":8005,"marks":8006,"data":8007},"A ",[],{},{"nodeType":416,"data":8009,"content":8011},{"uri":8010},"https://arxiv.org/abs/2506.19899",[8012],{"nodeType":411,"value":8013,"marks":8014,"data":8015},"2025 study from Purdue University",[],{},{"nodeType":411,"value":8017,"marks":8018,"data":8019}," involving 12,511 employees at a US fintech firm found that anti-phishing training produced no significant effect on click rates (p=0.450) or reporting rates (p=0.417), with effect sizes below 0.01 across every training modality tested. Trained employees actually clicked phishing links at a marginally ",[],{},{"nodeType":411,"value":8021,"marks":8022,"data":8025},"higher",[8023,8024],{"type":1822},{"type":457},{},{"nodeType":411,"value":8027,"marks":8028,"data":8029}," rate (10.5%) than the untrained control group (9.8%). A ",[],{},{"nodeType":416,"data":8031,"content":8033},{"uri":8032},"https://www.cybersecuritydive.com/news/cybersecurity-awareness-training-research-flaws/803201/",[8034],{"nodeType":411,"value":8035,"marks":8036,"data":8037},"separate study of 19,789 personnel at UCSD Health",[],{},{"nodeType":411,"value":8039,"marks":8040,"data":8041},", published at IEEE S&P 2025, found that annual training combined with post-click exercises reduced click likelihood by just 2% — and that employees who completed static training actually had worse phishing failure rates. ",[],{},{"nodeType":407,"data":8043,"content":8044},{},[8045,8049,8057,8061,8069,8073,8080],{"nodeType":411,"value":8046,"marks":8047,"data":8048},"Training vendors ",[],{},{"nodeType":416,"data":8050,"content":8052},{"uri":8051},"https://hoxhunt.com/blog/the-wall-street-journal-got-it-wrong-phishing-simulations-work-when-done-right",[8053],{"nodeType":411,"value":8054,"marks":8055,"data":8056},"have argued",[],{},{"nodeType":411,"value":8058,"marks":8059,"data":8060}," that continuous, adaptive, gamified programs produce materially better results, and  a ",[],{},{"nodeType":416,"data":8062,"content":8064},{"uri":8063},"https://www.sciencedirect.com/science/article/abs/pii/S0167404823002742",[8065],{"nodeType":411,"value":8066,"marks":8067,"data":8068},"2024 meta-analysis",[],{},{"nodeType":411,"value":8070,"marks":8071,"data":8072}," supports the claim that active engagement and repeated practice improve outcomes where annual programs don't. The ",[],{},{"nodeType":416,"data":8074,"content":8075},{"uri":6059},[8076],{"nodeType":411,"value":8077,"marks":8078,"data":8079},"Verizon DBIR 2025",[],{},{"nodeType":411,"value":8081,"marks":8082,"data":8083}," found that employees trained within the last 30 days were 4x more likely to report phishing than those trained earlier.",[],{},{"nodeType":407,"data":8085,"content":8086},{},[8087,8091,8098],{"nodeType":411,"value":8088,"marks":8089,"data":8090},"But here's the problem that even the best training program can't solve: Every one of these studies — and virtually every phishing simulation platform on the market — tests email-based phishing. The attacks driving the biggest breaches in 2026 don't arrive by email. They arrive through ",[],{},{"nodeType":416,"data":8092,"content":8093},{"uri":2398},[8094],{"nodeType":411,"value":8095,"marks":8096,"data":8097},"search engine ads",[],{},{"nodeType":411,"value":8099,"marks":8100,"data":8101},", social media DMs, shared AI chatbot pages on trusted domains, and legitimate OAuth consent flows. Continuous adaptive training may reduce email phishing click rates from 7% to 1.5%, but it has nothing to say about an employee who googles \"ChatGPT\" and lands on a malware delivery page hosted on chatgpt.com.",[],{},{"nodeType":407,"data":8103,"content":8104},{},[8105,8109,8117,8121,8129,8133],{"nodeType":411,"value":8106,"marks":8107,"data":8108},"The deeper issue is structural. Behavioral science calls it the ",[],{},{"nodeType":416,"data":8110,"content":8112},{"uri":8111},"https://en.wikipedia.org/wiki/Information_deficit_model",[8113],{"nodeType":411,"value":8114,"marks":8115,"data":8116},"information deficit model",[],{},{"nodeType":411,"value":8118,"marks":8119,"data":8120},": the assumption that people make risky decisions because they lack information, and that providing more information will fix the problem. This model has been ",[],{},{"nodeType":416,"data":8122,"content":8124},{"uri":8123},"https://pmc.ncbi.nlm.nih.gov/articles/PMC8201414/",[8125],{"nodeType":411,"value":8126,"marks":8127,"data":8128},"debunked across multiple domains",[],{},{"nodeType":411,"value":8130,"marks":8131,"data":8132},", from public health to environmental protection. ",[],{},{"nodeType":411,"value":8134,"marks":8135,"data":8137},"People routinely engage in behaviors they know are risky — not because they lack knowledge, but because immediate pressures outweigh abstract training from months ago.",[8136],{"type":457},{},{"nodeType":407,"data":8139,"content":8140},{},[8141,8145,8150],{"nodeType":411,"value":8142,"marks":8143,"data":8144},"Training can build security culture, help employees understand why controls exist, and create champions who influence peers - and these are important outcomes. What training ",[],{},{"nodeType":411,"value":8146,"marks":8147,"data":8149},"cannot",[8148],{"type":1822},{},{"nodeType":411,"value":8151,"marks":8152,"data":8153}," reliably do is serve as a preventive control for split-second decisions made under cognitive load, time pressure, and competing priorities. To make matters worse, most organizations don't even attempt to measure whether it does. ",[],{},{"nodeType":446,"data":8155,"content":8156},{},[],{"nodeType":450,"data":8158,"content":8159},{},[8160],{"nodeType":411,"value":8161,"marks":8162,"data":8164},"The attacks training can't address",[8163],{"type":457},{},{"nodeType":407,"data":8166,"content":8167},{},[8168],{"nodeType":411,"value":8169,"marks":8170,"data":8171},"Even if the training debate were settled — even if continuous adaptive programs reliably reduced email phishing click rates to near zero — the attacks driving the biggest breaches in 2026 don't look like anything a simulation platform tests for.",[],{},{"nodeType":407,"data":8173,"content":8174},{},[8175,8179,8185],{"nodeType":411,"value":8176,"marks":8177,"data":8178},"The LLMShare campaign described above used a genuine chatgpt.com domain to serve a fake page that looked like a routine system notice — no suspicious URL, no grammatical errors, and no visual tells. ClickFix attacks present as routine CAPTCHAs. ConsentFix operates entirely on legitimate Microsoft infrastructure. Device code phishing asks users to enter a code on a real app page. None of these attacks trigger the signals users were trained to look for, and ",[],{},{"nodeType":411,"value":8180,"marks":8181,"data":8184},"4 in 5 ClickFix payloads arrive via search engines",[8182,8183],{"type":424},{"type":457},{},{"nodeType":411,"value":8186,"marks":8187,"data":8188},", not email.",[],{},{"nodeType":407,"data":8190,"content":8191},{},[8192],{"nodeType":411,"value":8193,"marks":8194,"data":8195},"There are countless scenarios where users performing seemingly benign actions on plausible (or even legitimate) sites can result in a compromise. ",[],{},{"nodeType":431,"data":8197,"content":8201},{"target":8198},{"sys":8199},{"id":8200,"type":436,"linkType":437},"29vUtbEUam8fhbwnQdINRJ",[],{"nodeType":407,"data":8203,"content":8204},{},[8205],{"nodeType":411,"value":8206,"marks":8207,"data":8208},"The lesson isn't that employees are incompetent. It's that the attack surface is too broad, the delivery channels are too varied, and the social engineering too convincing for training to function as a primary control — regardless of how it's designed. ",[],{},{"nodeType":431,"data":8210,"content":8214},{"target":8211},{"sys":8212},{"id":8213,"type":436,"linkType":437},"7zH48txL9ToiUlgLBHrkng",[],{"nodeType":446,"data":8216,"content":8217},{},[],{"nodeType":450,"data":8219,"content":8220},{},[8221],{"nodeType":411,"value":8222,"marks":8223,"data":8225},"Real-time intervention where attacks execute",[8224],{"type":457},{},{"nodeType":407,"data":8227,"content":8228},{},[8229,8233,8238,8246],{"nodeType":411,"value":8230,"marks":8231,"data":8232},"The browser is where every phishing attack, credential-harvesting attempt, and social engineering campaign ultimately executes — and where ",[],{},{"nodeType":411,"value":8234,"marks":8235,"data":8237},"89% of phishing domains are active for fewer than two days, ",[8236],{"type":457},{},{"nodeType":416,"data":8239,"content":8241},{"uri":8240},"https://pushsecurity.com/blog/the-case-for-best-of-breed-browser-security/",[8242],{"nodeType":411,"value":8243,"marks":8244,"data":8245},"95% of attacks use bot protection to defeat automated scanners",[],{},{"nodeType":411,"value":8247,"marks":8248,"data":8249},", and traditional security architectures have a structural blind spot. ",[],{},{"nodeType":407,"data":8251,"content":8252},{},[8253],{"nodeType":411,"value":8254,"marks":8255,"data":8256},"Network tools see encrypted traffic. Endpoint agents see processes and files. Email security sees messages in transit. None of them can intervene when a user is about to enter credentials into a fake login page.",[],{},{"nodeType":407,"data":8258,"content":8259},{},[8260,8264,8272],{"nodeType":411,"value":8261,"marks":8262,"data":8263},"Browser-based detection and response addresses both the prevention gap and the training gap simultaneously. As a technical control, Push ",[],{},{"nodeType":416,"data":8265,"content":8267},{"uri":8266},"https://pushsecurity.com/blog/guide-how-to-use-push-controls-to-protect-your-users-from-modern-attacks/",[8268],{"nodeType":411,"value":8269,"marks":8270,"data":8271},"detects and blocks phishing pages behaviorally",[],{},{"nodeType":411,"value":8273,"marks":8274,"data":8275}," — including AiTM kits, cloned login forms, device code phishing pages, and ClickFix malicious-copy-and-paste events — in real time, regardless of whether the domain is brand-new or the phishing page was delivered via email, social media, or a search ad. ",[],{},{"nodeType":407,"data":8277,"content":8278},{},[8279],{"nodeType":411,"value":8280,"marks":8281,"data":8282},"Push stops the attack as it happens, in real time, before a compromise occurs.",[],{},{"nodeType":407,"data":8284,"content":8285},{},[8286],{"nodeType":411,"value":8287,"marks":8288,"data":8289},"As a contextual education mechanism, Push provides immediate, in-browser feedback when a user encounters a threat — explaining why access was blocked and creating teachable moments at the point of need rather than months before. Every blocked threat becomes a micro-learning opportunity, reinforcing pattern recognition through repetition in the context of the user's actual work. ",[],{},{"nodeType":407,"data":8291,"content":8292},{},[8293,8297,8304,8308,8315],{"nodeType":411,"value":8294,"marks":8295,"data":8296},"Push's ",[],{},{"nodeType":416,"data":8298,"content":8299},{"uri":8266},[8300],{"nodeType":411,"value":8301,"marks":8302,"data":8303},"in-browser controls",[],{},{"nodeType":411,"value":8305,"marks":8306,"data":8307}," are designed to work this way — not by removing users from the security equation, but by making them informed participants. Warn screens with \"proceed anyway\" options, SSO login guidance, and MFA enforcement prompts respect user agency while providing real-time risk context. Our ",[],{},{"nodeType":416,"data":8309,"content":8310},{"uri":8266},[8311],{"nodeType":411,"value":8312,"marks":8313,"data":8314},"controls guide",[],{},{"nodeType":411,"value":8316,"marks":8317,"data":8318}," covers how security teams can configure these guardrails to match their organizational culture and risk tolerance.",[],{},{"nodeType":460,"data":8320,"content":8321},{},[8322],{"nodeType":411,"value":8323,"marks":8324,"data":8326},"Right-sizing security training",[8325],{"type":457},{},{"nodeType":407,"data":8328,"content":8329},{},[8330],{"nodeType":411,"value":8331,"marks":8332,"data":8333},"Training's role must be right-sized. It builds culture, shared vocabulary, and explains why controls exist — but it cannot reliably serve as the primary preventive control against sophisticated attacks encountered months later under pressure. ",[],{},{"nodeType":407,"data":8335,"content":8336},{},[8337],{"nodeType":411,"value":8338,"marks":8339,"data":8340},"The Purdue study's authors recommend that \"organizations should set realistic expectations about training outcomes and highlight the importance of technical controls rather than human-centered defenses.\" We agree.",[],{},{"nodeType":407,"data":8342,"content":8343},{},[8344],{"nodeType":411,"value":8345,"marks":8346,"data":8347},"Invest in technical controls where attacks execute — in the browser — to provide real-time prevention, detection, and education. Measure what matters: reduction in successful compromise, detection and response time, and employee reporting rates — not training completion. And stop expecting employees to reliably detect pixel-perfect attacks across every channel and workflow. ",[],{},{"nodeType":407,"data":8349,"content":8350},{},[8351],{"nodeType":411,"value":8352,"marks":8353,"data":8355},"Overrelying on user vigilance isn't a legitimate security strategy: it's blame allocation.",[8354],{"type":457},{},{"nodeType":446,"data":8357,"content":8358},{},[],{"nodeType":407,"data":8360,"content":8361},{},[8362],{"nodeType":411,"value":1086,"marks":8363,"data":8364},[],{},{"nodeType":407,"data":8366,"content":8367},{},[8368],{"nodeType":411,"value":1093,"marks":8369,"data":8370},[],{},{"nodeType":407,"data":8372,"content":8373},{},[8374,8377,8384],{"nodeType":411,"value":29,"marks":8375,"data":8376},[],{},{"nodeType":416,"data":8378,"content":8379},{"uri":2055},[8380],{"nodeType":411,"value":1107,"marks":8381,"data":8383},[8382],{"type":424},{},{"nodeType":411,"value":29,"marks":8385,"data":8386},[],{},{"entries":8388},{"hyperlink":8389,"inline":8390,"block":8391},[],[],[8392,8400,8405,8413],{"sys":8393,"__typename":1128,"title":8394,"caption":8395,"layoutMode":62,"file":8396},{"id":2369},"LLMShare malvertising","The LLMShare ad uses the legitimate ChatGPT domain and is the top result.",{"url":8397,"width":8398,"height":8399},"https://images.ctfassets.net/y1cdw1ablpvd/1aLEhiVJcLPIR4rXdzoCTv/d87eb30284e61ab813ccf9e662a1fbae/image.png",1910,1005,{"sys":8401,"__typename":1128,"title":8402,"caption":8402,"layoutMode":62,"file":8403},{"id":7933},"The clever use of sharing functionality and pixel-perfect download page clone would fool most users (and most technical controls too) — but not Push. ",{"url":8404,"width":1146,"height":1177},"https://images.ctfassets.net/y1cdw1ablpvd/7u7yyvyg3P9jepZi7iIwxf/d2c42d257d2e7ac4dfe28c37aa69a4b3/image4.png",{"sys":8406,"__typename":1128,"title":8407,"caption":8408,"layoutMode":62,"file":8409},{"id":8200},"Don't make employees the weak link image - blog - custom branding","It's harder than ever for users to identify malicious content on the web, with attackers abusing an ever-increasing list of actions that feel pretty normal to users, with a wide range of malicious payloads.",{"url":8410,"width":8411,"height":8412},"https://images.ctfassets.net/y1cdw1ablpvd/2aSm6QBWDOU6JBtOLfyp6R/d63cacab198ef9b325cbcfdbe0373b5a/Browser_Attacks_Targeting_Users__1_.png",4046,2160,{"sys":8414,"__typename":1121,"type":1122,"ctaText":8415,"buttonLabel":8416,"buttonColour":1125,"buttonUrl":2020},{"id":8213},"For a detailed breakdown of the techniques driving the biggest breaches of the past year, see our 2026 Browser Attack Techniques report.","Download now (no gates!)",{"items":8418},[],{},"Why your training budget belongs in browser security",{"items":8422},[8423,9176,10086],{"__typename":1214,"sys":8424,"content":8425,"title":3701,"synopsis":7862,"hashTags":62,"publishedDate":4613,"slug":7849,"tagsCollection":9166,"authorsCollection":9172},{"id":7864},{"json":8426},{"nodeType":403,"data":8427,"content":8428},{},[8429,8435,8459,8474,8479,8485,8498,8501,8508,8523,8578,8584,8589,8595,8668,8674,8680,8693,8696,8703,8709,8715,8722,8728,8738,8743,8749,8755,8761,8764,8771,8784,8797,8803,8809,8815,8832,8904,8910,8916,8919,8926,8939,8945,8951,8958,8961,8968,8983,8989,8995,9025,9031,9037,9040,9047,9053,9063,9068,9078,9088,9093,9103,9122,9128,9131,9138,9144,9150],{"nodeType":407,"data":8430,"content":8431},{},[8432],{"nodeType":411,"value":3718,"marks":8433,"data":8434},[],{},{"nodeType":407,"data":8436,"content":8437},{},[8438,8441,8447,8450,8456],{"nodeType":411,"value":1769,"marks":8439,"data":8440},[],{},{"nodeType":416,"data":8442,"content":8443},{"uri":3729},[8444],{"nodeType":411,"value":3732,"marks":8445,"data":8446},[],{},{"nodeType":411,"value":3736,"marks":8448,"data":8449},[],{},{"nodeType":416,"data":8451,"content":8452},{"uri":3741},[8453],{"nodeType":411,"value":3744,"marks":8454,"data":8455},[],{},{"nodeType":411,"value":3748,"marks":8457,"data":8458},[],{},{"nodeType":407,"data":8460,"content":8461},{},[8462,8465,8471],{"nodeType":411,"value":3755,"marks":8463,"data":8464},[],{},{"nodeType":416,"data":8466,"content":8467},{"uri":3741},[8468],{"nodeType":411,"value":3762,"marks":8469,"data":8470},[],{},{"nodeType":411,"value":3766,"marks":8472,"data":8473},[],{},{"nodeType":431,"data":8475,"content":8478},{"target":8476},{"sys":8477},{"id":3773,"type":436,"linkType":437},[],{"nodeType":407,"data":8480,"content":8481},{},[8482],{"nodeType":411,"value":3779,"marks":8483,"data":8484},[],{},{"nodeType":407,"data":8486,"content":8487},{},[8488,8491,8495],{"nodeType":411,"value":3786,"marks":8489,"data":8490},[],{},{"nodeType":411,"value":3790,"marks":8492,"data":8494},[8493],{"type":1822},{},{"nodeType":411,"value":3795,"marks":8496,"data":8497},[],{},{"nodeType":446,"data":8499,"content":8500},{},[],{"nodeType":450,"data":8502,"content":8503},{},[8504],{"nodeType":411,"value":3805,"marks":8505,"data":8507},[8506],{"type":457},{},{"nodeType":407,"data":8509,"content":8510},{},[8511,8514,8520],{"nodeType":411,"value":3813,"marks":8512,"data":8513},[],{},{"nodeType":416,"data":8515,"content":8516},{"uri":3818},[8517],{"nodeType":411,"value":3821,"marks":8518,"data":8519},[],{},{"nodeType":411,"value":3825,"marks":8521,"data":8522},[],{},{"nodeType":1038,"data":8524,"content":8525},{},[8526,8540,8554],{"nodeType":1042,"data":8527,"content":8528},{},[8529],{"nodeType":407,"data":8530,"content":8531},{},[8532,8537],{"nodeType":411,"value":3838,"marks":8533,"data":8536},[8534,8535],{"type":457},{"type":424},{},{"nodeType":411,"value":3844,"marks":8538,"data":8539},[],{},{"nodeType":1042,"data":8541,"content":8542},{},[8543],{"nodeType":407,"data":8544,"content":8545},{},[8546,8551],{"nodeType":411,"value":3854,"marks":8547,"data":8550},[8548,8549],{"type":457},{"type":424},{},{"nodeType":411,"value":3860,"marks":8552,"data":8553},[],{},{"nodeType":1042,"data":8555,"content":8556},{},[8557],{"nodeType":407,"data":8558,"content":8559},{},[8560,8565,8568,8575],{"nodeType":411,"value":3870,"marks":8561,"data":8564},[8562,8563],{"type":457},{"type":424},{},{"nodeType":411,"value":3876,"marks":8566,"data":8567},[],{},{"nodeType":416,"data":8569,"content":8570},{"uri":3881},[8571],{"nodeType":411,"value":3884,"marks":8572,"data":8574},[8573],{"type":424},{},{"nodeType":411,"value":1933,"marks":8576,"data":8577},[],{},{"nodeType":407,"data":8579,"content":8580},{},[8581],{"nodeType":411,"value":3895,"marks":8582,"data":8583},[],{},{"nodeType":431,"data":8585,"content":8588},{"target":8586},{"sys":8587},{"id":3902,"type":436,"linkType":437},[],{"nodeType":407,"data":8590,"content":8591},{},[8592],{"nodeType":411,"value":3908,"marks":8593,"data":8594},[],{},{"nodeType":1038,"data":8596,"content":8597},{},[8598,8612,8626,8640,8654],{"nodeType":1042,"data":8599,"content":8600},{},[8601],{"nodeType":407,"data":8602,"content":8603},{},[8604,8609],{"nodeType":411,"value":3921,"marks":8605,"data":8608},[8606,8607],{"type":457},{"type":424},{},{"nodeType":411,"value":3927,"marks":8610,"data":8611},[],{},{"nodeType":1042,"data":8613,"content":8614},{},[8615],{"nodeType":407,"data":8616,"content":8617},{},[8618,8623],{"nodeType":411,"value":3937,"marks":8619,"data":8622},[8620,8621],{"type":457},{"type":424},{},{"nodeType":411,"value":3943,"marks":8624,"data":8625},[],{},{"nodeType":1042,"data":8627,"content":8628},{},[8629],{"nodeType":407,"data":8630,"content":8631},{},[8632,8637],{"nodeType":411,"value":3953,"marks":8633,"data":8636},[8634,8635],{"type":457},{"type":424},{},{"nodeType":411,"value":3959,"marks":8638,"data":8639},[],{},{"nodeType":1042,"data":8641,"content":8642},{},[8643],{"nodeType":407,"data":8644,"content":8645},{},[8646,8651],{"nodeType":411,"value":3969,"marks":8647,"data":8650},[8648,8649],{"type":457},{"type":424},{},{"nodeType":411,"value":3975,"marks":8652,"data":8653},[],{},{"nodeType":1042,"data":8655,"content":8656},{},[8657],{"nodeType":407,"data":8658,"content":8659},{},[8660,8665],{"nodeType":411,"value":3985,"marks":8661,"data":8664},[8662,8663],{"type":457},{"type":424},{},{"nodeType":411,"value":3991,"marks":8666,"data":8667},[],{},{"nodeType":407,"data":8669,"content":8670},{},[8671],{"nodeType":411,"value":3998,"marks":8672,"data":8673},[],{},{"nodeType":407,"data":8675,"content":8676},{},[8677],{"nodeType":411,"value":4005,"marks":8678,"data":8679},[],{},{"nodeType":407,"data":8681,"content":8682},{},[8683,8686,8690],{"nodeType":411,"value":4012,"marks":8684,"data":8685},[],{},{"nodeType":411,"value":4016,"marks":8687,"data":8689},[8688],{"type":1822},{},{"nodeType":411,"value":4021,"marks":8691,"data":8692},[],{},{"nodeType":446,"data":8694,"content":8695},{},[],{"nodeType":450,"data":8697,"content":8698},{},[8699],{"nodeType":411,"value":4031,"marks":8700,"data":8702},[8701],{"type":457},{},{"nodeType":407,"data":8704,"content":8705},{},[8706],{"nodeType":411,"value":4039,"marks":8707,"data":8708},[],{},{"nodeType":407,"data":8710,"content":8711},{},[8712],{"nodeType":411,"value":4046,"marks":8713,"data":8714},[],{},{"nodeType":407,"data":8716,"content":8717},{},[8718],{"nodeType":411,"value":4053,"marks":8719,"data":8721},[8720],{"type":457},{},{"nodeType":407,"data":8723,"content":8724},{},[8725],{"nodeType":411,"value":4061,"marks":8726,"data":8727},[],{},{"nodeType":407,"data":8729,"content":8730},{},[8731,8735],{"nodeType":411,"value":4068,"marks":8732,"data":8734},[8733],{"type":1822},{},{"nodeType":411,"value":4073,"marks":8736,"data":8737},[],{},{"nodeType":431,"data":8739,"content":8742},{"target":8740},{"sys":8741},{"id":4080,"type":436,"linkType":437},[],{"nodeType":407,"data":8744,"content":8745},{},[8746],{"nodeType":411,"value":4086,"marks":8747,"data":8748},[],{},{"nodeType":407,"data":8750,"content":8751},{},[8752],{"nodeType":411,"value":4093,"marks":8753,"data":8754},[],{},{"nodeType":407,"data":8756,"content":8757},{},[8758],{"nodeType":411,"value":4100,"marks":8759,"data":8760},[],{},{"nodeType":446,"data":8762,"content":8763},{},[],{"nodeType":450,"data":8765,"content":8766},{},[8767],{"nodeType":411,"value":4110,"marks":8768,"data":8770},[8769],{"type":457},{},{"nodeType":407,"data":8772,"content":8773},{},[8774,8777,8781],{"nodeType":411,"value":4118,"marks":8775,"data":8776},[],{},{"nodeType":411,"value":4122,"marks":8778,"data":8780},[8779],{"type":457},{},{"nodeType":411,"value":4127,"marks":8782,"data":8783},[],{},{"nodeType":407,"data":8785,"content":8786},{},[8787,8790,8794],{"nodeType":411,"value":4134,"marks":8788,"data":8789},[],{},{"nodeType":411,"value":4138,"marks":8791,"data":8793},[8792],{"type":457},{},{"nodeType":411,"value":4143,"marks":8795,"data":8796},[],{},{"nodeType":407,"data":8798,"content":8799},{},[8800],{"nodeType":411,"value":4150,"marks":8801,"data":8802},[],{},{"nodeType":407,"data":8804,"content":8805},{},[8806],{"nodeType":411,"value":4157,"marks":8807,"data":8808},[],{},{"nodeType":407,"data":8810,"content":8811},{},[8812],{"nodeType":411,"value":4164,"marks":8813,"data":8814},[],{},{"nodeType":407,"data":8816,"content":8817},{},[8818,8821,8829],{"nodeType":411,"value":4171,"marks":8819,"data":8820},[],{},{"nodeType":416,"data":8822,"content":8823},{"uri":4176},[8824],{"nodeType":411,"value":4179,"marks":8825,"data":8828},[8826,8827],{"type":424},{"type":457},{},{"nodeType":411,"value":4185,"marks":8830,"data":8831},[],{},{"nodeType":1038,"data":8833,"content":8834},{},[8835,8853,8871],{"nodeType":1042,"data":8836,"content":8837},{},[8838],{"nodeType":407,"data":8839,"content":8840},{},[8841,8844,8850],{"nodeType":411,"value":4198,"marks":8842,"data":8843},[],{},{"nodeType":416,"data":8845,"content":8846},{"uri":1453},[8847],{"nodeType":411,"value":4205,"marks":8848,"data":8849},[],{},{"nodeType":411,"value":4209,"marks":8851,"data":8852},[],{},{"nodeType":1042,"data":8854,"content":8855},{},[8856],{"nodeType":407,"data":8857,"content":8858},{},[8859,8862,8868],{"nodeType":411,"value":4219,"marks":8860,"data":8861},[],{},{"nodeType":416,"data":8863,"content":8864},{"uri":1580},[8865],{"nodeType":411,"value":4226,"marks":8866,"data":8867},[],{},{"nodeType":411,"value":4230,"marks":8869,"data":8870},[],{},{"nodeType":1042,"data":8872,"content":8873},{},[8874],{"nodeType":407,"data":8875,"content":8876},{},[8877,8880,8887,8890,8894,8897,8901],{"nodeType":411,"value":29,"marks":8878,"data":8879},[],{},{"nodeType":416,"data":8881,"content":8882},{"uri":4244},[8883],{"nodeType":411,"value":4247,"marks":8884,"data":8886},[8885],{"type":424},{},{"nodeType":411,"value":4252,"marks":8888,"data":8889},[],{},{"nodeType":411,"value":4256,"marks":8891,"data":8893},[8892],{"type":457},{},{"nodeType":411,"value":4261,"marks":8895,"data":8896},[],{},{"nodeType":411,"value":4265,"marks":8898,"data":8900},[8899],{"type":457},{},{"nodeType":411,"value":1933,"marks":8902,"data":8903},[],{},{"nodeType":407,"data":8905,"content":8906},{},[8907],{"nodeType":411,"value":4276,"marks":8908,"data":8909},[],{},{"nodeType":407,"data":8911,"content":8912},{},[8913],{"nodeType":411,"value":4283,"marks":8914,"data":8915},[],{},{"nodeType":446,"data":8917,"content":8918},{},[],{"nodeType":460,"data":8920,"content":8921},{},[8922],{"nodeType":411,"value":4293,"marks":8923,"data":8925},[8924],{"type":457},{},{"nodeType":407,"data":8927,"content":8928},{},[8929,8932,8936],{"nodeType":411,"value":4301,"marks":8930,"data":8931},[],{},{"nodeType":411,"value":4305,"marks":8933,"data":8935},[8934],{"type":1822},{},{"nodeType":411,"value":4310,"marks":8937,"data":8938},[],{},{"nodeType":407,"data":8940,"content":8941},{},[8942],{"nodeType":411,"value":4317,"marks":8943,"data":8944},[],{},{"nodeType":407,"data":8946,"content":8947},{},[8948],{"nodeType":411,"value":4324,"marks":8949,"data":8950},[],{},{"nodeType":407,"data":8952,"content":8953},{},[8954],{"nodeType":411,"value":4331,"marks":8955,"data":8957},[8956],{"type":457},{},{"nodeType":446,"data":8959,"content":8960},{},[],{"nodeType":450,"data":8962,"content":8963},{},[8964],{"nodeType":411,"value":4342,"marks":8965,"data":8967},[8966],{"type":457},{},{"nodeType":407,"data":8969,"content":8970},{},[8971,8974,8980],{"nodeType":411,"value":4350,"marks":8972,"data":8973},[],{},{"nodeType":416,"data":8975,"content":8976},{"uri":4176},[8977],{"nodeType":411,"value":4357,"marks":8978,"data":8979},[],{},{"nodeType":411,"value":4361,"marks":8981,"data":8982},[],{},{"nodeType":407,"data":8984,"content":8985},{},[8986],{"nodeType":411,"value":4368,"marks":8987,"data":8988},[],{},{"nodeType":407,"data":8990,"content":8991},{},[8992],{"nodeType":411,"value":4375,"marks":8993,"data":8994},[],{},{"nodeType":1038,"data":8996,"content":8997},{},[8998,9007,9016],{"nodeType":1042,"data":8999,"content":9000},{},[9001],{"nodeType":407,"data":9002,"content":9003},{},[9004],{"nodeType":411,"value":4388,"marks":9005,"data":9006},[],{},{"nodeType":1042,"data":9008,"content":9009},{},[9010],{"nodeType":407,"data":9011,"content":9012},{},[9013],{"nodeType":411,"value":4398,"marks":9014,"data":9015},[],{},{"nodeType":1042,"data":9017,"content":9018},{},[9019],{"nodeType":407,"data":9020,"content":9021},{},[9022],{"nodeType":411,"value":4408,"marks":9023,"data":9024},[],{},{"nodeType":407,"data":9026,"content":9027},{},[9028],{"nodeType":411,"value":4415,"marks":9029,"data":9030},[],{},{"nodeType":407,"data":9032,"content":9033},{},[9034],{"nodeType":411,"value":4422,"marks":9035,"data":9036},[],{},{"nodeType":446,"data":9038,"content":9039},{},[],{"nodeType":450,"data":9041,"content":9042},{},[9043],{"nodeType":411,"value":4432,"marks":9044,"data":9046},[9045],{"type":457},{},{"nodeType":407,"data":9048,"content":9049},{},[9050],{"nodeType":411,"value":4440,"marks":9051,"data":9052},[],{},{"nodeType":407,"data":9054,"content":9055},{},[9056,9060],{"nodeType":411,"value":4447,"marks":9057,"data":9059},[9058],{"type":457},{},{"nodeType":411,"value":4452,"marks":9061,"data":9062},[],{},{"nodeType":431,"data":9064,"content":9067},{"target":9065},{"sys":9066},{"id":4459,"type":436,"linkType":437},[],{"nodeType":407,"data":9069,"content":9070},{},[9071,9075],{"nodeType":411,"value":4465,"marks":9072,"data":9074},[9073],{"type":457},{},{"nodeType":411,"value":4470,"marks":9076,"data":9077},[],{},{"nodeType":407,"data":9079,"content":9080},{},[9081,9085],{"nodeType":411,"value":4477,"marks":9082,"data":9084},[9083],{"type":457},{},{"nodeType":411,"value":4482,"marks":9086,"data":9087},[],{},{"nodeType":431,"data":9089,"content":9092},{"target":9090},{"sys":9091},{"id":4489,"type":436,"linkType":437},[],{"nodeType":407,"data":9094,"content":9095},{},[9096,9100],{"nodeType":411,"value":4495,"marks":9097,"data":9099},[9098],{"type":457},{},{"nodeType":411,"value":4500,"marks":9101,"data":9102},[],{},{"nodeType":407,"data":9104,"content":9105},{},[9106,9110,9113,9119],{"nodeType":411,"value":4507,"marks":9107,"data":9109},[9108],{"type":457},{},{"nodeType":411,"value":4512,"marks":9111,"data":9112},[],{},{"nodeType":416,"data":9114,"content":9115},{"uri":3818},[9116],{"nodeType":411,"value":3821,"marks":9117,"data":9118},[],{},{"nodeType":411,"value":4522,"marks":9120,"data":9121},[],{},{"nodeType":407,"data":9123,"content":9124},{},[9125],{"nodeType":411,"value":4529,"marks":9126,"data":9127},[],{},{"nodeType":446,"data":9129,"content":9130},{},[],{"nodeType":450,"data":9132,"content":9133},{},[9134],{"nodeType":411,"value":4539,"marks":9135,"data":9137},[9136],{"type":457},{},{"nodeType":407,"data":9139,"content":9140},{},[9141],{"nodeType":411,"value":4547,"marks":9142,"data":9143},[],{},{"nodeType":407,"data":9145,"content":9146},{},[9147],{"nodeType":411,"value":1093,"marks":9148,"data":9149},[],{},{"nodeType":407,"data":9151,"content":9152},{},[9153,9156,9163],{"nodeType":411,"value":2050,"marks":9154,"data":9155},[],{},{"nodeType":416,"data":9157,"content":9158},{"uri":2055},[9159],{"nodeType":411,"value":2058,"marks":9160,"data":9162},[9161],{"type":424},{},{"nodeType":411,"value":2062,"marks":9164,"data":9165},[],{},{"items":9167},[9168,9170],{"sys":9169,"name":5652},{"id":5651},{"sys":9171,"name":5648},{"id":5647},{"items":9173},[9174],{"fullName":3705,"firstName":3706,"jobTitle":3707,"profilePicture":9175},{"url":3709},{"__typename":1214,"sys":9177,"content":9178,"title":5639,"synopsis":5640,"hashTags":62,"publishedDate":5641,"slug":5642,"tagsCollection":10076,"authorsCollection":10082},{"id":4618},{"json":9179},{"nodeType":403,"data":9180,"content":9181},{},[9182,9189,9195,9202,9713,9718,9724,9730,9733,9740,9746,9753,9759,9764,9769,9776,9789,9796,9802,9809,9815,9820,9827,9833,9838,9841,9848,9863,9879,9894,9900,9903,9910,9916,9926,9932,9942,9948,9953,9963,9969,9979,9985,9991,9996,10006,10012,10015,10022,10028,10034,10040,10045,10048,10054,10060],{"nodeType":450,"data":9183,"content":9184},{},[9185],{"nodeType":411,"value":4627,"marks":9186,"data":9188},[9187],{"type":457},{},{"nodeType":407,"data":9190,"content":9191},{},[9192],{"nodeType":411,"value":4635,"marks":9193,"data":9194},[],{},{"nodeType":407,"data":9196,"content":9197},{},[9198],{"nodeType":411,"value":4642,"marks":9199,"data":9201},[9200],{"type":457},{},{"nodeType":2753,"data":9203,"content":9204},{},[9205,9248,9326,9385,9435,9544,9594,9654],{"nodeType":2757,"data":9206,"content":9207},{},[9208,9218,9228,9238],{"nodeType":2787,"data":9209,"content":9210},{},[9211],{"nodeType":407,"data":9212,"content":9213},{},[9214],{"nodeType":411,"value":4659,"marks":9215,"data":9217},[9216],{"type":457},{},{"nodeType":2787,"data":9219,"content":9220},{},[9221],{"nodeType":407,"data":9222,"content":9223},{},[9224],{"nodeType":411,"value":4670,"marks":9225,"data":9227},[9226],{"type":457},{},{"nodeType":2787,"data":9229,"content":9230},{},[9231],{"nodeType":407,"data":9232,"content":9233},{},[9234],{"nodeType":411,"value":4681,"marks":9235,"data":9237},[9236],{"type":457},{},{"nodeType":2787,"data":9239,"content":9240},{},[9241],{"nodeType":407,"data":9242,"content":9243},{},[9244],{"nodeType":411,"value":4692,"marks":9245,"data":9247},[9246],{"type":457},{},{"nodeType":2757,"data":9249,"content":9250},{},[9251,9271,9280,9307],{"nodeType":2787,"data":9252,"content":9253},{},[9254],{"nodeType":407,"data":9255,"content":9256},{},[9257,9260,9268],{"nodeType":411,"value":29,"marks":9258,"data":9259},[],{},{"nodeType":416,"data":9261,"content":9262},{"uri":4710},[9263],{"nodeType":411,"value":4713,"marks":9264,"data":9267},[9265,9266],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":9269,"data":9270},[],{},{"nodeType":2787,"data":9272,"content":9273},{},[9274],{"nodeType":407,"data":9275,"content":9276},{},[9277],{"nodeType":411,"value":4728,"marks":9278,"data":9279},[],{},{"nodeType":2787,"data":9281,"content":9282},{},[9283],{"nodeType":407,"data":9284,"content":9285},{},[9286,9289,9295,9298,9304],{"nodeType":411,"value":4738,"marks":9287,"data":9288},[],{},{"nodeType":416,"data":9290,"content":9291},{"uri":4743},[9292],{"nodeType":411,"value":4746,"marks":9293,"data":9294},[],{},{"nodeType":411,"value":4750,"marks":9296,"data":9297},[],{},{"nodeType":416,"data":9299,"content":9300},{"uri":4755},[9301],{"nodeType":411,"value":4758,"marks":9302,"data":9303},[],{},{"nodeType":411,"value":4762,"marks":9305,"data":9306},[],{},{"nodeType":2787,"data":9308,"content":9309},{},[9310],{"nodeType":407,"data":9311,"content":9312},{},[9313,9316,9323],{"nodeType":411,"value":29,"marks":9314,"data":9315},[],{},{"nodeType":416,"data":9317,"content":9318},{"uri":4743},[9319],{"nodeType":411,"value":4778,"marks":9320,"data":9322},[9321],{"type":424},{},{"nodeType":411,"value":4783,"marks":9324,"data":9325},[],{},{"nodeType":2757,"data":9327,"content":9328},{},[9329,9349,9358,9376],{"nodeType":2787,"data":9330,"content":9331},{},[9332],{"nodeType":407,"data":9333,"content":9334},{},[9335,9338,9346],{"nodeType":411,"value":29,"marks":9336,"data":9337},[],{},{"nodeType":416,"data":9339,"content":9340},{"uri":4800},[9341],{"nodeType":411,"value":4803,"marks":9342,"data":9345},[9343,9344],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":9347,"data":9348},[],{},{"nodeType":2787,"data":9350,"content":9351},{},[9352],{"nodeType":407,"data":9353,"content":9354},{},[9355],{"nodeType":411,"value":4818,"marks":9356,"data":9357},[],{},{"nodeType":2787,"data":9359,"content":9360},{},[9361],{"nodeType":407,"data":9362,"content":9363},{},[9364,9367,9373],{"nodeType":411,"value":4828,"marks":9365,"data":9366},[],{},{"nodeType":416,"data":9368,"content":9369},{"uri":4800},[9370],{"nodeType":411,"value":4835,"marks":9371,"data":9372},[],{},{"nodeType":411,"value":4839,"marks":9374,"data":9375},[],{},{"nodeType":2787,"data":9377,"content":9378},{},[9379],{"nodeType":407,"data":9380,"content":9381},{},[9382],{"nodeType":411,"value":4849,"marks":9383,"data":9384},[],{},{"nodeType":2757,"data":9386,"content":9387},{},[9388,9408,9417,9426],{"nodeType":2787,"data":9389,"content":9390},{},[9391],{"nodeType":407,"data":9392,"content":9393},{},[9394,9397,9405],{"nodeType":411,"value":29,"marks":9395,"data":9396},[],{},{"nodeType":416,"data":9398,"content":9399},{"uri":4866},[9400],{"nodeType":411,"value":4869,"marks":9401,"data":9404},[9402,9403],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":9406,"data":9407},[],{},{"nodeType":2787,"data":9409,"content":9410},{},[9411],{"nodeType":407,"data":9412,"content":9413},{},[9414],{"nodeType":411,"value":4884,"marks":9415,"data":9416},[],{},{"nodeType":2787,"data":9418,"content":9419},{},[9420],{"nodeType":407,"data":9421,"content":9422},{},[9423],{"nodeType":411,"value":4894,"marks":9424,"data":9425},[],{},{"nodeType":2787,"data":9427,"content":9428},{},[9429],{"nodeType":407,"data":9430,"content":9431},{},[9432],{"nodeType":411,"value":4904,"marks":9433,"data":9434},[],{},{"nodeType":2757,"data":9436,"content":9437},{},[9438,9458,9467,9508],{"nodeType":2787,"data":9439,"content":9440},{},[9441],{"nodeType":407,"data":9442,"content":9443},{},[9444,9447,9455],{"nodeType":411,"value":29,"marks":9445,"data":9446},[],{},{"nodeType":416,"data":9448,"content":9449},{"uri":4921},[9450],{"nodeType":411,"value":4924,"marks":9451,"data":9454},[9452,9453],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":9456,"data":9457},[],{},{"nodeType":2787,"data":9459,"content":9460},{},[9461],{"nodeType":407,"data":9462,"content":9463},{},[9464],{"nodeType":411,"value":4939,"marks":9465,"data":9466},[],{},{"nodeType":2787,"data":9468,"content":9469},{},[9470],{"nodeType":407,"data":9471,"content":9472},{},[9473,9476,9483,9486,9492,9495,9505],{"nodeType":411,"value":29,"marks":9474,"data":9475},[],{},{"nodeType":416,"data":9477,"content":9478},{"uri":4953},[9479],{"nodeType":411,"value":4956,"marks":9480,"data":9482},[9481],{"type":424},{},{"nodeType":411,"value":4961,"marks":9484,"data":9485},[],{},{"nodeType":416,"data":9487,"content":9488},{"uri":4966},[9489],{"nodeType":411,"value":4969,"marks":9490,"data":9491},[],{},{"nodeType":411,"value":4973,"marks":9493,"data":9494},[],{},{"nodeType":416,"data":9496,"content":9497},{"uri":4978},[9498,9501],{"nodeType":411,"value":4981,"marks":9499,"data":9500},[],{},{"nodeType":411,"value":4985,"marks":9502,"data":9504},[9503],{"type":424},{},{"nodeType":411,"value":29,"marks":9506,"data":9507},[],{},{"nodeType":2787,"data":9509,"content":9510},{},[9511],{"nodeType":407,"data":9512,"content":9513},{},[9514,9517,9523,9526,9532,9535,9541],{"nodeType":411,"value":4999,"marks":9515,"data":9516},[],{},{"nodeType":416,"data":9518,"content":9519},{"uri":4953},[9520],{"nodeType":411,"value":5006,"marks":9521,"data":9522},[],{},{"nodeType":411,"value":5010,"marks":9524,"data":9525},[],{},{"nodeType":416,"data":9527,"content":9528},{"uri":4966},[9529],{"nodeType":411,"value":5017,"marks":9530,"data":9531},[],{},{"nodeType":411,"value":5010,"marks":9533,"data":9534},[],{},{"nodeType":416,"data":9536,"content":9537},{"uri":4978},[9538],{"nodeType":411,"value":5027,"marks":9539,"data":9540},[],{},{"nodeType":411,"value":29,"marks":9542,"data":9543},[],{},{"nodeType":2757,"data":9545,"content":9546},{},[9547,9567,9576,9585],{"nodeType":2787,"data":9548,"content":9549},{},[9550],{"nodeType":407,"data":9551,"content":9552},{},[9553,9556,9564],{"nodeType":411,"value":29,"marks":9554,"data":9555},[],{},{"nodeType":416,"data":9557,"content":9558},{"uri":5047},[9559],{"nodeType":411,"value":5050,"marks":9560,"data":9563},[9561,9562],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":9565,"data":9566},[],{},{"nodeType":2787,"data":9568,"content":9569},{},[9570],{"nodeType":407,"data":9571,"content":9572},{},[9573],{"nodeType":411,"value":5065,"marks":9574,"data":9575},[],{},{"nodeType":2787,"data":9577,"content":9578},{},[9579],{"nodeType":407,"data":9580,"content":9581},{},[9582],{"nodeType":411,"value":5075,"marks":9583,"data":9584},[],{},{"nodeType":2787,"data":9586,"content":9587},{},[9588],{"nodeType":407,"data":9589,"content":9590},{},[9591],{"nodeType":411,"value":5085,"marks":9592,"data":9593},[],{},{"nodeType":2757,"data":9595,"content":9596},{},[9597,9617,9626,9635],{"nodeType":2787,"data":9598,"content":9599},{},[9600],{"nodeType":407,"data":9601,"content":9602},{},[9603,9606,9614],{"nodeType":411,"value":29,"marks":9604,"data":9605},[],{},{"nodeType":416,"data":9607,"content":9608},{"uri":5102},[9609],{"nodeType":411,"value":5105,"marks":9610,"data":9613},[9611,9612],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":9615,"data":9616},[],{},{"nodeType":2787,"data":9618,"content":9619},{},[9620],{"nodeType":407,"data":9621,"content":9622},{},[9623],{"nodeType":411,"value":5120,"marks":9624,"data":9625},[],{},{"nodeType":2787,"data":9627,"content":9628},{},[9629],{"nodeType":407,"data":9630,"content":9631},{},[9632],{"nodeType":411,"value":5130,"marks":9633,"data":9634},[],{},{"nodeType":2787,"data":9636,"content":9637},{},[9638],{"nodeType":407,"data":9639,"content":9640},{},[9641,9644,9651],{"nodeType":411,"value":29,"marks":9642,"data":9643},[],{},{"nodeType":416,"data":9645,"content":9646},{"uri":5144},[9647],{"nodeType":411,"value":5147,"marks":9648,"data":9650},[9649],{"type":424},{},{"nodeType":411,"value":5152,"marks":9652,"data":9653},[],{},{"nodeType":2757,"data":9655,"content":9656},{},[9657,9677,9686,9704],{"nodeType":2787,"data":9658,"content":9659},{},[9660],{"nodeType":407,"data":9661,"content":9662},{},[9663,9666,9674],{"nodeType":411,"value":29,"marks":9664,"data":9665},[],{},{"nodeType":416,"data":9667,"content":9668},{"uri":5169},[9669],{"nodeType":411,"value":5172,"marks":9670,"data":9673},[9671,9672],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":9675,"data":9676},[],{},{"nodeType":2787,"data":9678,"content":9679},{},[9680],{"nodeType":407,"data":9681,"content":9682},{},[9683],{"nodeType":411,"value":5187,"marks":9684,"data":9685},[],{},{"nodeType":2787,"data":9687,"content":9688},{},[9689],{"nodeType":407,"data":9690,"content":9691},{},[9692,9695,9701],{"nodeType":411,"value":5197,"marks":9693,"data":9694},[],{},{"nodeType":416,"data":9696,"content":9697},{"uri":5202},[9698],{"nodeType":411,"value":5205,"marks":9699,"data":9700},[],{},{"nodeType":411,"value":5209,"marks":9702,"data":9703},[],{},{"nodeType":2787,"data":9705,"content":9706},{},[9707],{"nodeType":407,"data":9708,"content":9709},{},[9710],{"nodeType":411,"value":5219,"marks":9711,"data":9712},[],{},{"nodeType":431,"data":9714,"content":9717},{"target":9715},{"sys":9716},{"id":5226,"type":436,"linkType":437},[],{"nodeType":407,"data":9719,"content":9720},{},[9721],{"nodeType":411,"value":5232,"marks":9722,"data":9723},[],{},{"nodeType":407,"data":9725,"content":9726},{},[9727],{"nodeType":411,"value":5239,"marks":9728,"data":9729},[],{},{"nodeType":446,"data":9731,"content":9732},{},[],{"nodeType":450,"data":9734,"content":9735},{},[9736],{"nodeType":411,"value":5249,"marks":9737,"data":9739},[9738],{"type":457},{},{"nodeType":407,"data":9741,"content":9742},{},[9743],{"nodeType":411,"value":5257,"marks":9744,"data":9745},[],{},{"nodeType":460,"data":9747,"content":9748},{},[9749],{"nodeType":411,"value":5264,"marks":9750,"data":9752},[9751],{"type":457},{},{"nodeType":407,"data":9754,"content":9755},{},[9756],{"nodeType":411,"value":5272,"marks":9757,"data":9758},[],{},{"nodeType":431,"data":9760,"content":9763},{"target":9761},{"sys":9762},{"id":5279,"type":436,"linkType":437},[],{"nodeType":431,"data":9765,"content":9768},{"target":9766},{"sys":9767},{"id":3773,"type":436,"linkType":437},[],{"nodeType":460,"data":9770,"content":9771},{},[9772],{"nodeType":411,"value":5290,"marks":9773,"data":9775},[9774],{"type":457},{},{"nodeType":407,"data":9777,"content":9778},{},[9779,9782,9786],{"nodeType":411,"value":5298,"marks":9780,"data":9781},[],{},{"nodeType":411,"value":5302,"marks":9783,"data":9785},[9784],{"type":457},{},{"nodeType":411,"value":5307,"marks":9787,"data":9788},[],{},{"nodeType":460,"data":9790,"content":9791},{},[9792],{"nodeType":411,"value":5314,"marks":9793,"data":9795},[9794],{"type":457},{},{"nodeType":407,"data":9797,"content":9798},{},[9799],{"nodeType":411,"value":5322,"marks":9800,"data":9801},[],{},{"nodeType":460,"data":9803,"content":9804},{},[9805],{"nodeType":411,"value":5329,"marks":9806,"data":9808},[9807],{"type":457},{},{"nodeType":407,"data":9810,"content":9811},{},[9812],{"nodeType":411,"value":5337,"marks":9813,"data":9814},[],{},{"nodeType":431,"data":9816,"content":9819},{"target":9817},{"sys":9818},{"id":5344,"type":436,"linkType":437},[],{"nodeType":460,"data":9821,"content":9822},{},[9823],{"nodeType":411,"value":5350,"marks":9824,"data":9826},[9825],{"type":457},{},{"nodeType":407,"data":9828,"content":9829},{},[9830],{"nodeType":411,"value":5358,"marks":9831,"data":9832},[],{},{"nodeType":431,"data":9834,"content":9837},{"target":9835},{"sys":9836},{"id":5365,"type":436,"linkType":437},[],{"nodeType":446,"data":9839,"content":9840},{},[],{"nodeType":450,"data":9842,"content":9843},{},[9844],{"nodeType":411,"value":5374,"marks":9845,"data":9847},[9846],{"type":457},{},{"nodeType":407,"data":9849,"content":9850},{},[9851,9854,9860],{"nodeType":411,"value":5382,"marks":9852,"data":9853},[],{},{"nodeType":416,"data":9855,"content":9856},{"uri":5387},[9857],{"nodeType":411,"value":5390,"marks":9858,"data":9859},[],{},{"nodeType":411,"value":5394,"marks":9861,"data":9862},[],{},{"nodeType":407,"data":9864,"content":9865},{},[9866,9869,9876],{"nodeType":411,"value":5401,"marks":9867,"data":9868},[],{},{"nodeType":416,"data":9870,"content":9871},{"uri":5406},[9872],{"nodeType":411,"value":5409,"marks":9873,"data":9875},[9874],{"type":424},{},{"nodeType":411,"value":5414,"marks":9877,"data":9878},[],{},{"nodeType":407,"data":9880,"content":9881},{},[9882,9885,9891],{"nodeType":411,"value":5421,"marks":9883,"data":9884},[],{},{"nodeType":416,"data":9886,"content":9887},{"uri":5426},[9888],{"nodeType":411,"value":5429,"marks":9889,"data":9890},[],{},{"nodeType":411,"value":5433,"marks":9892,"data":9893},[],{},{"nodeType":407,"data":9895,"content":9896},{},[9897],{"nodeType":411,"value":5440,"marks":9898,"data":9899},[],{},{"nodeType":446,"data":9901,"content":9902},{},[],{"nodeType":450,"data":9904,"content":9905},{},[9906],{"nodeType":411,"value":5450,"marks":9907,"data":9909},[9908],{"type":457},{},{"nodeType":407,"data":9911,"content":9912},{},[9913],{"nodeType":411,"value":5458,"marks":9914,"data":9915},[],{},{"nodeType":460,"data":9917,"content":9918},{},[9919,9923],{"nodeType":411,"value":5465,"marks":9920,"data":9922},[9921],{"type":457},{},{"nodeType":411,"value":4981,"marks":9924,"data":9925},[],{},{"nodeType":407,"data":9927,"content":9928},{},[9929],{"nodeType":411,"value":5476,"marks":9930,"data":9931},[],{},{"nodeType":460,"data":9933,"content":9934},{},[9935,9939],{"nodeType":411,"value":5483,"marks":9936,"data":9938},[9937],{"type":457},{},{"nodeType":411,"value":4981,"marks":9940,"data":9941},[],{},{"nodeType":407,"data":9943,"content":9944},{},[9945],{"nodeType":411,"value":5494,"marks":9946,"data":9947},[],{},{"nodeType":431,"data":9949,"content":9952},{"target":9950},{"sys":9951},{"id":5501,"type":436,"linkType":437},[],{"nodeType":460,"data":9954,"content":9955},{},[9956,9960],{"nodeType":411,"value":5507,"marks":9957,"data":9959},[9958],{"type":457},{},{"nodeType":411,"value":4981,"marks":9961,"data":9962},[],{},{"nodeType":407,"data":9964,"content":9965},{},[9966],{"nodeType":411,"value":5518,"marks":9967,"data":9968},[],{},{"nodeType":460,"data":9970,"content":9971},{},[9972,9976],{"nodeType":411,"value":5525,"marks":9973,"data":9975},[9974],{"type":457},{},{"nodeType":411,"value":4981,"marks":9977,"data":9978},[],{},{"nodeType":407,"data":9980,"content":9981},{},[9982],{"nodeType":411,"value":5536,"marks":9983,"data":9984},[],{},{"nodeType":407,"data":9986,"content":9987},{},[9988],{"nodeType":411,"value":5543,"marks":9989,"data":9990},[],{},{"nodeType":431,"data":9992,"content":9995},{"target":9993},{"sys":9994},{"id":5550,"type":436,"linkType":437},[],{"nodeType":460,"data":9997,"content":9998},{},[9999,10003],{"nodeType":411,"value":5556,"marks":10000,"data":10002},[10001],{"type":457},{},{"nodeType":411,"value":4981,"marks":10004,"data":10005},[],{},{"nodeType":407,"data":10007,"content":10008},{},[10009],{"nodeType":411,"value":5567,"marks":10010,"data":10011},[],{},{"nodeType":446,"data":10013,"content":10014},{},[],{"nodeType":450,"data":10016,"content":10017},{},[10018],{"nodeType":411,"value":5577,"marks":10019,"data":10021},[10020],{"type":457},{},{"nodeType":407,"data":10023,"content":10024},{},[10025],{"nodeType":411,"value":5585,"marks":10026,"data":10027},[],{},{"nodeType":407,"data":10029,"content":10030},{},[10031],{"nodeType":411,"value":5592,"marks":10032,"data":10033},[],{},{"nodeType":407,"data":10035,"content":10036},{},[10037],{"nodeType":411,"value":5599,"marks":10038,"data":10039},[],{},{"nodeType":431,"data":10041,"content":10044},{"target":10042},{"sys":10043},{"id":5606,"type":436,"linkType":437},[],{"nodeType":446,"data":10046,"content":10047},{},[],{"nodeType":407,"data":10049,"content":10050},{},[10051],{"nodeType":411,"value":1086,"marks":10052,"data":10053},[],{},{"nodeType":407,"data":10055,"content":10056},{},[10057],{"nodeType":411,"value":1093,"marks":10058,"data":10059},[],{},{"nodeType":407,"data":10061,"content":10062},{},[10063,10066,10073],{"nodeType":411,"value":29,"marks":10064,"data":10065},[],{},{"nodeType":416,"data":10067,"content":10068},{"uri":2055},[10069],{"nodeType":411,"value":1107,"marks":10070,"data":10072},[10071],{"type":424},{},{"nodeType":411,"value":29,"marks":10074,"data":10075},[],{},{"items":10077},[10078,10080],{"sys":10079,"name":5648},{"id":5647},{"sys":10081,"name":5652},{"id":5651},{"items":10083},[10084],{"fullName":5656,"firstName":5657,"jobTitle":5658,"profilePicture":10085},{"url":5660},{"__typename":1214,"sys":10087,"content":10088,"title":7832,"synopsis":7833,"hashTags":62,"publishedDate":7834,"slug":7835,"tagsCollection":11157,"authorsCollection":11163},{"id":6599},{"json":10089},{"nodeType":403,"data":10090,"content":10091},{},[10092,10105,10110,10116,10122,10127,10130,10137,10144,10159,10197,10202,10215,10218,10225,10232,10254,10286,10292,10295,10302,10309,10315,10320,10326,10329,10336,10343,10377,10407,10413,10416,10423,10430,10450,10456,10495,10501,10504,10511,10518,10554,10560,10565,10568,10575,10582,10608,10614,10619,10625,10628,10635,10642,10665,10671,10677,10683,10686,10693,10700,10706,10711,10717,10738,10761,10764,10771,10778,10784,10790,10793,10800,10855,10858,10865,10871,11139,11142],{"nodeType":407,"data":10093,"content":10094},{},[10095,10098,10102],{"nodeType":411,"value":6608,"marks":10096,"data":10097},[],{},{"nodeType":411,"value":6612,"marks":10099,"data":10101},[10100],{"type":457},{},{"nodeType":411,"value":6617,"marks":10103,"data":10104},[],{},{"nodeType":431,"data":10106,"content":10109},{"target":10107},{"sys":10108},{"id":6624,"type":436,"linkType":437},[],{"nodeType":407,"data":10111,"content":10112},{},[10113],{"nodeType":411,"value":6630,"marks":10114,"data":10115},[],{},{"nodeType":407,"data":10117,"content":10118},{},[10119],{"nodeType":411,"value":6637,"marks":10120,"data":10121},[],{},{"nodeType":431,"data":10123,"content":10126},{"target":10124},{"sys":10125},{"id":6644,"type":436,"linkType":437},[],{"nodeType":446,"data":10128,"content":10129},{},[],{"nodeType":450,"data":10131,"content":10132},{},[10133],{"nodeType":411,"value":6653,"marks":10134,"data":10136},[10135],{"type":457},{},{"nodeType":407,"data":10138,"content":10139},{},[10140],{"nodeType":411,"value":6661,"marks":10141,"data":10143},[10142],{"type":457},{},{"nodeType":407,"data":10145,"content":10146},{},[10147,10150,10156],{"nodeType":411,"value":6669,"marks":10148,"data":10149},[],{},{"nodeType":416,"data":10151,"content":10152},{"uri":6674},[10153],{"nodeType":411,"value":6677,"marks":10154,"data":10155},[],{},{"nodeType":411,"value":6681,"marks":10157,"data":10158},[],{},{"nodeType":407,"data":10160,"content":10161},{},[10162,10165,10171,10174,10178,10181,10185,10188,10194],{"nodeType":411,"value":6688,"marks":10163,"data":10164},[],{},{"nodeType":416,"data":10166,"content":10167},{"uri":6693},[10168],{"nodeType":411,"value":6696,"marks":10169,"data":10170},[],{},{"nodeType":411,"value":5010,"marks":10172,"data":10173},[],{},{"nodeType":411,"value":6703,"marks":10175,"data":10177},[10176],{"type":457},{},{"nodeType":411,"value":6708,"marks":10179,"data":10180},[],{},{"nodeType":411,"value":6712,"marks":10182,"data":10184},[10183],{"type":457},{},{"nodeType":411,"value":6717,"marks":10186,"data":10187},[],{},{"nodeType":416,"data":10189,"content":10190},{"uri":6722},[10191],{"nodeType":411,"value":1777,"marks":10192,"data":10193},[],{},{"nodeType":411,"value":6728,"marks":10195,"data":10196},[],{},{"nodeType":431,"data":10198,"content":10201},{"target":10199},{"sys":10200},{"id":6735,"type":436,"linkType":437},[],{"nodeType":407,"data":10203,"content":10204},{},[10205,10208,10212],{"nodeType":411,"value":6741,"marks":10206,"data":10207},[],{},{"nodeType":411,"value":6745,"marks":10209,"data":10211},[10210],{"type":457},{},{"nodeType":411,"value":1933,"marks":10213,"data":10214},[],{},{"nodeType":446,"data":10216,"content":10217},{},[],{"nodeType":450,"data":10219,"content":10220},{},[10221],{"nodeType":411,"value":6759,"marks":10222,"data":10224},[10223],{"type":457},{},{"nodeType":407,"data":10226,"content":10227},{},[10228],{"nodeType":411,"value":6661,"marks":10229,"data":10231},[10230],{"type":457},{},{"nodeType":407,"data":10233,"content":10234},{},[10235,10238,10244,10247,10251],{"nodeType":411,"value":6774,"marks":10236,"data":10237},[],{},{"nodeType":416,"data":10239,"content":10240},{"uri":6779},[10241],{"nodeType":411,"value":6782,"marks":10242,"data":10243},[],{},{"nodeType":411,"value":6786,"marks":10245,"data":10246},[],{},{"nodeType":411,"value":6790,"marks":10248,"data":10250},[10249],{"type":457},{},{"nodeType":411,"value":6795,"marks":10252,"data":10253},[],{},{"nodeType":407,"data":10255,"content":10256},{},[10257,10260,10266,10269,10273,10276,10283],{"nodeType":411,"value":6802,"marks":10258,"data":10259},[],{},{"nodeType":416,"data":10261,"content":10262},{"uri":6807},[10263],{"nodeType":411,"value":6810,"marks":10264,"data":10265},[],{},{"nodeType":411,"value":6814,"marks":10267,"data":10268},[],{},{"nodeType":411,"value":6818,"marks":10270,"data":10272},[10271],{"type":457},{},{"nodeType":411,"value":6823,"marks":10274,"data":10275},[],{},{"nodeType":416,"data":10277,"content":10278},{"uri":6828},[10279],{"nodeType":411,"value":6831,"marks":10280,"data":10282},[10281],{"type":457},{},{"nodeType":411,"value":6836,"marks":10284,"data":10285},[],{},{"nodeType":407,"data":10287,"content":10288},{},[10289],{"nodeType":411,"value":6843,"marks":10290,"data":10291},[],{},{"nodeType":446,"data":10293,"content":10294},{},[],{"nodeType":450,"data":10296,"content":10297},{},[10298],{"nodeType":411,"value":6853,"marks":10299,"data":10301},[10300],{"type":457},{},{"nodeType":407,"data":10303,"content":10304},{},[10305],{"nodeType":411,"value":6861,"marks":10306,"data":10308},[10307],{"type":457},{},{"nodeType":407,"data":10310,"content":10311},{},[10312],{"nodeType":411,"value":6869,"marks":10313,"data":10314},[],{},{"nodeType":431,"data":10316,"content":10319},{"target":10317},{"sys":10318},{"id":6876,"type":436,"linkType":437},[],{"nodeType":407,"data":10321,"content":10322},{},[10323],{"nodeType":411,"value":6882,"marks":10324,"data":10325},[],{},{"nodeType":446,"data":10327,"content":10328},{},[],{"nodeType":450,"data":10330,"content":10331},{},[10332],{"nodeType":411,"value":6892,"marks":10333,"data":10335},[10334],{"type":457},{},{"nodeType":407,"data":10337,"content":10338},{},[10339],{"nodeType":411,"value":6861,"marks":10340,"data":10342},[10341],{"type":457},{},{"nodeType":407,"data":10344,"content":10345},{},[10346,10349,10356,10359,10365,10368,10374],{"nodeType":411,"value":6907,"marks":10347,"data":10348},[],{},{"nodeType":416,"data":10350,"content":10351},{"uri":6912},[10352],{"nodeType":411,"value":6915,"marks":10353,"data":10355},[10354],{"type":424},{},{"nodeType":411,"value":5010,"marks":10357,"data":10358},[],{},{"nodeType":416,"data":10360,"content":10361},{"uri":6924},[10362],{"nodeType":411,"value":6927,"marks":10363,"data":10364},[],{},{"nodeType":411,"value":5010,"marks":10366,"data":10367},[],{},{"nodeType":416,"data":10369,"content":10370},{"uri":6935},[10371],{"nodeType":411,"value":6938,"marks":10372,"data":10373},[],{},{"nodeType":411,"value":6942,"marks":10375,"data":10376},[],{},{"nodeType":407,"data":10378,"content":10379},{},[10380,10383,10390,10393,10397,10400,10404],{"nodeType":411,"value":29,"marks":10381,"data":10382},[],{},{"nodeType":416,"data":10384,"content":10385},{"uri":1634},[10386],{"nodeType":411,"value":6955,"marks":10387,"data":10389},[10388],{"type":424},{},{"nodeType":411,"value":6960,"marks":10391,"data":10392},[],{},{"nodeType":411,"value":6964,"marks":10394,"data":10396},[10395],{"type":457},{},{"nodeType":411,"value":6969,"marks":10398,"data":10399},[],{},{"nodeType":411,"value":6973,"marks":10401,"data":10403},[10402],{"type":1822},{},{"nodeType":411,"value":6978,"marks":10405,"data":10406},[],{},{"nodeType":407,"data":10408,"content":10409},{},[10410],{"nodeType":411,"value":6985,"marks":10411,"data":10412},[],{},{"nodeType":446,"data":10414,"content":10415},{},[],{"nodeType":450,"data":10417,"content":10418},{},[10419],{"nodeType":411,"value":6995,"marks":10420,"data":10422},[10421],{"type":457},{},{"nodeType":407,"data":10424,"content":10425},{},[10426],{"nodeType":411,"value":6861,"marks":10427,"data":10429},[10428],{"type":457},{},{"nodeType":407,"data":10431,"content":10432},{},[10433,10436,10440,10443,10447],{"nodeType":411,"value":7010,"marks":10434,"data":10435},[],{},{"nodeType":411,"value":7014,"marks":10437,"data":10439},[10438],{"type":1822},{},{"nodeType":411,"value":7019,"marks":10441,"data":10442},[],{},{"nodeType":411,"value":7023,"marks":10444,"data":10446},[10445],{"type":1822},{},{"nodeType":411,"value":7028,"marks":10448,"data":10449},[],{},{"nodeType":407,"data":10451,"content":10452},{},[10453],{"nodeType":411,"value":7035,"marks":10454,"data":10455},[],{},{"nodeType":1038,"data":10457,"content":10458},{},[10459,10477],{"nodeType":1042,"data":10460,"content":10461},{},[10462],{"nodeType":407,"data":10463,"content":10464},{},[10465,10468,10474],{"nodeType":411,"value":1769,"marks":10466,"data":10467},[],{},{"nodeType":416,"data":10469,"content":10470},{"uri":3275},[10471],{"nodeType":411,"value":7054,"marks":10472,"data":10473},[],{},{"nodeType":411,"value":7058,"marks":10475,"data":10476},[],{},{"nodeType":1042,"data":10478,"content":10479},{},[10480],{"nodeType":407,"data":10481,"content":10482},{},[10483,10486,10492],{"nodeType":411,"value":1769,"marks":10484,"data":10485},[],{},{"nodeType":416,"data":10487,"content":10488},{"uri":6107},[10489],{"nodeType":411,"value":7074,"marks":10490,"data":10491},[],{},{"nodeType":411,"value":7078,"marks":10493,"data":10494},[],{},{"nodeType":407,"data":10496,"content":10497},{},[10498],{"nodeType":411,"value":7085,"marks":10499,"data":10500},[],{},{"nodeType":446,"data":10502,"content":10503},{},[],{"nodeType":450,"data":10505,"content":10506},{},[10507],{"nodeType":411,"value":7095,"marks":10508,"data":10510},[10509],{"type":457},{},{"nodeType":407,"data":10512,"content":10513},{},[10514],{"nodeType":411,"value":7103,"marks":10515,"data":10517},[10516],{"type":457},{},{"nodeType":407,"data":10519,"content":10520},{},[10521,10524,10528,10531,10537,10540,10544,10547,10551],{"nodeType":411,"value":7111,"marks":10522,"data":10523},[],{},{"nodeType":411,"value":7115,"marks":10525,"data":10527},[10526],{"type":457},{},{"nodeType":411,"value":7120,"marks":10529,"data":10530},[],{},{"nodeType":416,"data":10532,"content":10533},{"uri":1453},[10534],{"nodeType":411,"value":7127,"marks":10535,"data":10536},[],{},{"nodeType":411,"value":7131,"marks":10538,"data":10539},[],{},{"nodeType":411,"value":7135,"marks":10541,"data":10543},[10542],{"type":457},{},{"nodeType":411,"value":7140,"marks":10545,"data":10546},[],{},{"nodeType":411,"value":7144,"marks":10548,"data":10550},[10549],{"type":457},{},{"nodeType":411,"value":7149,"marks":10552,"data":10553},[],{},{"nodeType":407,"data":10555,"content":10556},{},[10557],{"nodeType":411,"value":7156,"marks":10558,"data":10559},[],{},{"nodeType":431,"data":10561,"content":10564},{"target":10562},{"sys":10563},{"id":7163,"type":436,"linkType":437},[],{"nodeType":446,"data":10566,"content":10567},{},[],{"nodeType":450,"data":10569,"content":10570},{},[10571],{"nodeType":411,"value":7172,"marks":10572,"data":10574},[10573],{"type":457},{},{"nodeType":407,"data":10576,"content":10577},{},[10578],{"nodeType":411,"value":7180,"marks":10579,"data":10581},[10580],{"type":457},{},{"nodeType":407,"data":10583,"content":10584},{},[10585,10588,10595,10598,10605],{"nodeType":411,"value":7188,"marks":10586,"data":10587},[],{},{"nodeType":416,"data":10589,"content":10590},{"uri":7193},[10591],{"nodeType":411,"value":7196,"marks":10592,"data":10594},[10593],{"type":457},{},{"nodeType":411,"value":7201,"marks":10596,"data":10597},[],{},{"nodeType":416,"data":10599,"content":10600},{"uri":7206},[10601],{"nodeType":411,"value":7209,"marks":10602,"data":10604},[10603],{"type":457},{},{"nodeType":411,"value":7214,"marks":10606,"data":10607},[],{},{"nodeType":407,"data":10609,"content":10610},{},[10611],{"nodeType":411,"value":7221,"marks":10612,"data":10613},[],{},{"nodeType":431,"data":10615,"content":10618},{"target":10616},{"sys":10617},{"id":7228,"type":436,"linkType":437},[],{"nodeType":407,"data":10620,"content":10621},{},[10622],{"nodeType":411,"value":7234,"marks":10623,"data":10624},[],{},{"nodeType":446,"data":10626,"content":10627},{},[],{"nodeType":450,"data":10629,"content":10630},{},[10631],{"nodeType":411,"value":7244,"marks":10632,"data":10634},[10633],{"type":457},{},{"nodeType":407,"data":10636,"content":10637},{},[10638],{"nodeType":411,"value":7252,"marks":10639,"data":10641},[10640],{"type":457},{},{"nodeType":407,"data":10643,"content":10644},{},[10645,10648,10652,10655,10662],{"nodeType":411,"value":7260,"marks":10646,"data":10647},[],{},{"nodeType":411,"value":7264,"marks":10649,"data":10651},[10650],{"type":1822},{},{"nodeType":411,"value":7269,"marks":10653,"data":10654},[],{},{"nodeType":416,"data":10656,"content":10657},{"uri":7274},[10658],{"nodeType":411,"value":7277,"marks":10659,"data":10661},[10660],{"type":457},{},{"nodeType":411,"value":7282,"marks":10663,"data":10664},[],{},{"nodeType":407,"data":10666,"content":10667},{},[10668],{"nodeType":411,"value":7289,"marks":10669,"data":10670},[],{},{"nodeType":407,"data":10672,"content":10673},{},[10674],{"nodeType":411,"value":7296,"marks":10675,"data":10676},[],{},{"nodeType":407,"data":10678,"content":10679},{},[10680],{"nodeType":411,"value":7303,"marks":10681,"data":10682},[],{},{"nodeType":446,"data":10684,"content":10685},{},[],{"nodeType":450,"data":10687,"content":10688},{},[10689],{"nodeType":411,"value":7313,"marks":10690,"data":10692},[10691],{"type":457},{},{"nodeType":407,"data":10694,"content":10695},{},[10696],{"nodeType":411,"value":7321,"marks":10697,"data":10699},[10698],{"type":457},{},{"nodeType":407,"data":10701,"content":10702},{},[10703],{"nodeType":411,"value":7329,"marks":10704,"data":10705},[],{},{"nodeType":431,"data":10707,"content":10710},{"target":10708},{"sys":10709},{"id":7336,"type":436,"linkType":437},[],{"nodeType":407,"data":10712,"content":10713},{},[10714],{"nodeType":411,"value":7342,"marks":10715,"data":10716},[],{},{"nodeType":1038,"data":10718,"content":10719},{},[10720,10729],{"nodeType":1042,"data":10721,"content":10722},{},[10723],{"nodeType":407,"data":10724,"content":10725},{},[10726],{"nodeType":411,"value":7355,"marks":10727,"data":10728},[],{},{"nodeType":1042,"data":10730,"content":10731},{},[10732],{"nodeType":407,"data":10733,"content":10734},{},[10735],{"nodeType":411,"value":7365,"marks":10736,"data":10737},[],{},{"nodeType":407,"data":10739,"content":10740},{},[10741,10744,10751,10754,10758],{"nodeType":411,"value":7372,"marks":10742,"data":10743},[],{},{"nodeType":416,"data":10745,"content":10746},{"uri":7377},[10747],{"nodeType":411,"value":7380,"marks":10748,"data":10750},[10749],{"type":457},{},{"nodeType":411,"value":7385,"marks":10752,"data":10753},[],{},{"nodeType":411,"value":7389,"marks":10755,"data":10757},[10756],{"type":1822},{},{"nodeType":411,"value":7394,"marks":10759,"data":10760},[],{},{"nodeType":446,"data":10762,"content":10763},{},[],{"nodeType":450,"data":10765,"content":10766},{},[10767],{"nodeType":411,"value":7404,"marks":10768,"data":10770},[10769],{"type":457},{},{"nodeType":407,"data":10772,"content":10773},{},[10774],{"nodeType":411,"value":7412,"marks":10775,"data":10777},[10776],{"type":457},{},{"nodeType":407,"data":10779,"content":10780},{},[10781],{"nodeType":411,"value":7420,"marks":10782,"data":10783},[],{},{"nodeType":407,"data":10785,"content":10786},{},[10787],{"nodeType":411,"value":7427,"marks":10788,"data":10789},[],{},{"nodeType":446,"data":10791,"content":10792},{},[],{"nodeType":450,"data":10794,"content":10795},{},[10796],{"nodeType":411,"value":7437,"marks":10797,"data":10799},[10798],{"type":457},{},{"nodeType":1038,"data":10801,"content":10802},{},[10803,10816,10829,10842],{"nodeType":1042,"data":10804,"content":10805},{},[10806],{"nodeType":407,"data":10807,"content":10808},{},[10809,10813],{"nodeType":411,"value":7451,"marks":10810,"data":10812},[10811],{"type":457},{},{"nodeType":411,"value":7456,"marks":10814,"data":10815},[],{},{"nodeType":1042,"data":10817,"content":10818},{},[10819],{"nodeType":407,"data":10820,"content":10821},{},[10822,10826],{"nodeType":411,"value":7466,"marks":10823,"data":10825},[10824],{"type":457},{},{"nodeType":411,"value":7471,"marks":10827,"data":10828},[],{},{"nodeType":1042,"data":10830,"content":10831},{},[10832],{"nodeType":407,"data":10833,"content":10834},{},[10835,10839],{"nodeType":411,"value":7481,"marks":10836,"data":10838},[10837],{"type":457},{},{"nodeType":411,"value":7486,"marks":10840,"data":10841},[],{},{"nodeType":1042,"data":10843,"content":10844},{},[10845],{"nodeType":407,"data":10846,"content":10847},{},[10848,10852],{"nodeType":411,"value":7496,"marks":10849,"data":10851},[10850],{"type":457},{},{"nodeType":411,"value":7501,"marks":10853,"data":10854},[],{},{"nodeType":446,"data":10856,"content":10857},{},[],{"nodeType":450,"data":10859,"content":10860},{},[10861],{"nodeType":411,"value":7511,"marks":10862,"data":10864},[10863],{"type":457},{},{"nodeType":407,"data":10866,"content":10867},{},[10868],{"nodeType":411,"value":7519,"marks":10869,"data":10870},[],{},{"nodeType":2753,"data":10872,"content":10873},{},[10874,10897,10919,10941,10963,10985,11007,11029,11051,11073,11095,11117],{"nodeType":2757,"data":10875,"content":10876},{},[10877,10887],{"nodeType":2787,"data":10878,"content":10879},{},[10880],{"nodeType":407,"data":10881,"content":10882},{},[10883],{"nodeType":411,"value":7535,"marks":10884,"data":10886},[10885],{"type":457},{},{"nodeType":2787,"data":10888,"content":10889},{},[10890],{"nodeType":407,"data":10891,"content":10892},{},[10893],{"nodeType":411,"value":7546,"marks":10894,"data":10896},[10895],{"type":457},{},{"nodeType":2757,"data":10898,"content":10899},{},[10900,10910],{"nodeType":2787,"data":10901,"content":10902},{},[10903],{"nodeType":407,"data":10904,"content":10905},{},[10906],{"nodeType":411,"value":7560,"marks":10907,"data":10909},[10908],{"type":457},{},{"nodeType":2787,"data":10911,"content":10912},{},[10913],{"nodeType":407,"data":10914,"content":10915},{},[10916],{"nodeType":411,"value":7571,"marks":10917,"data":10918},[],{},{"nodeType":2757,"data":10920,"content":10921},{},[10922,10932],{"nodeType":2787,"data":10923,"content":10924},{},[10925],{"nodeType":407,"data":10926,"content":10927},{},[10928],{"nodeType":411,"value":7584,"marks":10929,"data":10931},[10930],{"type":457},{},{"nodeType":2787,"data":10933,"content":10934},{},[10935],{"nodeType":407,"data":10936,"content":10937},{},[10938],{"nodeType":411,"value":7595,"marks":10939,"data":10940},[],{},{"nodeType":2757,"data":10942,"content":10943},{},[10944,10954],{"nodeType":2787,"data":10945,"content":10946},{},[10947],{"nodeType":407,"data":10948,"content":10949},{},[10950],{"nodeType":411,"value":7608,"marks":10951,"data":10953},[10952],{"type":457},{},{"nodeType":2787,"data":10955,"content":10956},{},[10957],{"nodeType":407,"data":10958,"content":10959},{},[10960],{"nodeType":411,"value":7619,"marks":10961,"data":10962},[],{},{"nodeType":2757,"data":10964,"content":10965},{},[10966,10976],{"nodeType":2787,"data":10967,"content":10968},{},[10969],{"nodeType":407,"data":10970,"content":10971},{},[10972],{"nodeType":411,"value":7632,"marks":10973,"data":10975},[10974],{"type":457},{},{"nodeType":2787,"data":10977,"content":10978},{},[10979],{"nodeType":407,"data":10980,"content":10981},{},[10982],{"nodeType":411,"value":7643,"marks":10983,"data":10984},[],{},{"nodeType":2757,"data":10986,"content":10987},{},[10988,10998],{"nodeType":2787,"data":10989,"content":10990},{},[10991],{"nodeType":407,"data":10992,"content":10993},{},[10994],{"nodeType":411,"value":7656,"marks":10995,"data":10997},[10996],{"type":457},{},{"nodeType":2787,"data":10999,"content":11000},{},[11001],{"nodeType":407,"data":11002,"content":11003},{},[11004],{"nodeType":411,"value":7667,"marks":11005,"data":11006},[],{},{"nodeType":2757,"data":11008,"content":11009},{},[11010,11020],{"nodeType":2787,"data":11011,"content":11012},{},[11013],{"nodeType":407,"data":11014,"content":11015},{},[11016],{"nodeType":411,"value":7680,"marks":11017,"data":11019},[11018],{"type":457},{},{"nodeType":2787,"data":11021,"content":11022},{},[11023],{"nodeType":407,"data":11024,"content":11025},{},[11026],{"nodeType":411,"value":7691,"marks":11027,"data":11028},[],{},{"nodeType":2757,"data":11030,"content":11031},{},[11032,11042],{"nodeType":2787,"data":11033,"content":11034},{},[11035],{"nodeType":407,"data":11036,"content":11037},{},[11038],{"nodeType":411,"value":7704,"marks":11039,"data":11041},[11040],{"type":457},{},{"nodeType":2787,"data":11043,"content":11044},{},[11045],{"nodeType":407,"data":11046,"content":11047},{},[11048],{"nodeType":411,"value":7715,"marks":11049,"data":11050},[],{},{"nodeType":2757,"data":11052,"content":11053},{},[11054,11064],{"nodeType":2787,"data":11055,"content":11056},{},[11057],{"nodeType":407,"data":11058,"content":11059},{},[11060],{"nodeType":411,"value":7728,"marks":11061,"data":11063},[11062],{"type":457},{},{"nodeType":2787,"data":11065,"content":11066},{},[11067],{"nodeType":407,"data":11068,"content":11069},{},[11070],{"nodeType":411,"value":7739,"marks":11071,"data":11072},[],{},{"nodeType":2757,"data":11074,"content":11075},{},[11076,11086],{"nodeType":2787,"data":11077,"content":11078},{},[11079],{"nodeType":407,"data":11080,"content":11081},{},[11082],{"nodeType":411,"value":7752,"marks":11083,"data":11085},[11084],{"type":457},{},{"nodeType":2787,"data":11087,"content":11088},{},[11089],{"nodeType":407,"data":11090,"content":11091},{},[11092],{"nodeType":411,"value":7763,"marks":11093,"data":11094},[],{},{"nodeType":2757,"data":11096,"content":11097},{},[11098,11108],{"nodeType":2787,"data":11099,"content":11100},{},[11101],{"nodeType":407,"data":11102,"content":11103},{},[11104],{"nodeType":411,"value":7776,"marks":11105,"data":11107},[11106],{"type":457},{},{"nodeType":2787,"data":11109,"content":11110},{},[11111],{"nodeType":407,"data":11112,"content":11113},{},[11114],{"nodeType":411,"value":7787,"marks":11115,"data":11116},[],{},{"nodeType":2757,"data":11118,"content":11119},{},[11120,11130],{"nodeType":2787,"data":11121,"content":11122},{},[11123],{"nodeType":407,"data":11124,"content":11125},{},[11126],{"nodeType":411,"value":7466,"marks":11127,"data":11129},[11128],{"type":457},{},{"nodeType":2787,"data":11131,"content":11132},{},[11133],{"nodeType":407,"data":11134,"content":11135},{},[11136],{"nodeType":411,"value":7810,"marks":11137,"data":11138},[],{},{"nodeType":446,"data":11140,"content":11141},{},[],{"nodeType":407,"data":11143,"content":11144},{},[11145,11148,11154],{"nodeType":411,"value":7820,"marks":11146,"data":11147},[],{},{"nodeType":416,"data":11149,"content":11150},{"uri":2055},[11151],{"nodeType":411,"value":1107,"marks":11152,"data":11153},[],{},{"nodeType":411,"value":29,"marks":11155,"data":11156},[],{},{"items":11158},[11159,11161],{"sys":11160,"name":5652},{"id":5651},{"sys":11162,"name":5648},{"id":5647},{"items":11164},[11165],{"fullName":7845,"firstName":7846,"jobTitle":6594,"profilePicture":11166},{"url":7848},"why-your-training-budget-belongs-in-real-time-browser-security","blog/why-your-training-budget-belongs-in-real-time-browser-security",{"json":11170},{"data":11171,"content":11172,"nodeType":403},{},[11173],{"data":11174,"content":11175,"nodeType":407},{},[11176],{"data":11177,"marks":11178,"value":11179,"nodeType":411},{},[],"Organizations spend billions annually on security awareness training, but can't keep up with attack evolution. Browser-based technical controls can make the difference where training falls short.","Organizations spend billions annually on awareness training. Here's why browser-based technical controls can make the difference where training falls short. ",{"id":11182,"publishedAt":11183},"3UADFvNqybXoCYlWtJPohK","2026-06-24T13:14:34.116Z",{"items":11185},[11186,11188],{"sys":11187,"name":5652},{"id":5651},{"sys":11189,"name":2078},{"id":2077},"tQ4sWipHH8z-WO06MYNKNe4dbq1gBAmCD5x9kr76HPM",{"id":11192,"title":5639,"authorsCollection":11193,"content":11197,"extension":1205,"faqItemsCollection":12261,"faqTitle":62,"featured":6,"hashTags":62,"meta":12263,"metaTitle":12264,"ogImage":62,"publishedDate":5641,"relatedBlogPostsCollection":12265,"slug":5642,"stem":14385,"subtitle":62,"summary":14386,"synopsis":5640,"sys":14397,"tagsCollection":14399,"__hash__":14405},"blog/blog/browser-visibility-and-control-can-achieve-ai-compliance.json",{"items":11194},[11195],{"fullName":5656,"firstName":5657,"jobTitle":5658,"profilePicture":11196},{"url":5660},{"json":11198,"links":12095},{"nodeType":403,"data":11199,"content":11200},{},[11201,11208,11214,11221,11732,11737,11743,11749,11752,11759,11765,11772,11778,11783,11788,11795,11808,11815,11821,11828,11834,11839,11846,11852,11857,11860,11867,11882,11898,11913,11919,11922,11929,11935,11945,11951,11961,11967,11972,11982,11988,11998,12004,12010,12015,12025,12031,12034,12041,12047,12053,12059,12064,12067,12073,12079],{"nodeType":450,"data":11202,"content":11203},{},[11204],{"nodeType":411,"value":4627,"marks":11205,"data":11207},[11206],{"type":457},{},{"nodeType":407,"data":11209,"content":11210},{},[11211],{"nodeType":411,"value":4635,"marks":11212,"data":11213},[],{},{"nodeType":407,"data":11215,"content":11216},{},[11217],{"nodeType":411,"value":4642,"marks":11218,"data":11220},[11219],{"type":457},{},{"nodeType":2753,"data":11222,"content":11223},{},[11224,11267,11345,11404,11454,11563,11613,11673],{"nodeType":2757,"data":11225,"content":11226},{},[11227,11237,11247,11257],{"nodeType":2787,"data":11228,"content":11229},{},[11230],{"nodeType":407,"data":11231,"content":11232},{},[11233],{"nodeType":411,"value":4659,"marks":11234,"data":11236},[11235],{"type":457},{},{"nodeType":2787,"data":11238,"content":11239},{},[11240],{"nodeType":407,"data":11241,"content":11242},{},[11243],{"nodeType":411,"value":4670,"marks":11244,"data":11246},[11245],{"type":457},{},{"nodeType":2787,"data":11248,"content":11249},{},[11250],{"nodeType":407,"data":11251,"content":11252},{},[11253],{"nodeType":411,"value":4681,"marks":11254,"data":11256},[11255],{"type":457},{},{"nodeType":2787,"data":11258,"content":11259},{},[11260],{"nodeType":407,"data":11261,"content":11262},{},[11263],{"nodeType":411,"value":4692,"marks":11264,"data":11266},[11265],{"type":457},{},{"nodeType":2757,"data":11268,"content":11269},{},[11270,11290,11299,11326],{"nodeType":2787,"data":11271,"content":11272},{},[11273],{"nodeType":407,"data":11274,"content":11275},{},[11276,11279,11287],{"nodeType":411,"value":29,"marks":11277,"data":11278},[],{},{"nodeType":416,"data":11280,"content":11281},{"uri":4710},[11282],{"nodeType":411,"value":4713,"marks":11283,"data":11286},[11284,11285],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":11288,"data":11289},[],{},{"nodeType":2787,"data":11291,"content":11292},{},[11293],{"nodeType":407,"data":11294,"content":11295},{},[11296],{"nodeType":411,"value":4728,"marks":11297,"data":11298},[],{},{"nodeType":2787,"data":11300,"content":11301},{},[11302],{"nodeType":407,"data":11303,"content":11304},{},[11305,11308,11314,11317,11323],{"nodeType":411,"value":4738,"marks":11306,"data":11307},[],{},{"nodeType":416,"data":11309,"content":11310},{"uri":4743},[11311],{"nodeType":411,"value":4746,"marks":11312,"data":11313},[],{},{"nodeType":411,"value":4750,"marks":11315,"data":11316},[],{},{"nodeType":416,"data":11318,"content":11319},{"uri":4755},[11320],{"nodeType":411,"value":4758,"marks":11321,"data":11322},[],{},{"nodeType":411,"value":4762,"marks":11324,"data":11325},[],{},{"nodeType":2787,"data":11327,"content":11328},{},[11329],{"nodeType":407,"data":11330,"content":11331},{},[11332,11335,11342],{"nodeType":411,"value":29,"marks":11333,"data":11334},[],{},{"nodeType":416,"data":11336,"content":11337},{"uri":4743},[11338],{"nodeType":411,"value":4778,"marks":11339,"data":11341},[11340],{"type":424},{},{"nodeType":411,"value":4783,"marks":11343,"data":11344},[],{},{"nodeType":2757,"data":11346,"content":11347},{},[11348,11368,11377,11395],{"nodeType":2787,"data":11349,"content":11350},{},[11351],{"nodeType":407,"data":11352,"content":11353},{},[11354,11357,11365],{"nodeType":411,"value":29,"marks":11355,"data":11356},[],{},{"nodeType":416,"data":11358,"content":11359},{"uri":4800},[11360],{"nodeType":411,"value":4803,"marks":11361,"data":11364},[11362,11363],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":11366,"data":11367},[],{},{"nodeType":2787,"data":11369,"content":11370},{},[11371],{"nodeType":407,"data":11372,"content":11373},{},[11374],{"nodeType":411,"value":4818,"marks":11375,"data":11376},[],{},{"nodeType":2787,"data":11378,"content":11379},{},[11380],{"nodeType":407,"data":11381,"content":11382},{},[11383,11386,11392],{"nodeType":411,"value":4828,"marks":11384,"data":11385},[],{},{"nodeType":416,"data":11387,"content":11388},{"uri":4800},[11389],{"nodeType":411,"value":4835,"marks":11390,"data":11391},[],{},{"nodeType":411,"value":4839,"marks":11393,"data":11394},[],{},{"nodeType":2787,"data":11396,"content":11397},{},[11398],{"nodeType":407,"data":11399,"content":11400},{},[11401],{"nodeType":411,"value":4849,"marks":11402,"data":11403},[],{},{"nodeType":2757,"data":11405,"content":11406},{},[11407,11427,11436,11445],{"nodeType":2787,"data":11408,"content":11409},{},[11410],{"nodeType":407,"data":11411,"content":11412},{},[11413,11416,11424],{"nodeType":411,"value":29,"marks":11414,"data":11415},[],{},{"nodeType":416,"data":11417,"content":11418},{"uri":4866},[11419],{"nodeType":411,"value":4869,"marks":11420,"data":11423},[11421,11422],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":11425,"data":11426},[],{},{"nodeType":2787,"data":11428,"content":11429},{},[11430],{"nodeType":407,"data":11431,"content":11432},{},[11433],{"nodeType":411,"value":4884,"marks":11434,"data":11435},[],{},{"nodeType":2787,"data":11437,"content":11438},{},[11439],{"nodeType":407,"data":11440,"content":11441},{},[11442],{"nodeType":411,"value":4894,"marks":11443,"data":11444},[],{},{"nodeType":2787,"data":11446,"content":11447},{},[11448],{"nodeType":407,"data":11449,"content":11450},{},[11451],{"nodeType":411,"value":4904,"marks":11452,"data":11453},[],{},{"nodeType":2757,"data":11455,"content":11456},{},[11457,11477,11486,11527],{"nodeType":2787,"data":11458,"content":11459},{},[11460],{"nodeType":407,"data":11461,"content":11462},{},[11463,11466,11474],{"nodeType":411,"value":29,"marks":11464,"data":11465},[],{},{"nodeType":416,"data":11467,"content":11468},{"uri":4921},[11469],{"nodeType":411,"value":4924,"marks":11470,"data":11473},[11471,11472],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":11475,"data":11476},[],{},{"nodeType":2787,"data":11478,"content":11479},{},[11480],{"nodeType":407,"data":11481,"content":11482},{},[11483],{"nodeType":411,"value":4939,"marks":11484,"data":11485},[],{},{"nodeType":2787,"data":11487,"content":11488},{},[11489],{"nodeType":407,"data":11490,"content":11491},{},[11492,11495,11502,11505,11511,11514,11524],{"nodeType":411,"value":29,"marks":11493,"data":11494},[],{},{"nodeType":416,"data":11496,"content":11497},{"uri":4953},[11498],{"nodeType":411,"value":4956,"marks":11499,"data":11501},[11500],{"type":424},{},{"nodeType":411,"value":4961,"marks":11503,"data":11504},[],{},{"nodeType":416,"data":11506,"content":11507},{"uri":4966},[11508],{"nodeType":411,"value":4969,"marks":11509,"data":11510},[],{},{"nodeType":411,"value":4973,"marks":11512,"data":11513},[],{},{"nodeType":416,"data":11515,"content":11516},{"uri":4978},[11517,11520],{"nodeType":411,"value":4981,"marks":11518,"data":11519},[],{},{"nodeType":411,"value":4985,"marks":11521,"data":11523},[11522],{"type":424},{},{"nodeType":411,"value":29,"marks":11525,"data":11526},[],{},{"nodeType":2787,"data":11528,"content":11529},{},[11530],{"nodeType":407,"data":11531,"content":11532},{},[11533,11536,11542,11545,11551,11554,11560],{"nodeType":411,"value":4999,"marks":11534,"data":11535},[],{},{"nodeType":416,"data":11537,"content":11538},{"uri":4953},[11539],{"nodeType":411,"value":5006,"marks":11540,"data":11541},[],{},{"nodeType":411,"value":5010,"marks":11543,"data":11544},[],{},{"nodeType":416,"data":11546,"content":11547},{"uri":4966},[11548],{"nodeType":411,"value":5017,"marks":11549,"data":11550},[],{},{"nodeType":411,"value":5010,"marks":11552,"data":11553},[],{},{"nodeType":416,"data":11555,"content":11556},{"uri":4978},[11557],{"nodeType":411,"value":5027,"marks":11558,"data":11559},[],{},{"nodeType":411,"value":29,"marks":11561,"data":11562},[],{},{"nodeType":2757,"data":11564,"content":11565},{},[11566,11586,11595,11604],{"nodeType":2787,"data":11567,"content":11568},{},[11569],{"nodeType":407,"data":11570,"content":11571},{},[11572,11575,11583],{"nodeType":411,"value":29,"marks":11573,"data":11574},[],{},{"nodeType":416,"data":11576,"content":11577},{"uri":5047},[11578],{"nodeType":411,"value":5050,"marks":11579,"data":11582},[11580,11581],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":11584,"data":11585},[],{},{"nodeType":2787,"data":11587,"content":11588},{},[11589],{"nodeType":407,"data":11590,"content":11591},{},[11592],{"nodeType":411,"value":5065,"marks":11593,"data":11594},[],{},{"nodeType":2787,"data":11596,"content":11597},{},[11598],{"nodeType":407,"data":11599,"content":11600},{},[11601],{"nodeType":411,"value":5075,"marks":11602,"data":11603},[],{},{"nodeType":2787,"data":11605,"content":11606},{},[11607],{"nodeType":407,"data":11608,"content":11609},{},[11610],{"nodeType":411,"value":5085,"marks":11611,"data":11612},[],{},{"nodeType":2757,"data":11614,"content":11615},{},[11616,11636,11645,11654],{"nodeType":2787,"data":11617,"content":11618},{},[11619],{"nodeType":407,"data":11620,"content":11621},{},[11622,11625,11633],{"nodeType":411,"value":29,"marks":11623,"data":11624},[],{},{"nodeType":416,"data":11626,"content":11627},{"uri":5102},[11628],{"nodeType":411,"value":5105,"marks":11629,"data":11632},[11630,11631],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":11634,"data":11635},[],{},{"nodeType":2787,"data":11637,"content":11638},{},[11639],{"nodeType":407,"data":11640,"content":11641},{},[11642],{"nodeType":411,"value":5120,"marks":11643,"data":11644},[],{},{"nodeType":2787,"data":11646,"content":11647},{},[11648],{"nodeType":407,"data":11649,"content":11650},{},[11651],{"nodeType":411,"value":5130,"marks":11652,"data":11653},[],{},{"nodeType":2787,"data":11655,"content":11656},{},[11657],{"nodeType":407,"data":11658,"content":11659},{},[11660,11663,11670],{"nodeType":411,"value":29,"marks":11661,"data":11662},[],{},{"nodeType":416,"data":11664,"content":11665},{"uri":5144},[11666],{"nodeType":411,"value":5147,"marks":11667,"data":11669},[11668],{"type":424},{},{"nodeType":411,"value":5152,"marks":11671,"data":11672},[],{},{"nodeType":2757,"data":11674,"content":11675},{},[11676,11696,11705,11723],{"nodeType":2787,"data":11677,"content":11678},{},[11679],{"nodeType":407,"data":11680,"content":11681},{},[11682,11685,11693],{"nodeType":411,"value":29,"marks":11683,"data":11684},[],{},{"nodeType":416,"data":11686,"content":11687},{"uri":5169},[11688],{"nodeType":411,"value":5172,"marks":11689,"data":11692},[11690,11691],{"type":424},{"type":457},{},{"nodeType":411,"value":29,"marks":11694,"data":11695},[],{},{"nodeType":2787,"data":11697,"content":11698},{},[11699],{"nodeType":407,"data":11700,"content":11701},{},[11702],{"nodeType":411,"value":5187,"marks":11703,"data":11704},[],{},{"nodeType":2787,"data":11706,"content":11707},{},[11708],{"nodeType":407,"data":11709,"content":11710},{},[11711,11714,11720],{"nodeType":411,"value":5197,"marks":11712,"data":11713},[],{},{"nodeType":416,"data":11715,"content":11716},{"uri":5202},[11717],{"nodeType":411,"value":5205,"marks":11718,"data":11719},[],{},{"nodeType":411,"value":5209,"marks":11721,"data":11722},[],{},{"nodeType":2787,"data":11724,"content":11725},{},[11726],{"nodeType":407,"data":11727,"content":11728},{},[11729],{"nodeType":411,"value":5219,"marks":11730,"data":11731},[],{},{"nodeType":431,"data":11733,"content":11736},{"target":11734},{"sys":11735},{"id":5226,"type":436,"linkType":437},[],{"nodeType":407,"data":11738,"content":11739},{},[11740],{"nodeType":411,"value":5232,"marks":11741,"data":11742},[],{},{"nodeType":407,"data":11744,"content":11745},{},[11746],{"nodeType":411,"value":5239,"marks":11747,"data":11748},[],{},{"nodeType":446,"data":11750,"content":11751},{},[],{"nodeType":450,"data":11753,"content":11754},{},[11755],{"nodeType":411,"value":5249,"marks":11756,"data":11758},[11757],{"type":457},{},{"nodeType":407,"data":11760,"content":11761},{},[11762],{"nodeType":411,"value":5257,"marks":11763,"data":11764},[],{},{"nodeType":460,"data":11766,"content":11767},{},[11768],{"nodeType":411,"value":5264,"marks":11769,"data":11771},[11770],{"type":457},{},{"nodeType":407,"data":11773,"content":11774},{},[11775],{"nodeType":411,"value":5272,"marks":11776,"data":11777},[],{},{"nodeType":431,"data":11779,"content":11782},{"target":11780},{"sys":11781},{"id":5279,"type":436,"linkType":437},[],{"nodeType":431,"data":11784,"content":11787},{"target":11785},{"sys":11786},{"id":3773,"type":436,"linkType":437},[],{"nodeType":460,"data":11789,"content":11790},{},[11791],{"nodeType":411,"value":5290,"marks":11792,"data":11794},[11793],{"type":457},{},{"nodeType":407,"data":11796,"content":11797},{},[11798,11801,11805],{"nodeType":411,"value":5298,"marks":11799,"data":11800},[],{},{"nodeType":411,"value":5302,"marks":11802,"data":11804},[11803],{"type":457},{},{"nodeType":411,"value":5307,"marks":11806,"data":11807},[],{},{"nodeType":460,"data":11809,"content":11810},{},[11811],{"nodeType":411,"value":5314,"marks":11812,"data":11814},[11813],{"type":457},{},{"nodeType":407,"data":11816,"content":11817},{},[11818],{"nodeType":411,"value":5322,"marks":11819,"data":11820},[],{},{"nodeType":460,"data":11822,"content":11823},{},[11824],{"nodeType":411,"value":5329,"marks":11825,"data":11827},[11826],{"type":457},{},{"nodeType":407,"data":11829,"content":11830},{},[11831],{"nodeType":411,"value":5337,"marks":11832,"data":11833},[],{},{"nodeType":431,"data":11835,"content":11838},{"target":11836},{"sys":11837},{"id":5344,"type":436,"linkType":437},[],{"nodeType":460,"data":11840,"content":11841},{},[11842],{"nodeType":411,"value":5350,"marks":11843,"data":11845},[11844],{"type":457},{},{"nodeType":407,"data":11847,"content":11848},{},[11849],{"nodeType":411,"value":5358,"marks":11850,"data":11851},[],{},{"nodeType":431,"data":11853,"content":11856},{"target":11854},{"sys":11855},{"id":5365,"type":436,"linkType":437},[],{"nodeType":446,"data":11858,"content":11859},{},[],{"nodeType":450,"data":11861,"content":11862},{},[11863],{"nodeType":411,"value":5374,"marks":11864,"data":11866},[11865],{"type":457},{},{"nodeType":407,"data":11868,"content":11869},{},[11870,11873,11879],{"nodeType":411,"value":5382,"marks":11871,"data":11872},[],{},{"nodeType":416,"data":11874,"content":11875},{"uri":5387},[11876],{"nodeType":411,"value":5390,"marks":11877,"data":11878},[],{},{"nodeType":411,"value":5394,"marks":11880,"data":11881},[],{},{"nodeType":407,"data":11883,"content":11884},{},[11885,11888,11895],{"nodeType":411,"value":5401,"marks":11886,"data":11887},[],{},{"nodeType":416,"data":11889,"content":11890},{"uri":5406},[11891],{"nodeType":411,"value":5409,"marks":11892,"data":11894},[11893],{"type":424},{},{"nodeType":411,"value":5414,"marks":11896,"data":11897},[],{},{"nodeType":407,"data":11899,"content":11900},{},[11901,11904,11910],{"nodeType":411,"value":5421,"marks":11902,"data":11903},[],{},{"nodeType":416,"data":11905,"content":11906},{"uri":5426},[11907],{"nodeType":411,"value":5429,"marks":11908,"data":11909},[],{},{"nodeType":411,"value":5433,"marks":11911,"data":11912},[],{},{"nodeType":407,"data":11914,"content":11915},{},[11916],{"nodeType":411,"value":5440,"marks":11917,"data":11918},[],{},{"nodeType":446,"data":11920,"content":11921},{},[],{"nodeType":450,"data":11923,"content":11924},{},[11925],{"nodeType":411,"value":5450,"marks":11926,"data":11928},[11927],{"type":457},{},{"nodeType":407,"data":11930,"content":11931},{},[11932],{"nodeType":411,"value":5458,"marks":11933,"data":11934},[],{},{"nodeType":460,"data":11936,"content":11937},{},[11938,11942],{"nodeType":411,"value":5465,"marks":11939,"data":11941},[11940],{"type":457},{},{"nodeType":411,"value":4981,"marks":11943,"data":11944},[],{},{"nodeType":407,"data":11946,"content":11947},{},[11948],{"nodeType":411,"value":5476,"marks":11949,"data":11950},[],{},{"nodeType":460,"data":11952,"content":11953},{},[11954,11958],{"nodeType":411,"value":5483,"marks":11955,"data":11957},[11956],{"type":457},{},{"nodeType":411,"value":4981,"marks":11959,"data":11960},[],{},{"nodeType":407,"data":11962,"content":11963},{},[11964],{"nodeType":411,"value":5494,"marks":11965,"data":11966},[],{},{"nodeType":431,"data":11968,"content":11971},{"target":11969},{"sys":11970},{"id":5501,"type":436,"linkType":437},[],{"nodeType":460,"data":11973,"content":11974},{},[11975,11979],{"nodeType":411,"value":5507,"marks":11976,"data":11978},[11977],{"type":457},{},{"nodeType":411,"value":4981,"marks":11980,"data":11981},[],{},{"nodeType":407,"data":11983,"content":11984},{},[11985],{"nodeType":411,"value":5518,"marks":11986,"data":11987},[],{},{"nodeType":460,"data":11989,"content":11990},{},[11991,11995],{"nodeType":411,"value":5525,"marks":11992,"data":11994},[11993],{"type":457},{},{"nodeType":411,"value":4981,"marks":11996,"data":11997},[],{},{"nodeType":407,"data":11999,"content":12000},{},[12001],{"nodeType":411,"value":5536,"marks":12002,"data":12003},[],{},{"nodeType":407,"data":12005,"content":12006},{},[12007],{"nodeType":411,"value":5543,"marks":12008,"data":12009},[],{},{"nodeType":431,"data":12011,"content":12014},{"target":12012},{"sys":12013},{"id":5550,"type":436,"linkType":437},[],{"nodeType":460,"data":12016,"content":12017},{},[12018,12022],{"nodeType":411,"value":5556,"marks":12019,"data":12021},[12020],{"type":457},{},{"nodeType":411,"value":4981,"marks":12023,"data":12024},[],{},{"nodeType":407,"data":12026,"content":12027},{},[12028],{"nodeType":411,"value":5567,"marks":12029,"data":12030},[],{},{"nodeType":446,"data":12032,"content":12033},{},[],{"nodeType":450,"data":12035,"content":12036},{},[12037],{"nodeType":411,"value":5577,"marks":12038,"data":12040},[12039],{"type":457},{},{"nodeType":407,"data":12042,"content":12043},{},[12044],{"nodeType":411,"value":5585,"marks":12045,"data":12046},[],{},{"nodeType":407,"data":12048,"content":12049},{},[12050],{"nodeType":411,"value":5592,"marks":12051,"data":12052},[],{},{"nodeType":407,"data":12054,"content":12055},{},[12056],{"nodeType":411,"value":5599,"marks":12057,"data":12058},[],{},{"nodeType":431,"data":12060,"content":12063},{"target":12061},{"sys":12062},{"id":5606,"type":436,"linkType":437},[],{"nodeType":446,"data":12065,"content":12066},{},[],{"nodeType":407,"data":12068,"content":12069},{},[12070],{"nodeType":411,"value":1086,"marks":12071,"data":12072},[],{},{"nodeType":407,"data":12074,"content":12075},{},[12076],{"nodeType":411,"value":1093,"marks":12077,"data":12078},[],{},{"nodeType":407,"data":12080,"content":12081},{},[12082,12085,12092],{"nodeType":411,"value":29,"marks":12083,"data":12084},[],{},{"nodeType":416,"data":12086,"content":12087},{"uri":2055},[12088],{"nodeType":411,"value":1107,"marks":12089,"data":12091},[12090],{"type":424},{},{"nodeType":411,"value":29,"marks":12093,"data":12094},[],{},{"entries":12096},{"hyperlink":12097,"inline":12098,"block":12099},[],[],[12100,12108,12133,12136,12163,12189,12203,12247],{"sys":12101,"__typename":1128,"title":12102,"caption":12103,"layoutMode":62,"file":12104},{"id":5226},"ai regulation matrix","Map of how different regulations map to AI control requirements.",{"url":12105,"width":12106,"height":12107},"https://images.ctfassets.net/y1cdw1ablpvd/3rfEWb5FXvXR07jdPdoht6/42f1c515e62fcc58aa0e270a424cfacc/ai_regulation_matrix_3x__4_.png",2550,1806,{"sys":12109,"__typename":1180,"content":12110,"name":12132,"title":62},{"id":5279},{"json":12111},{"nodeType":403,"data":12112,"content":12113},{},[12114],{"nodeType":407,"data":12115,"content":12116},{},[12117,12121,12128],{"nodeType":411,"value":12118,"marks":12119,"data":12120},"Most organizations are dealing with uncontrolled ",[],{},{"nodeType":416,"data":12122,"content":12123},{"uri":994},[12124],{"nodeType":411,"value":12125,"marks":12126,"data":12127},"Shadow AI sprawl",[],{},{"nodeType":411,"value":12129,"marks":12130,"data":12131},". We find that the average organization has 16 unique AI apps in active use, 17 unique AI browser extensions, and 17 unique AI OAuth integrations connected into just Google Workspace and Microsoft 365 — with some organizations reaching as high as 40 unique AI apps, 163 AI extensions, and 55 OAuth connections to AI apps respectively. At the other end, the smallest organization with the lowest adoption level is actively using two. ",[],{},"AI regulation IB1",{"sys":12134,"__typename":1128,"title":4579,"caption":4580,"layoutMode":62,"file":12135},{"id":3773},{"url":4582,"width":4583,"height":4584},{"sys":12137,"__typename":1180,"content":12138,"name":12162,"title":62},{"id":5344},{"json":12139},{"data":12140,"content":12141,"nodeType":403},{},[12142],{"data":12143,"content":12144,"nodeType":407},{},[12145,12149,12158],{"data":12146,"marks":12147,"value":12148,"nodeType":411},{},[],"In the UK, ",{"data":12150,"content":12152,"nodeType":416},{"uri":12151},"https://ico.org.uk/about-the-ico/media-centre/news-and-blogs/2026/05/five-steps-to-protect-your-organisation-from-AI-powered-cyber-threats/",[12153],{"data":12154,"marks":12155,"value":12157,"nodeType":411},{},[12156],{"type":424},"the ICO's May 2026 blog",{"data":12159,"marks":12160,"value":12161,"nodeType":411},{},[]," names AI-generated phishing, deepfake social engineering, and credential stuffing as specific threats organisations must address under UK GDPR Article 32. It calls for multi-factor authentication on all remote access, admin accounts, and email, alongside layered defences that assume foundational controls alone are insufficient against AI-powered attacks.","ai regulation IB2",{"sys":12164,"__typename":1180,"content":12165,"name":12188,"title":62},{"id":5365},{"json":12166},{"nodeType":403,"data":12167,"content":12168},{},[12169],{"nodeType":407,"data":12170,"content":12171},{},[12172,12176,12184],{"nodeType":411,"value":12173,"marks":12174,"data":12175},"In May 2026, ",[],{},{"nodeType":416,"data":12177,"content":12179},{"uri":12178},"https://www.cisa.gov/resources-tools/resources/careful-adoption-agentic-ai-services",[12180],{"nodeType":411,"value":12181,"marks":12182,"data":12183},"CISA and Five Eyes partners published the first multinational guidance on agentic AI adoption",[],{},{"nodeType":411,"value":12185,"marks":12186,"data":12187},", identifying privilege escalation and accountability gaps as core risks — a signal that AI agent governance will soon move from best practice to regulatory expectation. ",[],{},"ai regulation IB3",{"sys":12190,"__typename":1180,"content":12191,"name":12202,"title":62},{"id":5501},{"json":12192},{"nodeType":403,"data":12193,"content":12194},{},[12195],{"nodeType":407,"data":12196,"content":12197},{},[12198],{"nodeType":411,"value":12199,"marks":12200,"data":12201},"When an employee clicks through or acknowledges the banner, Push generates auditable telemetry, creating a documented, timestamped record that the employee received policy guidance at the exact point of AI interaction (not just in a training session six months prior).",[],{},"ai regulation ib6",{"sys":12204,"__typename":1180,"content":12205,"name":12246,"title":62},{"id":5550},{"json":12206},{"nodeType":403,"data":12207,"content":12208},{},[12209,12228],{"nodeType":407,"data":12210,"content":12211},{},[12212,12216,12224],{"nodeType":411,"value":12213,"marks":12214,"data":12215},"Attackers are ",[],{},{"nodeType":416,"data":12217,"content":12219},{"uri":12218},"https://pushsecurity.com/blog/the-pyramid-of-pain-in-the-ai-era/",[12220],{"nodeType":411,"value":12221,"marks":12222,"data":12223},"increasingly leveraging AI in their phishing campaigns",[],{},{"nodeType":411,"value":12225,"marks":12226,"data":12227},", creating new and derivative phishing kits, adding new capabilities, and finding ways to increase the speed and scale of their operations. But Push's vantage point in the browser means that regardless of the tooling or infrastructure used, Push intercepts the attack at the point of interaction. ",[],{},{"nodeType":407,"data":12229,"content":12230},{},[12231,12235,12242],{"nodeType":411,"value":12232,"marks":12233,"data":12234},"This even applies to AI-powered voice and video faking attacks: since ",[],{},{"nodeType":416,"data":12236,"content":12237},{"uri":3275},[12238],{"nodeType":411,"value":12239,"marks":12240,"data":12241},"most voice-based attacks still result in a user being directed to interact with a browser payload",[],{},{"nodeType":411,"value":12243,"marks":12244,"data":12245},", Push can still intercept them at the point that the caller is lured to a malicious web page or resource.",[],{},"ai regulation IB4",{"sys":12248,"__typename":1180,"content":12249,"name":12260,"title":62},{"id":5606},{"json":12250},{"data":12251,"content":12252,"nodeType":403},{},[12253],{"data":12254,"content":12255,"nodeType":407},{},[12256],{"data":12257,"marks":12258,"value":12259,"nodeType":411},{},[],"The five obligation categories we've identified aren't artifacts of any single regulation; they reflect a durable regulatory consensus about what responsible AI governance requires. Building the operational capability to meet them now — continuous AI inventory, demonstrable employee guidance, data exposure controls, phishing-resistant authentication, and third-party risk visibility — means you're prepared for future frameworks.","ai regulation ib5",{"items":12262},[],{},"How browser visibility and control can achieve AI compliance",{"items":12266},[12267,12881,13681],{"__typename":1214,"sys":12268,"content":12270,"title":12867,"synopsis":12868,"hashTags":62,"publishedDate":12869,"slug":12870,"tagsCollection":12871,"authorsCollection":12877},{"id":12269},"4NY2NbkAPucFOJY45yrrrE",{"json":12271},{"nodeType":403,"data":12272,"content":12273},{},[12274,12281,12288,12295,12301,12341,12344,12352,12359,12367,12409,12415,12422,12427,12430,12438,12445,12453,12460,12467,12483,12491,12516,12523,12529,12536,12544,12559,12586,12592,12610,12616,12624,12631,12656,12663,12670,12677,12683,12686,12694,12701,12708,12726,12734,12741,12749,12772,12784,12787,12795,12802,12809,12816,12836,12839,12845,12851],{"nodeType":407,"data":12275,"content":12276},{},[12277],{"nodeType":411,"value":12278,"marks":12279,"data":12280},"Employees have been self-adopting apps, creating unmanaged accounts, and introducing third-party software dependencies into their organizations for years, and the core problem hasn't changed: unmanaged software expanding your attack surface without your knowledge.",[],{},{"nodeType":407,"data":12282,"content":12283},{},[12284],{"nodeType":411,"value":12285,"marks":12286,"data":12287},"But the rate at which employees are signing up for AI tools is unprecedented, and the depth of interconnectivity those tools demand is fundamentally different from traditional shadow SaaS. ",[],{},{"nodeType":407,"data":12289,"content":12290},{},[12291],{"nodeType":411,"value":12292,"marks":12293,"data":12294},"AI tools aren't just standalone apps that employees sign into — they're increasingly used as agents that drive other applications, pulling data from one platform, acting on another — they are becoming a core that other apps are integrating to, and that users are integrating with their wider SaaS stack. It’s becoming a focal integration point for app access and functionality in a way that's more comparable to an enterprise cloud platform than a typical SaaS tool. ",[],{},{"nodeType":431,"data":12296,"content":12300},{"target":12297},{"sys":12298},{"id":12299,"type":436,"linkType":437},"4jsomkKmK7Vjijo8UkCQkf",[],{"nodeType":407,"data":12302,"content":12303},{},[12304,12308,12315,12319,12324,12328,12337],{"nodeType":411,"value":12305,"marks":12306,"data":12307},"The industry data backs this up. The ",[],{},{"nodeType":416,"data":12309,"content":12310},{"uri":6059},[12311],{"nodeType":411,"value":12312,"marks":12313,"data":12314},"Verizon DBIR 2026",[],{},{"nodeType":411,"value":12316,"marks":12317,"data":12318}," reports that ",[],{},{"nodeType":411,"value":12320,"marks":12321,"data":12323},"45% of employees are now regular AI users on corporate devices",[12322],{"type":457},{},{"nodeType":411,"value":12325,"marks":12326,"data":12327},", up from 15% the year before. ",[],{},{"nodeType":416,"data":12329,"content":12331},{"uri":12330},"https://omdia.tech.informa.com/",[12332],{"nodeType":411,"value":12333,"marks":12334,"data":12336},"Omdia's 2026 browser security research",[12335],{"type":424},{},{"nodeType":411,"value":12338,"marks":12339,"data":12340}," presents a stronger picture, finding that 92% allow employees to use public GenAI applications. However, given that the typical company policy sanctions a small number of approved tools, this means everything else employees are using is unsanctioned by default. In other words: every organization in the survey had unsanctioned AI usage.",[],{},{"nodeType":446,"data":12342,"content":12343},{},[],{"nodeType":450,"data":12345,"content":12346},{},[12347],{"nodeType":411,"value":12348,"marks":12349,"data":12351},"The state of shadow AI, using Push data",[12350],{"type":457},{},{"nodeType":407,"data":12353,"content":12354},{},[12355],{"nodeType":411,"value":12356,"marks":12357,"data":12358},"We analyzed a snapshot of AI activity across Push customers during an average week in April 2026. We wanted to make sure it captured actual activity, not just historical data on apps that were added once and no longer used.",[],{},{"nodeType":407,"data":12360,"content":12361},{},[12362],{"nodeType":411,"value":12363,"marks":12364,"data":12366},"The numbers paint a picture that most security teams will find uncomfortable.",[12365],{"type":457},{},{"nodeType":407,"data":12368,"content":12369},{},[12370,12374,12379,12383,12388,12391,12396,12400,12405],{"nodeType":411,"value":12371,"marks":12372,"data":12373},"The average organization has ",[],{},{"nodeType":411,"value":12375,"marks":12376,"data":12378},"16 unique AI apps",[12377],{"type":457},{},{"nodeType":411,"value":12380,"marks":12381,"data":12382}," in active use, ",[],{},{"nodeType":411,"value":12384,"marks":12385,"data":12387},"17 unique AI browser extensions",[12386],{"type":457},{},{"nodeType":411,"value":6708,"marks":12389,"data":12390},[],{},{"nodeType":411,"value":12392,"marks":12393,"data":12395},"17 unique AI OAuth integrations",[12394],{"type":457},{},{"nodeType":411,"value":12397,"marks":12398,"data":12399}," connected into just Google Workspace and Microsoft 365 — with some organizations reaching as high as 40 unique AI apps, 163 AI extensions, and 55 OAuth connections to AI apps respectively. At the other end, the smallest organization with the ",[],{},{"nodeType":411,"value":12401,"marks":12402,"data":12404},"lowest",[12403],{"type":1822},{},{"nodeType":411,"value":12406,"marks":12407,"data":12408}," adoption level is actively using two. ",[],{},{"nodeType":431,"data":12410,"content":12414},{"target":12411},{"sys":12412},{"id":12413,"type":436,"linkType":437},"2AfeiHub5kyZN8wuf6CJch",[],{"nodeType":407,"data":12416,"content":12417},{},[12418],{"nodeType":411,"value":12419,"marks":12420,"data":12421},"If most organizations have sanctioned one or two core AI assistants/platforms for business use, the gap between what's approved and what's actually happening is significant.",[],{},{"nodeType":431,"data":12423,"content":12426},{"target":12424},{"sys":12425},{"id":3773,"type":436,"linkType":437},[],{"nodeType":446,"data":12428,"content":12429},{},[],{"nodeType":450,"data":12431,"content":12432},{},[12433],{"nodeType":411,"value":12434,"marks":12435,"data":12437},"Understanding the four categories of shadow AI",[12436],{"type":457},{},{"nodeType":407,"data":12439,"content":12440},{},[12441],{"nodeType":411,"value":12442,"marks":12443,"data":12444},"Shadow SaaS has always been a problem, but in the context of AI apps there are four categories of shadow IT that security teams need to understand, because each one introduces a different kind of risk and requires a different approach to tackling it.",[],{},{"nodeType":460,"data":12446,"content":12447},{},[12448],{"nodeType":411,"value":12449,"marks":12450,"data":12452},"Shadow AI apps",[12451],{"type":457},{},{"nodeType":407,"data":12454,"content":12455},{},[12456],{"nodeType":411,"value":12457,"marks":12458,"data":12459},"Shadow apps are AI tools that employees have signed up to and are using for business purposes without approval. This is the most visible dimension of the problem, and the one most people think of when they hear \"shadow AI\" — an employee pastes sensitive internal documents into ChatGPT, uploads confidential files to an AI assistant, or uses an unapproved coding tool to generate production code.",[],{},{"nodeType":407,"data":12461,"content":12462},{},[12463],{"nodeType":411,"value":12464,"marks":12465,"data":12466},"All of that is sensitive data leaving the organization through channels the security team can't see - and often accessible using personal accounts that can be compromised on personal devices or workstations. ",[],{},{"nodeType":407,"data":12468,"content":12469},{},[12470,12474,12479],{"nodeType":411,"value":12471,"marks":12472,"data":12473},"The 2026 DBIR's data loss prevention analysis underscores the scale — shadow AI is now the ",[],{},{"nodeType":411,"value":12475,"marks":12476,"data":12478},"third most common non-malicious insider action",[12477],{"type":457},{},{"nodeType":411,"value":12480,"marks":12481,"data":12482}," in DLP data, a 4x increase year-over-year. Across 858,000+ DLP events targeting GenAI tools, the most common data types being submitted were source code (28%), images (16%), structured data (14%), documents (13%), and PDFs (10%). That's not employees asking ChatGPT to fix their grammar — it's core intellectual property, production code, and internal documentation flowing into platforms the security team has no visibility into. But shadow apps themselves are only the most obvious part of the problem.",[],{},{"nodeType":460,"data":12484,"content":12485},{},[12486],{"nodeType":411,"value":12487,"marks":12488,"data":12490},"Shadow tenants",[12489],{"type":457},{},{"nodeType":407,"data":12492,"content":12493},{},[12494,12498,12503,12507,12512],{"nodeType":411,"value":12495,"marks":12496,"data":12497},"Even when an organization has approved an AI tool — say, an enterprise ChatGPT deployment — employees frequently access the same app with personal accounts, creating shadow tenants that sit entirely outside organizational control. The DBIR found that ",[],{},{"nodeType":411,"value":12499,"marks":12500,"data":12502},"67% of GenAI users on corporate devices are using non-corporate accounts",[12501],{"type":457},{},{"nodeType":411,"value":12504,"marks":12505,"data":12506},", and our own data shows that ",[],{},{"nodeType":411,"value":12508,"marks":12509,"data":12511},"38% of file uploads to AI tools are made from shadow accounts",[12510],{"type":457},{},{"nodeType":411,"value":12513,"marks":12514,"data":12515}," rather than approved organizational ones.",[],{},{"nodeType":407,"data":12517,"content":12518},{},[12519],{"nodeType":411,"value":12520,"marks":12521,"data":12522},"When an organization approves Claude, ChatGPT, or another core AI platform, you typically also approve the OAuth integration and browser extension for core apps (e.g. M365, Google Workspace, and so on). When that integration is approved, it is approved for all tenants — not just your corporate tenant. ",[],{},{"nodeType":431,"data":12524,"content":12528},{"target":12525},{"sys":12526},{"id":12527,"type":436,"linkType":437},"3Rvw0n28AYIM3FQXtHyafD",[],{"nodeType":407,"data":12530,"content":12531},{},[12532],{"nodeType":411,"value":12533,"marks":12534,"data":12535},"This means that even if you've deployed enterprise controls around your sanctioned AI tools — DLP policies, retention settings, admin oversight — more than a third of the file uploads hitting AI tools are bypassing those controls entirely because they're happening through personal accounts on corporate devices.",[],{},{"nodeType":460,"data":12537,"content":12538},{},[12539],{"nodeType":411,"value":12540,"marks":12541,"data":12543},"Shadow extensions",[12542],{"type":457},{},{"nodeType":407,"data":12545,"content":12546},{},[12547,12551,12555],{"nodeType":411,"value":12548,"marks":12549,"data":12550},"Many AI tools come with a browser extension counterpart, and there's a large ecosystem of third-party AI extensions that offer everything from writing assistance to automated data extraction. The average organization in our dataset has ",[],{},{"nodeType":411,"value":12384,"marks":12552,"data":12554},[12553],{"type":457},{},{"nodeType":411,"value":12556,"marks":12557,"data":12558}," deployed across its workforce, with the highest we observed reaching 163 — and since each of those average 17 different extensions may be installed by multiple employees, the actual number of individual extension installs across the organization is much higher still.",[],{},{"nodeType":407,"data":12560,"content":12561},{},[12562,12566,12573,12577,12582],{"nodeType":411,"value":12563,"marks":12564,"data":12565},"The extension dimension is particularly concerning because most extensions operate with significant privilege inside the browser — they can read and modify page content, access cookies and session tokens, and interact with virtually every web application an employee uses. As we detailed in our recent analysis of ",[],{},{"nodeType":416,"data":12567,"content":12568},{"uri":1634},[12569],{"nodeType":411,"value":12570,"marks":12571,"data":12572},"browser extension risk scoring",[],{},{"nodeType":411,"value":12574,"marks":12575,"data":12576},", at least ",[],{},{"nodeType":411,"value":12578,"marks":12579,"data":12581},"46.76% of all extensions across Push customers have the permission combinations needed to perform account takeover with no user interaction",[12580],{"type":457},{},{"nodeType":411,"value":12583,"marks":12584,"data":12585},", and the extensions involved in every major supply chain breach of the past 18 months scored as normal or low-risk beforehand.",[],{},{"nodeType":431,"data":12587,"content":12591},{"target":12588},{"sys":12589},{"id":12590,"type":436,"linkType":437},"3z4JOMALI52xoOXZkzPHLD",[],{"nodeType":407,"data":12593,"content":12594},{},[12595,12599,12606],{"nodeType":411,"value":12596,"marks":12597,"data":12598},"AI extensions add a specific wrinkle to this problem: many are branded to look like official companions to well-known AI tools but are actually third-party creations with no affiliation to the original vendor. They're not necessarily malicious at the point of installation, but they're exactly the kind of extension that's likely to be ",[],{},{"nodeType":416,"data":12600,"content":12601},{"uri":1634},[12602],{"nodeType":411,"value":12603,"marks":12604,"data":12605},"acquired and weaponized",[],{},{"nodeType":411,"value":12607,"marks":12608,"data":12609}," down the line — and in the meantime, they're collecting data that their permissions entitle them to (which, in most cases, means everything the user can see in their browser).",[],{},{"nodeType":431,"data":12611,"content":12615},{"target":12612},{"sys":12613},{"id":12614,"type":436,"linkType":437},"6K3z67rohss6H3lCsSn12B",[],{"nodeType":460,"data":12617,"content":12618},{},[12619],{"nodeType":411,"value":12620,"marks":12621,"data":12623},"Shadow integrations",[12622],{"type":457},{},{"nodeType":407,"data":12625,"content":12626},{},[12627],{"nodeType":411,"value":12628,"marks":12629,"data":12630},"The fourth dimension — and arguably the most dangerous — is shadow integrations: OAuth connections between AI tools and core enterprise apps that aren't known or approved by the security team. Even if an organization has approved an AI tool for standalone use, plugging that tool directly into Google Workspace, Microsoft 365, Salesforce, or any other one of the dozen or so SaaS apps in a typical user’s work stack is a fundamentally different risk decision, because it creates a persistent, programmatic bridge between your environment and a third party.",[],{},{"nodeType":407,"data":12632,"content":12633},{},[12634,12638,12643,12647,12652],{"nodeType":411,"value":12635,"marks":12636,"data":12637},"On average, we see ",[],{},{"nodeType":411,"value":12639,"marks":12640,"data":12642},"17 unique AI app OAuth integrations per organization",[12641],{"type":457},{},{"nodeType":411,"value":12644,"marks":12645,"data":12646}," in ",[],{},{"nodeType":411,"value":12648,"marks":12649,"data":12651},"just",[12650],{"type":1822},{},{"nodeType":411,"value":12653,"marks":12654,"data":12655}," Google Workspace and Microsoft 365 (to be clear: this number excludes the dozens of downstream apps the AI assistants are integrated with as well), with the highest reaching 55. Each of those represents a unique AI product that has been granted OAuth access — the total number of individual consent grants across users is larger, because popular integrations get authorized by multiple employees independently.",[],{},{"nodeType":407,"data":12657,"content":12658},{},[12659],{"nodeType":411,"value":12660,"marks":12661,"data":12662},"The actual number of AI-related OAuth connections across the full SaaS estate is considerably higher again, because AI tools that automate workflows need to be connected to be useful — pulling data from one app, analyzing it in another, presenting results in a third.",[],{},{"nodeType":407,"data":12664,"content":12665},{},[12666],{"nodeType":411,"value":12667,"marks":12668,"data":12669},"MCP connections use OAuth to achieve this interconnectivity in the same way, and AI coding agents create a particularly concentrated version of the risk: a single agent configuration can hold OAuth tokens for Jira, Confluence, Salesforce, GitHub, and more, meaning that compromising one agent — whether through prompt injection, a malicious repository config, or a supply chain attack on an MCP server — yields persistent, broadly scoped tokens for every service it was connected to, tokens that survive session restarts and generate audit log entries indistinguishable from legitimate user activity.",[],{},{"nodeType":407,"data":12671,"content":12672},{},[12673],{"nodeType":411,"value":12674,"marks":12675,"data":12676},"It's also worth noting that OAuth blast radius is almost always larger than organizations expect. A single well-permissioned user can expose secrets, dashboards, and internal tooling without tenant-wide admin access. And every new AI tool an employee connects makes the web of abusable permissions a little wider.",[],{},{"nodeType":431,"data":12678,"content":12682},{"target":12679},{"sys":12680},{"id":12681,"type":436,"linkType":437},"4SnzJ9T93gHzFIUASx7Yb3",[],{"nodeType":446,"data":12684,"content":12685},{},[],{"nodeType":450,"data":12687,"content":12688},{},[12689],{"nodeType":411,"value":12690,"marks":12691,"data":12693},"Why shadow AI needs a different solution to shadow SaaS",[12692],{"type":457},{},{"nodeType":407,"data":12695,"content":12696},{},[12697],{"nodeType":411,"value":12698,"marks":12699,"data":12700},"The reason it's worth distinguishing between these four dimensions isn't academic. Each one requires a different control, and addressing one doesn't solve the others.",[],{},{"nodeType":407,"data":12702,"content":12703},{},[12704],{"nodeType":411,"value":12705,"marks":12706,"data":12707},"Blocking unsanctioned AI apps does nothing for the personal accounts accessing approved ones, and neither addresses the average 17 different AI extensions running with broad browser permissions, let alone the dozens of OAuth integrations that have already been granted persistent access to core enterprise apps — and even auditing OAuth in Google Workspace and Microsoft 365, where the controls are relatively mature, leaves the broader SaaS estate unaddressed, where admin tooling is inconsistent and visibility is limited.",[],{},{"nodeType":407,"data":12709,"content":12710},{},[12711,12715,12722],{"nodeType":411,"value":12712,"marks":12713,"data":12714},"The tooling gap compounds the policy gap. ",[],{},{"nodeType":416,"data":12716,"content":12717},{"uri":7193},[12718],{"nodeType":411,"value":12719,"marks":12720,"data":12721},"Omdia found",[],{},{"nodeType":411,"value":12723,"marks":12724,"data":12725}," that 58% of organizations rely on secure web gateways to secure GenAI usage — but an SWG can tell you that a user visited ChatGPT, not whether they pasted your source code into the prompt. That link between knowing where data went and knowing what the user actually did is the fundamental visibility gap that makes GenAI policies unenforceable without browser-layer tooling.",[],{},{"nodeType":460,"data":12727,"content":12728},{},[12729],{"nodeType":411,"value":12730,"marks":12731,"data":12733},"Advice for security teams",[12732],{"type":457},{},{"nodeType":407,"data":12735,"content":12736},{},[12737],{"nodeType":411,"value":12738,"marks":12739,"data":12740},"The principles behind managing shadow AI are the same ones that have governed shadow SaaS and software supply chain management for years: default-deny where feasible, comprehensive inventory where it isn't, and continuous monitoring for changes that signal increased risk. But it's vital that teams act fast to stop the snowball.",[],{},{"nodeType":407,"data":12742,"content":12743},{},[12744],{"nodeType":411,"value":12745,"marks":12746,"data":12748},"That starts with visibility into which AI tools employees are actually using and which accounts they're using to access them — without that baseline, every other control is built on assumptions.",[12747],{"type":457},{},{"nodeType":407,"data":12750,"content":12751},{},[12752,12757,12761,12768],{"nodeType":411,"value":12753,"marks":12754,"data":12756},"Extensions",[12755],{"type":457},{},{"nodeType":411,"value":12758,"marks":12759,"data":12760}," need the same ",[],{},{"nodeType":416,"data":12762,"content":12763},{"uri":1634},[12764],{"nodeType":411,"value":12765,"marks":12766,"data":12767},"default-deny allowlisting approach",[],{},{"nodeType":411,"value":12769,"marks":12770,"data":12771}," that has been best practice for software management elsewhere: build a complete inventory, allowlist what's vetted, block everything else, and monitor the approved set for changes that precede weaponization.",[],{},{"nodeType":407,"data":12773,"content":12774},{},[12775,12780],{"nodeType":411,"value":12776,"marks":12777,"data":12779},"OAuth",[12778],{"type":457},{},{"nodeType":411,"value":12781,"marks":12782,"data":12783}," demands the most urgency, because each unmanaged integration is a persistent trust relationship that survives password resets and MFA changes — adopt default-deny for consent grants in your primary enterprise apps, routinely audit what's already connected, and critically extend that visibility beyond Google and Microsoft to the broader SaaS estate where the controls are weaker and the sprawl is harder to track.",[],{},{"nodeType":446,"data":12785,"content":12786},{},[],{"nodeType":450,"data":12788,"content":12789},{},[12790],{"nodeType":411,"value":12791,"marks":12792,"data":12794},"Browser visibility and control is key to de-risking AI adoption",[12793],{"type":457},{},{"nodeType":407,"data":12796,"content":12797},{},[12798],{"nodeType":411,"value":12799,"marks":12800,"data":12801},"AI usage is fundamentally browser-based activity — every LLM interaction, every prompt containing sensitive data, every AI agent authorization, every OAuth consent grant happens inside a browser session — which makes the browser the natural control point for AI governance across the workforce. ",[],{},{"nodeType":407,"data":12803,"content":12804},{},[12805],{"nodeType":411,"value":12806,"marks":12807,"data":12808},"Push tracks AI app usage and login security across the workforce, inventories and controls AI browser extensions, monitors and blocks OAuth consent flows across any app (not just the primary enterprise platforms), and gives security teams a single view of the full shadow AI picture across all four dimensions.",[],{},{"nodeType":407,"data":12810,"content":12811},{},[12812],{"nodeType":411,"value":12813,"marks":12814,"data":12815},"Shadow AI isn't a problem that will age well if ignored. Every week that passes without visibility adds more apps, more extensions, more integrations, and more potential breach paths into the environment — and as the Vercel breach demonstrated, it only takes one forgotten OAuth grant to turn an employee's idle curiosity into an organization-wide incident.",[],{},{"nodeType":407,"data":12817,"content":12818},{},[12819,12823,12832],{"nodeType":411,"value":12820,"marks":12821,"data":12822},"Learn more about how you can tackle ",[],{},{"nodeType":416,"data":12824,"content":12826},{"uri":12825},"https://pushsecurity.com/uc/shadow-ai",[12827],{"nodeType":411,"value":12828,"marks":12829,"data":12831},"Shadow AI",[12830],{"type":424},{},{"nodeType":411,"value":12833,"marks":12834,"data":12835}," with Push. ",[],{},{"nodeType":446,"data":12837,"content":12838},{},[],{"nodeType":407,"data":12840,"content":12841},{},[12842],{"nodeType":411,"value":1086,"marks":12843,"data":12844},[],{},{"nodeType":407,"data":12846,"content":12847},{},[12848],{"nodeType":411,"value":1093,"marks":12849,"data":12850},[],{},{"nodeType":407,"data":12852,"content":12853},{},[12854,12857,12864],{"nodeType":411,"value":2050,"marks":12855,"data":12856},[],{},{"nodeType":416,"data":12858,"content":12859},{"uri":2055},[12860],{"nodeType":411,"value":2058,"marks":12861,"data":12863},[12862],{"type":424},{},{"nodeType":411,"value":2062,"marks":12865,"data":12866},[],{},"What Push data reveals about the state of shadow AI","Shadow AI isn't a new category of risk, it's shadow SaaS with better marketing. But AI adoption has been a genuine force multiplier for the problem.","2026-05-28T00:00:00.000Z","what-push-data-reveals-about-the-state-of-shadow-ai",{"items":12872},[12873,12875],{"sys":12874,"name":5648},{"id":5647},{"sys":12876,"name":5652},{"id":5651},{"items":12878},[12879],{"fullName":2082,"firstName":2083,"jobTitle":2084,"profilePicture":12880},{"url":2086},{"__typename":1214,"sys":12882,"content":12883,"title":6580,"synopsis":6581,"hashTags":62,"publishedDate":5641,"slug":6582,"tagsCollection":13671,"authorsCollection":13677},{"id":5663},{"json":12884},{"nodeType":403,"data":12885,"content":12886},{},[12887,12893,12899,12916,12922,12928,12931,12938,12944,12950,12971,12977,12983,12988,12991,12998,13004,13009,13015,13022,13048,13063,13068,13075,13081,13086,13102,13109,13115,13140,13145,13158,13161,13168,13174,13179,13193,13199,13205,13215,13231,13237,13243,13250,13256,13272,13277,13283,13288,13293,13296,13303,13309,13315,13370,13376,13382,13388,13394,13407,13413,13419,13425,13431,13437,13443,13449,13455,13461,13467,13473,13479,13485,13488,13495,13501,13511,13517,13523,13529,13535,13641,13647,13652,13655],{"nodeType":407,"data":12888,"content":12889},{},[12890],{"nodeType":411,"value":5672,"marks":12891,"data":12892},[],{},{"nodeType":407,"data":12894,"content":12895},{},[12896],{"nodeType":411,"value":5679,"marks":12897,"data":12898},[],{},{"nodeType":407,"data":12900,"content":12901},{},[12902,12906,12909,12913],{"nodeType":411,"value":5686,"marks":12903,"data":12905},[12904],{"type":457},{},{"nodeType":411,"value":5691,"marks":12907,"data":12908},[],{},{"nodeType":411,"value":5695,"marks":12910,"data":12912},[12911],{"type":1822},{},{"nodeType":411,"value":5700,"marks":12914,"data":12915},[],{},{"nodeType":407,"data":12917,"content":12918},{},[12919],{"nodeType":411,"value":5707,"marks":12920,"data":12921},[],{},{"nodeType":407,"data":12923,"content":12924},{},[12925],{"nodeType":411,"value":5714,"marks":12926,"data":12927},[],{},{"nodeType":446,"data":12929,"content":12930},{},[],{"nodeType":450,"data":12932,"content":12933},{},[12934],{"nodeType":411,"value":5724,"marks":12935,"data":12937},[12936],{"type":457},{},{"nodeType":407,"data":12939,"content":12940},{},[12941],{"nodeType":411,"value":5732,"marks":12942,"data":12943},[],{},{"nodeType":407,"data":12945,"content":12946},{},[12947],{"nodeType":411,"value":5739,"marks":12948,"data":12949},[],{},{"nodeType":1038,"data":12951,"content":12952},{},[12953,12962],{"nodeType":1042,"data":12954,"content":12955},{},[12956],{"nodeType":407,"data":12957,"content":12958},{},[12959],{"nodeType":411,"value":5752,"marks":12960,"data":12961},[],{},{"nodeType":1042,"data":12963,"content":12964},{},[12965],{"nodeType":407,"data":12966,"content":12967},{},[12968],{"nodeType":411,"value":5762,"marks":12969,"data":12970},[],{},{"nodeType":407,"data":12972,"content":12973},{},[12974],{"nodeType":411,"value":5769,"marks":12975,"data":12976},[],{},{"nodeType":407,"data":12978,"content":12979},{},[12980],{"nodeType":411,"value":5776,"marks":12981,"data":12982},[],{},{"nodeType":431,"data":12984,"content":12987},{"target":12985},{"sys":12986},{"id":5783,"type":436,"linkType":437},[],{"nodeType":446,"data":12989,"content":12990},{},[],{"nodeType":450,"data":12992,"content":12993},{},[12994],{"nodeType":411,"value":5792,"marks":12995,"data":12997},[12996],{"type":457},{},{"nodeType":407,"data":12999,"content":13000},{},[13001],{"nodeType":411,"value":5800,"marks":13002,"data":13003},[],{},{"nodeType":431,"data":13005,"content":13008},{"target":13006},{"sys":13007},{"id":5807,"type":436,"linkType":437},[],{"nodeType":407,"data":13010,"content":13011},{},[13012],{"nodeType":411,"value":5813,"marks":13013,"data":13014},[],{},{"nodeType":460,"data":13016,"content":13017},{},[13018],{"nodeType":411,"value":5820,"marks":13019,"data":13021},[13020],{"type":457},{},{"nodeType":407,"data":13023,"content":13024},{},[13025,13028,13035,13038,13045],{"nodeType":411,"value":5828,"marks":13026,"data":13027},[],{},{"nodeType":416,"data":13029,"content":13030},{"uri":1546},[13031],{"nodeType":411,"value":5835,"marks":13032,"data":13034},[13033],{"type":424},{},{"nodeType":411,"value":5840,"marks":13036,"data":13037},[],{},{"nodeType":416,"data":13039,"content":13040},{"uri":1580},[13041],{"nodeType":411,"value":5847,"marks":13042,"data":13044},[13043],{"type":424},{},{"nodeType":411,"value":5852,"marks":13046,"data":13047},[],{},{"nodeType":407,"data":13049,"content":13050},{},[13051,13054,13060],{"nodeType":411,"value":5859,"marks":13052,"data":13053},[],{},{"nodeType":416,"data":13055,"content":13056},{"uri":5864},[13057],{"nodeType":411,"value":5867,"marks":13058,"data":13059},[],{},{"nodeType":411,"value":5871,"marks":13061,"data":13062},[],{},{"nodeType":431,"data":13064,"content":13067},{"target":13065},{"sys":13066},{"id":5878,"type":436,"linkType":437},[],{"nodeType":460,"data":13069,"content":13070},{},[13071],{"nodeType":411,"value":5884,"marks":13072,"data":13074},[13073],{"type":457},{},{"nodeType":407,"data":13076,"content":13077},{},[13078],{"nodeType":411,"value":5892,"marks":13079,"data":13080},[],{},{"nodeType":431,"data":13082,"content":13085},{"target":13083},{"sys":13084},{"id":5899,"type":436,"linkType":437},[],{"nodeType":407,"data":13087,"content":13088},{},[13089,13092,13099],{"nodeType":411,"value":5905,"marks":13090,"data":13091},[],{},{"nodeType":416,"data":13093,"content":13094},{"uri":3081},[13095],{"nodeType":411,"value":3084,"marks":13096,"data":13098},[13097],{"type":424},{},{"nodeType":411,"value":5916,"marks":13100,"data":13101},[],{},{"nodeType":460,"data":13103,"content":13104},{},[13105],{"nodeType":411,"value":5923,"marks":13106,"data":13108},[13107],{"type":457},{},{"nodeType":407,"data":13110,"content":13111},{},[13112],{"nodeType":411,"value":5931,"marks":13113,"data":13114},[],{},{"nodeType":407,"data":13116,"content":13117},{},[13118,13121,13128,13131,13137],{"nodeType":411,"value":5938,"marks":13119,"data":13120},[],{},{"nodeType":416,"data":13122,"content":13123},{"uri":5943},[13124],{"nodeType":411,"value":5946,"marks":13125,"data":13127},[13126],{"type":424},{},{"nodeType":411,"value":5951,"marks":13129,"data":13130},[],{},{"nodeType":416,"data":13132,"content":13133},{"uri":783},[13134],{"nodeType":411,"value":786,"marks":13135,"data":13136},[],{},{"nodeType":411,"value":5961,"marks":13138,"data":13139},[],{},{"nodeType":431,"data":13141,"content":13144},{"target":13142},{"sys":13143},{"id":5968,"type":436,"linkType":437},[],{"nodeType":407,"data":13146,"content":13147},{},[13148,13151,13155],{"nodeType":411,"value":5974,"marks":13149,"data":13150},[],{},{"nodeType":411,"value":5978,"marks":13152,"data":13154},[13153],{"type":457},{},{"nodeType":411,"value":1933,"marks":13156,"data":13157},[],{},{"nodeType":446,"data":13159,"content":13160},{},[],{"nodeType":450,"data":13162,"content":13163},{},[13164],{"nodeType":411,"value":5992,"marks":13165,"data":13167},[13166],{"type":457},{},{"nodeType":407,"data":13169,"content":13170},{},[13171],{"nodeType":411,"value":6000,"marks":13172,"data":13173},[],{},{"nodeType":431,"data":13175,"content":13178},{"target":13176},{"sys":13177},{"id":3773,"type":436,"linkType":437},[],{"nodeType":460,"data":13180,"content":13181},{},[13182,13186,13189],{"nodeType":411,"value":6012,"marks":13183,"data":13185},[13184],{"type":457},{},{"nodeType":411,"value":4981,"marks":13187,"data":13188},[],{},{"nodeType":411,"value":6020,"marks":13190,"data":13192},[13191],{"type":457},{},{"nodeType":407,"data":13194,"content":13195},{},[13196],{"nodeType":411,"value":6028,"marks":13197,"data":13198},[],{},{"nodeType":407,"data":13200,"content":13201},{},[13202],{"nodeType":411,"value":6035,"marks":13203,"data":13204},[],{},{"nodeType":460,"data":13206,"content":13207},{},[13208,13212],{"nodeType":411,"value":6042,"marks":13209,"data":13211},[13210],{"type":457},{},{"nodeType":411,"value":6047,"marks":13213,"data":13214},[],{},{"nodeType":407,"data":13216,"content":13217},{},[13218,13221,13228],{"nodeType":411,"value":6054,"marks":13219,"data":13220},[],{},{"nodeType":416,"data":13222,"content":13223},{"uri":6059},[13224],{"nodeType":411,"value":6062,"marks":13225,"data":13227},[13226],{"type":424},{},{"nodeType":411,"value":6067,"marks":13229,"data":13230},[],{},{"nodeType":407,"data":13232,"content":13233},{},[13234],{"nodeType":411,"value":6074,"marks":13235,"data":13236},[],{},{"nodeType":407,"data":13238,"content":13239},{},[13240],{"nodeType":411,"value":6081,"marks":13241,"data":13242},[],{},{"nodeType":460,"data":13244,"content":13245},{},[13246],{"nodeType":411,"value":6088,"marks":13247,"data":13249},[13248],{"type":457},{},{"nodeType":407,"data":13251,"content":13252},{},[13253],{"nodeType":411,"value":6096,"marks":13254,"data":13255},[],{},{"nodeType":407,"data":13257,"content":13258},{},[13259,13262,13269],{"nodeType":411,"value":1769,"marks":13260,"data":13261},[],{},{"nodeType":416,"data":13263,"content":13264},{"uri":6107},[13265],{"nodeType":411,"value":6110,"marks":13266,"data":13268},[13267],{"type":424},{},{"nodeType":411,"value":6115,"marks":13270,"data":13271},[],{},{"nodeType":431,"data":13273,"content":13276},{"target":13274},{"sys":13275},{"id":6122,"type":436,"linkType":437},[],{"nodeType":407,"data":13278,"content":13279},{},[13280],{"nodeType":411,"value":6128,"marks":13281,"data":13282},[],{},{"nodeType":431,"data":13284,"content":13287},{"target":13285},{"sys":13286},{"id":6135,"type":436,"linkType":437},[],{"nodeType":431,"data":13289,"content":13292},{"target":13290},{"sys":13291},{"id":6141,"type":436,"linkType":437},[],{"nodeType":446,"data":13294,"content":13295},{},[],{"nodeType":450,"data":13297,"content":13298},{},[13299],{"nodeType":411,"value":6150,"marks":13300,"data":13302},[13301],{"type":457},{},{"nodeType":407,"data":13304,"content":13305},{},[13306],{"nodeType":411,"value":6158,"marks":13307,"data":13308},[],{},{"nodeType":407,"data":13310,"content":13311},{},[13312],{"nodeType":411,"value":6165,"marks":13313,"data":13314},[],{},{"nodeType":1038,"data":13316,"content":13317},{},[13318,13331,13344,13357],{"nodeType":1042,"data":13319,"content":13320},{},[13321],{"nodeType":407,"data":13322,"content":13323},{},[13324,13328],{"nodeType":411,"value":6178,"marks":13325,"data":13327},[13326],{"type":457},{},{"nodeType":411,"value":6183,"marks":13329,"data":13330},[],{},{"nodeType":1042,"data":13332,"content":13333},{},[13334],{"nodeType":407,"data":13335,"content":13336},{},[13337,13341],{"nodeType":411,"value":6193,"marks":13338,"data":13340},[13339],{"type":457},{},{"nodeType":411,"value":6198,"marks":13342,"data":13343},[],{},{"nodeType":1042,"data":13345,"content":13346},{},[13347],{"nodeType":407,"data":13348,"content":13349},{},[13350,13354],{"nodeType":411,"value":6208,"marks":13351,"data":13353},[13352],{"type":457},{},{"nodeType":411,"value":6213,"marks":13355,"data":13356},[],{},{"nodeType":1042,"data":13358,"content":13359},{},[13360],{"nodeType":407,"data":13361,"content":13362},{},[13363,13367],{"nodeType":411,"value":6223,"marks":13364,"data":13366},[13365],{"type":457},{},{"nodeType":411,"value":6228,"marks":13368,"data":13369},[],{},{"nodeType":407,"data":13371,"content":13372},{},[13373],{"nodeType":411,"value":6235,"marks":13374,"data":13375},[],{},{"nodeType":460,"data":13377,"content":13378},{},[13379],{"nodeType":411,"value":6242,"marks":13380,"data":13381},[],{},{"nodeType":407,"data":13383,"content":13384},{},[13385],{"nodeType":411,"value":6249,"marks":13386,"data":13387},[],{},{"nodeType":407,"data":13389,"content":13390},{},[13391],{"nodeType":411,"value":6256,"marks":13392,"data":13393},[],{},{"nodeType":407,"data":13395,"content":13396},{},[13397,13400,13404],{"nodeType":411,"value":6263,"marks":13398,"data":13399},[],{},{"nodeType":411,"value":6267,"marks":13401,"data":13403},[13402],{"type":457},{},{"nodeType":411,"value":6272,"marks":13405,"data":13406},[],{},{"nodeType":407,"data":13408,"content":13409},{},[13410],{"nodeType":411,"value":6279,"marks":13411,"data":13412},[],{},{"nodeType":407,"data":13414,"content":13415},{},[13416],{"nodeType":411,"value":6286,"marks":13417,"data":13418},[],{},{"nodeType":460,"data":13420,"content":13421},{},[13422],{"nodeType":411,"value":6293,"marks":13423,"data":13424},[],{},{"nodeType":407,"data":13426,"content":13427},{},[13428],{"nodeType":411,"value":6300,"marks":13429,"data":13430},[],{},{"nodeType":407,"data":13432,"content":13433},{},[13434],{"nodeType":411,"value":6307,"marks":13435,"data":13436},[],{},{"nodeType":407,"data":13438,"content":13439},{},[13440],{"nodeType":411,"value":6314,"marks":13441,"data":13442},[],{},{"nodeType":460,"data":13444,"content":13445},{},[13446],{"nodeType":411,"value":6321,"marks":13447,"data":13448},[],{},{"nodeType":407,"data":13450,"content":13451},{},[13452],{"nodeType":411,"value":6328,"marks":13453,"data":13454},[],{},{"nodeType":407,"data":13456,"content":13457},{},[13458],{"nodeType":411,"value":6335,"marks":13459,"data":13460},[],{},{"nodeType":460,"data":13462,"content":13463},{},[13464],{"nodeType":411,"value":6342,"marks":13465,"data":13466},[],{},{"nodeType":407,"data":13468,"content":13469},{},[13470],{"nodeType":411,"value":6349,"marks":13471,"data":13472},[],{},{"nodeType":407,"data":13474,"content":13475},{},[13476],{"nodeType":411,"value":6356,"marks":13477,"data":13478},[],{},{"nodeType":407,"data":13480,"content":13481},{},[13482],{"nodeType":411,"value":6363,"marks":13483,"data":13484},[],{},{"nodeType":446,"data":13486,"content":13487},{},[],{"nodeType":450,"data":13489,"content":13490},{},[13491],{"nodeType":411,"value":6373,"marks":13492,"data":13494},[13493],{"type":457},{},{"nodeType":407,"data":13496,"content":13497},{},[13498],{"nodeType":411,"value":6381,"marks":13499,"data":13500},[],{},{"nodeType":407,"data":13502,"content":13503},{},[13504,13507],{"nodeType":411,"value":6388,"marks":13505,"data":13506},[],{},{"nodeType":411,"value":6392,"marks":13508,"data":13510},[13509],{"type":457},{},{"nodeType":407,"data":13512,"content":13513},{},[13514],{"nodeType":411,"value":6400,"marks":13515,"data":13516},[],{},{"nodeType":407,"data":13518,"content":13519},{},[13520],{"nodeType":411,"value":6407,"marks":13521,"data":13522},[],{},{"nodeType":407,"data":13524,"content":13525},{},[13526],{"nodeType":411,"value":6414,"marks":13527,"data":13528},[],{},{"nodeType":460,"data":13530,"content":13531},{},[13532],{"nodeType":411,"value":6421,"marks":13533,"data":13534},[],{},{"nodeType":1038,"data":13536,"content":13537},{},[13538,13557,13576,13595,13604,13613,13622],{"nodeType":1042,"data":13539,"content":13540},{},[13541],{"nodeType":407,"data":13542,"content":13543},{},[13544,13547,13554],{"nodeType":411,"value":6434,"marks":13545,"data":13546},[],{},{"nodeType":416,"data":13548,"content":13549},{"uri":6439},[13550],{"nodeType":411,"value":6442,"marks":13551,"data":13553},[13552],{"type":424},{},{"nodeType":411,"value":6447,"marks":13555,"data":13556},[],{},{"nodeType":1042,"data":13558,"content":13559},{},[13560],{"nodeType":407,"data":13561,"content":13562},{},[13563,13566,13573],{"nodeType":411,"value":6457,"marks":13564,"data":13565},[],{},{"nodeType":416,"data":13567,"content":13568},{"uri":2667},[13569],{"nodeType":411,"value":6464,"marks":13570,"data":13572},[13571],{"type":424},{},{"nodeType":411,"value":6469,"marks":13574,"data":13575},[],{},{"nodeType":1042,"data":13577,"content":13578},{},[13579],{"nodeType":407,"data":13580,"content":13581},{},[13582,13585,13592],{"nodeType":411,"value":29,"marks":13583,"data":13584},[],{},{"nodeType":416,"data":13586,"content":13587},{"uri":6483},[13588],{"nodeType":411,"value":6486,"marks":13589,"data":13591},[13590],{"type":424},{},{"nodeType":411,"value":6491,"marks":13593,"data":13594},[],{},{"nodeType":1042,"data":13596,"content":13597},{},[13598],{"nodeType":407,"data":13599,"content":13600},{},[13601],{"nodeType":411,"value":6501,"marks":13602,"data":13603},[],{},{"nodeType":1042,"data":13605,"content":13606},{},[13607],{"nodeType":407,"data":13608,"content":13609},{},[13610],{"nodeType":411,"value":6511,"marks":13611,"data":13612},[],{},{"nodeType":1042,"data":13614,"content":13615},{},[13616],{"nodeType":407,"data":13617,"content":13618},{},[13619],{"nodeType":411,"value":6521,"marks":13620,"data":13621},[],{},{"nodeType":1042,"data":13623,"content":13624},{},[13625],{"nodeType":407,"data":13626,"content":13627},{},[13628,13631,13638],{"nodeType":411,"value":6531,"marks":13629,"data":13630},[],{},{"nodeType":416,"data":13632,"content":13633},{"uri":6536},[13634],{"nodeType":411,"value":6539,"marks":13635,"data":13637},[13636],{"type":424},{},{"nodeType":411,"value":6544,"marks":13639,"data":13640},[],{},{"nodeType":407,"data":13642,"content":13643},{},[13644],{"nodeType":411,"value":29,"marks":13645,"data":13646},[],{},{"nodeType":431,"data":13648,"content":13651},{"target":13649},{"sys":13650},{"id":6557,"type":436,"linkType":437},[],{"nodeType":446,"data":13653,"content":13654},{},[],{"nodeType":407,"data":13656,"content":13657},{},[13658,13661,13668],{"nodeType":411,"value":6566,"marks":13659,"data":13660},[],{},{"nodeType":416,"data":13662,"content":13663},{"uri":2055},[13664],{"nodeType":411,"value":6573,"marks":13665,"data":13667},[13666],{"type":424},{},{"nodeType":411,"value":1933,"marks":13669,"data":13670},[],{},{"items":13672},[13673,13675],{"sys":13674,"name":5652},{"id":5651},{"sys":13676,"name":5648},{"id":5647},{"items":13678},[13679],{"fullName":6592,"firstName":6593,"jobTitle":6594,"profilePicture":13680},{"url":6596},{"__typename":1214,"sys":13682,"content":13684,"title":14371,"synopsis":14372,"hashTags":62,"publishedDate":14373,"slug":14374,"tagsCollection":14375,"authorsCollection":14381},{"id":13683},"1ThCW6Cx8Zcq2flramQdoj",{"json":13685},{"nodeType":403,"data":13686,"content":13687},{},[13688,13695,13702,13724,13731,13738,13745,13748,13756,13763,13781,13788,13795,13843,13850,13858,13865,13872,13879,13882,13890,13897,13909,13916,13924,13943,13949,13989,13995,14002,14014,14020,14027,14045,14053,14060,14080,14086,14094,14101,14256,14259,14267,14274,14281,14284,14292,14299,14311,14323,14335,14347,14354],{"nodeType":407,"data":13689,"content":13690},{},[13691],{"nodeType":411,"value":13692,"marks":13693,"data":13694},"At first, it may seem like an obvious choice, partly because the category name \"Secure Enterprise Browser\" implies the answer is a full-stack browser. Plus, the most visible vendors in the space have spent the past few years marketing that exact choice as the only one. ",[],{},{"nodeType":407,"data":13696,"content":13697},{},[13698],{"nodeType":411,"value":13699,"marks":13700,"data":13701},"But the market tells a different story. The majority of vendors Gartner places in the SEB category are now extensions rather than full browsers, and Gartner explicitly notes that extensions have become the preferred option. ",[],{},{"nodeType":3435,"data":13703,"content":13704},{},[13705],{"nodeType":407,"data":13706,"content":13707},{},[13708,13712,13720],{"nodeType":411,"value":13709,"marks":13710,"data":13711},"The buyer-side data tells the same story: In ",[],{},{"nodeType":416,"data":13713,"content":13714},{"uri":7193},[13715],{"nodeType":411,"value":13716,"marks":13717,"data":13719},"Omdia's 2026 survey of 400 IT and security professionals",[13718],{"type":424},{},{"nodeType":411,"value":13721,"marks":13722,"data":13723},", 48% of organizations cited the ability to use their existing browsers as an important attribute in a secure browsing solution.",[],{},{"nodeType":407,"data":13725,"content":13726},{},[13727],{"nodeType":411,"value":13728,"marks":13729,"data":13730},"The truth is: Full-stack enterprise browsers and browser security extensions like Push aren’t competing products. They serve different needs for different teams, though they often get evaluated against each other.",[],{},{"nodeType":407,"data":13732,"content":13733},{},[13734],{"nodeType":411,"value":13735,"marks":13736,"data":13737},"Full-stack enterprise browsers serve the IT team's need to control the workspace. Browser security extensions like Push meet the security team's need to protect their users as they work in their browsers — a fundamentally different problem. ",[],{},{"nodeType":407,"data":13739,"content":13740},{},[13741],{"nodeType":411,"value":13742,"marks":13743,"data":13744},"In this article, we’ll cover why a feature-by-feature checklist is the wrong approach when selecting a secure browser platform, and what questions to consider instead. We’ll also discuss what each type of solution excels at, where Push fits in, and how to map your needs to the right solution.",[],{},{"nodeType":446,"data":13746,"content":13747},{},[],{"nodeType":450,"data":13749,"content":13750},{},[13751],{"nodeType":411,"value":13752,"marks":13753,"data":13755},"Full-stack enterprise browsers meet the IT team's need to control a workspace",[13754],{"type":457},{},{"nodeType":407,"data":13757,"content":13758},{},[13759],{"nodeType":411,"value":13760,"marks":13761,"data":13762},"Full-stack enterprise browsers like Island, Prisma Browser, and SURF Security are best understood as managed workspace platforms rather than browsers in the conventional sense. ",[],{},{"nodeType":3435,"data":13764,"content":13765},{},[13766],{"nodeType":407,"data":13767,"content":13768},{},[13769,13773,13778],{"nodeType":411,"value":13770,"marks":13771,"data":13772},"Island's own CEO Mike Fey has described the company's strategy as transforming the browser into ",[],{},{"nodeType":411,"value":13774,"marks":13775,"data":13777},"\"a centralized, enterprise-grade platform, eliminating layers of legacy IT infrastructure by building more functionality in the browser.\"",[13776],{"type":1822},{},{"nodeType":411,"value":6047,"marks":13779,"data":13780},[],{},{"nodeType":407,"data":13782,"content":13783},{},[13784],{"nodeType":411,"value":13785,"marks":13786,"data":13787},"Chrome Enterprise and Edge for Business occupy a related space as productivity-suite browsers extended with native security controls, sold as part of the broader Google and Microsoft workplace stacks. Different products with different lineage, but all of them converge on the same owner: an IT organization solving for workspace control.",[],{},{"nodeType":407,"data":13789,"content":13790},{},[13791],{"nodeType":411,"value":13792,"marks":13793,"data":13794},"The IT team is trying to achieve workspace policy compliance and access governance. Their primary use case is typically reducing reliance on legacy IT tools like VDI, VPN, remote browser isolation, DaaS, web filtering, and CASBs. In this world, the use cases look like: ",[],{},{"nodeType":1038,"data":13796,"content":13797},{},[13798,13813,13828],{"nodeType":1042,"data":13799,"content":13800},{},[13801],{"nodeType":407,"data":13802,"content":13803},{},[13804,13809],{"nodeType":411,"value":13805,"marks":13806,"data":13808},"Securing third-party contractors or BYOD",[13807],{"type":457},{},{"nodeType":411,"value":13810,"marks":13811,"data":13812}," where the workspace itself is the access control. ",[],{},{"nodeType":1042,"data":13814,"content":13815},{},[13816],{"nodeType":407,"data":13817,"content":13818},{},[13819,13824],{"nodeType":411,"value":13820,"marks":13821,"data":13823},"Regulated populations",[13822],{"type":457},{},{"nodeType":411,"value":13825,"marks":13826,"data":13827}," like call centers, BPO workforces, finance teams handling sensitive material, where output controls like watermarking, screenshot restriction, and print blocking need to be enforced at the OS rendering layer. ",[],{},{"nodeType":1042,"data":13829,"content":13830},{},[13831],{"nodeType":407,"data":13832,"content":13833},{},[13834,13839],{"nodeType":411,"value":13835,"marks":13836,"data":13838},"Legacy app support",[13837],{"type":457},{},{"nodeType":411,"value":13840,"marks":13841,"data":13842}," including IE-mode rendering for applications that have never been modernized. ",[],{},{"nodeType":407,"data":13844,"content":13845},{},[13846],{"nodeType":411,"value":13847,"marks":13848,"data":13849},"For these use cases, the architecture is well-suited, and there are numerous full-stack SEB solutions that address them well. Where the full-stack approach runs into trouble is in getting users to migrate onto a new browser and in justifying the cost of doing so. Both problems scale with the size of the workforce. ",[],{},{"nodeType":460,"data":13851,"content":13852},{},[13853],{"nodeType":411,"value":13854,"marks":13855,"data":13857},"Cost of deployment is a significant blocker for full-stack browsers",[13856],{"type":457},{},{"nodeType":407,"data":13859,"content":13860},{},[13861],{"nodeType":411,"value":13862,"marks":13863,"data":13864},"The migration costs are easy to predict: deployment and configuration effort, help desk volume and — biggest of all — user resistance. But it’s the license cost that limits deployments in many organizations going from a free consumer browser to a paid replacement for the first time. ",[],{},{"nodeType":407,"data":13866,"content":13867},{},[13868],{"nodeType":411,"value":13869,"marks":13870,"data":13871},"In fact, Gartner notes that most buyers start with a single use case like covering contractors and rarely pursue organization-wide deployment for a full-stack enterprise browser. ",[],{},{"nodeType":407,"data":13873,"content":13874},{},[13875],{"nodeType":411,"value":13876,"marks":13877,"data":13878},"For organizations that do achieve a full-coverage deployment for these full-stack browsers, the need to manage drift in employee behavior over time gets harder. Agentic browsers like Comet, Atlas, and Dia are already starting to pull users toward AI-native workflows that consumer browsers don’t offer and full-stack enterprise browsers don’t currently match.",[],{},{"nodeType":446,"data":13880,"content":13881},{},[],{"nodeType":450,"data":13883,"content":13884},{},[13885],{"nodeType":411,"value":13886,"marks":13887,"data":13889},"What a browser security extension built for the security team looks like",[13888],{"type":457},{},{"nodeType":407,"data":13891,"content":13892},{},[13893],{"nodeType":411,"value":13894,"marks":13895,"data":13896},"Most browser security extensions on the market were built to address this migration hurdle. They attempt to take as many of the features of a full-stack browser as possible, but make it possible to deploy into users’ existing browsers, sidestepping a lot of the cost and rollout problems.",[],{},{"nodeType":407,"data":13898,"content":13899},{},[13900,13904],{"nodeType":411,"value":13901,"marks":13902,"data":13903},"LayerX, Seraphic, SquareX, and Keep Aware have all at some point echoed this approach in their product descriptions with the line ",[],{},{"nodeType":411,"value":13905,"marks":13906,"data":13908},"\"make any browser an enterprise browser.\"",[13907],{"type":1822},{},{"nodeType":407,"data":13910,"content":13911},{},[13912],{"nodeType":411,"value":13913,"marks":13914,"data":13915},"Ultimately, that approach is still aimed at solving problems for the IT team more than the security team.",[],{},{"nodeType":460,"data":13917,"content":13918},{},[13919],{"nodeType":411,"value":13920,"marks":13921,"data":13923},"Push is different — we built a browser extension to meet the security team's needs",[13922],{"type":457},{},{"nodeType":407,"data":13925,"content":13926},{},[13927,13931,13939],{"nodeType":411,"value":13928,"marks":13929,"data":13930},"Push set out to meet a different need. Our team's background has always been in defending organizations against advanced attacks. We spent our careers working in red and blue teams throughout the network and endpoint eras of cyber attacks. The mission we started with in 2022 was to defend organizations against the ",[],{},{"nodeType":416,"data":13932,"content":13933},{"uri":2020},[13934],{"nodeType":411,"value":13935,"marks":13936,"data":13938},"new era of damaging cyber attacks that originate in the browser",[13937],{"type":424},{},{"nodeType":411,"value":13940,"marks":13941,"data":13942},". ",[],{},{"nodeType":431,"data":13944,"content":13948},{"target":13945},{"sys":13946},{"id":13947,"type":436,"linkType":437},"6BwJl8ZkiMore2o1BKx2w6",[],{"nodeType":407,"data":13950,"content":13951},{},[13952,13956,13964,13968,13973,13977,13986],{"nodeType":411,"value":13953,"marks":13954,"data":13955},"We chose a browser extension as the approach for our solution, not because we wanted to build an easier-to-deploy enterprise browser, but so we could use it as a security agent to collect high-fidelity telemetry for TTP-based detections, and apply real-time controls to stop attacks at the earliest opportunity in the modern  — ",[],{},{"nodeType":416,"data":13957,"content":13958},{"uri":61},[13959],{"nodeType":411,"value":13960,"marks":13961,"data":13963},"browser and identity native",[13962],{"type":424},{},{"nodeType":411,"value":13965,"marks":13966,"data":13967},"  — kill chain. ",[],{},{"nodeType":411,"value":13969,"marks":13970,"data":13972},"In effect, we created EDR, but for the browser. ",[13971],{"type":457},{},{"nodeType":411,"value":13974,"marks":13975,"data":13976},"This is what gives Push the edge compared to other Secure Enterprise Browser solutions when it comes to tackling the highest priority threats in the browser — ",[],{},{"nodeType":416,"data":13978,"content":13980},{"uri":13979},"https://pushsecurity.com/blog/how-to-avoid-the-browser-security-buyers-trap/",[13981],{"nodeType":411,"value":13982,"marks":13983,"data":13985},"we’re optimized for this problem area",[13984],{"type":424},{},{"nodeType":411,"value":13940,"marks":13987,"data":13988},[],{},{"nodeType":431,"data":13990,"content":13994},{"target":13991},{"sys":13992},{"id":13993,"type":436,"linkType":437},"4nGzT9cNG0Yid93uUCCuTt",[],{"nodeType":407,"data":13996,"content":13997},{},[13998],{"nodeType":411,"value":13999,"marks":14000,"data":14001},"For a security team using Push’s extension, this means attacks get stopped at the earliest opportunity in the kill chain and before they cause harm. ",[],{},{"nodeType":407,"data":14003,"content":14004},{},[14005,14009],{"nodeType":411,"value":14006,"marks":14007,"data":14008},"When a user lands on a phishing page built to harvest their credentials, Push sees the page rendering and the JavaScript executing inside the DOM, and can block the credential submission before the form posts. When a user is being walked through a ClickFix or ConsentFix social engineering flow, Push sees the clipboard writes and the OAuth consent flow parameters being prepared, and can intervene before the user completes the action. When a session token is stolen and replayed against a different device, Push sees the session activity and surfaces the compromise. ",[],{},{"nodeType":411,"value":14010,"marks":14011,"data":14013},"Push does all of this from a browser extension, without needing to replace the user's browser. ",[14012],{"type":457},{},{"nodeType":431,"data":14015,"content":14019},{"target":14016},{"sys":14017},{"id":14018,"type":436,"linkType":437},"1FZEbn0K80d1jHRRTk7kL7",[],{"nodeType":407,"data":14021,"content":14022},{},[14023],{"nodeType":411,"value":14024,"marks":14025,"data":14026},"The same underlying technology also addresses other high-value security use cases: Visibility and control over AI usage; hardening identities and surfacing shadow IT; and supporting insider investigations and preventing data loss. ",[],{},{"nodeType":407,"data":14028,"content":14029},{},[14030,14033,14041],{"nodeType":411,"value":1769,"marks":14031,"data":14032},[],{},{"nodeType":416,"data":14034,"content":14036},{"uri":14035},"https://pushsecurity.com/blog/the-top-10-security-problems-you-can-solve-in-the-browser-ranked-by-value/",[14037],{"nodeType":411,"value":14038,"marks":14039,"data":14040},"highest-value use cases",[],{},{"nodeType":411,"value":14042,"marks":14043,"data":14044}," the browser can address are all powered by the same underlying technical capability, which is why Push's single extension can address four major security use cases rather than four separate tools needing four separate deployments. The success metric for security teams using Push is attacks averted or stopped, cyber risk reduced, and security posture and resilience strengthened — not workspace policy compliance.",[],{},{"nodeType":460,"data":14046,"content":14047},{},[14048],{"nodeType":411,"value":14049,"marks":14050,"data":14052},"Proven at scale: What security leaders are saying",[14051],{"type":457},{},{"nodeType":407,"data":14054,"content":14055},{},[14056],{"nodeType":411,"value":14057,"marks":14058,"data":14059},"Push launched its browser extension in 2022, making it one of the first and longest-running browser security extensions in the category, and it is now deployed across more than three million browsers worldwide.",[],{},{"nodeType":407,"data":14061,"content":14062},{},[14063,14067,14076],{"nodeType":411,"value":14064,"marks":14065,"data":14066},"Many ",[],{},{"nodeType":416,"data":14068,"content":14070},{"uri":14069},"https://pushsecurity.com/customer-stories",[14071],{"nodeType":411,"value":14072,"marks":14073,"data":14075},"Push customers",[14074],{"type":424},{},{"nodeType":411,"value":14077,"marks":14078,"data":14079}," were initially considering full-stack enterprise browsers, but found that Push provided all the visibility and control they needed without the migration headache.",[],{},{"nodeType":431,"data":14081,"content":14085},{"target":14082},{"sys":14083},{"id":14084,"type":436,"linkType":437},"4RDIOAuVN10mZCtjltJCB4",[],{"nodeType":460,"data":14087,"content":14088},{},[14089],{"nodeType":411,"value":14090,"marks":14091,"data":14093},"The extension matters, but it's what we built around it that really counts",[14092],{"type":457},{},{"nodeType":407,"data":14095,"content":14096},{},[14097],{"nodeType":411,"value":14098,"marks":14099,"data":14100},"The extension is the most visible part of the Push platform, but what Push has built around it makes the solution the most powerful security tool in the browser:",[],{},{"nodeType":1038,"data":14102,"content":14103},{},[14104,14150,14187,14226,14241],{"nodeType":1042,"data":14105,"content":14106},{},[14107],{"nodeType":407,"data":14108,"content":14109},{},[14110,14115,14119,14125,14129,14136,14140,14146],{"nodeType":411,"value":14111,"marks":14112,"data":14114},"In-house threat research that discovers attack techniques as they emerge.",[14113],{"type":457},{},{"nodeType":411,"value":14116,"marks":14117,"data":14118}," Push researchers track real-world adversary activity and discover new techniques as they appear, including ",[],{},{"nodeType":416,"data":14120,"content":14121},{"uri":1507},[14122],{"nodeType":411,"value":1510,"marks":14123,"data":14124},[],{},{"nodeType":411,"value":14126,"marks":14127,"data":14128},",",[],{},{"nodeType":416,"data":14130,"content":14131},{"uri":1495},[14132],{"nodeType":411,"value":14133,"marks":14134,"data":14135}," InstallFix",[],{},{"nodeType":411,"value":14137,"marks":14138,"data":14139},", and creating the ",[],{},{"nodeType":416,"data":14141,"content":14142},{"uri":6439},[14143],{"nodeType":411,"value":702,"marks":14144,"data":14145},[],{},{"nodeType":411,"value":14147,"marks":14148,"data":14149},". Detection is only as good as the threat understanding behind it, and research is what keeps that understanding ahead of what attackers are doing in the wild.",[],{},{"nodeType":1042,"data":14151,"content":14152},{},[14153],{"nodeType":407,"data":14154,"content":14155},{},[14156,14161,14165,14171,14175,14183],{"nodeType":411,"value":14157,"marks":14158,"data":14160},"Agentic threat hunting and detection engineering at machine speed.",[14159],{"type":457},{},{"nodeType":411,"value":14162,"marks":14163,"data":14164}," Push's ",[],{},{"nodeType":416,"data":14166,"content":14167},{"uri":2667},[14168],{"nodeType":411,"value":6464,"marks":14169,"data":14170},[],{},{"nodeType":411,"value":14172,"marks":14173,"data":14174}," operationalizes the research, generating new behavioral detections in minutes rather than quarterly releases — covering the ",[],{},{"nodeType":416,"data":14176,"content":14178},{"uri":14177},"https://pushsecurity.com/blog/how-the-browser-became-the-main-cyber-battleground/",[14179],{"nodeType":411,"value":14180,"marks":14181,"data":14182},"techniques behind the Scattered Spider, Scattered Lapsus$ Hunters, and ShinyHunters breaches",[],{},{"nodeType":411,"value":14184,"marks":14185,"data":14186}," of the past three years. Attackers are using AI to accelerate the pace at which they generate new lures, kits, and infrastructure; Push keeps security teams in front by advancing the capability at machine speed and scale.",[],{},{"nodeType":1042,"data":14188,"content":14189},{},[14190],{"nodeType":407,"data":14191,"content":14192},{},[14193,14198,14202,14210,14214,14222],{"nodeType":411,"value":14194,"marks":14195,"data":14197},"Collecting the right telemetry to surface both attacker behavior and risky user action.",[14196],{"type":457},{},{"nodeType":411,"value":14199,"marks":14200,"data":14201}," Telemetry by itself is just data — the value comes from knowing what to collect, why it matters, and how to turn it into detections and controls. Push combines deep instrumentation of the browser with the expertise to use what we collect: the same browser-layer telemetry that detects AiTM kits, ClickFix and ConsentFix lures, and session token replay also surfaces what users are pasting into AI tools, which ",[],{},{"nodeType":416,"data":14203,"content":14205},{"uri":14204},"https://pushsecurity.com/blog/ghost-logins-when-forgotten-identities-come-back-to-haunt-you/",[14206],{"nodeType":411,"value":14207,"marks":14208,"data":14209},"SaaS apps they're logging into outside the IdP",[],{},{"nodeType":411,"value":14211,"marks":14212,"data":14213},", which OAuth grants are being made, and which ",[],{},{"nodeType":416,"data":14215,"content":14217},{"uri":14216},"https://pushsecurity.com/blog/browser-extension-management-guide/",[14218],{"nodeType":411,"value":14219,"marks":14220,"data":14221},"extensions are running in their browsers",[],{},{"nodeType":411,"value":14223,"marks":14224,"data":14225},". The threat detection and the identity, AI, and DLP use cases are not separate features — they are different applications of the same underlying telemetry, surfaced because Push knows what to look for.",[],{},{"nodeType":1042,"data":14227,"content":14228},{},[14229],{"nodeType":407,"data":14230,"content":14231},{},[14232,14237],{"nodeType":411,"value":14233,"marks":14234,"data":14236},"Enforcing the right controls at the right place at the right moment.",[14235],{"type":457},{},{"nodeType":411,"value":14238,"marks":14239,"data":14240}," Visibility without actionability is only half a solution. Push turns the browser into a strong control point for stopping attacks and risky user behaviors in real time — reusing passwords, intercepting credential submission to non-IdP domains, blocking ClickFix clipboard payloads before paste-execute, prompting MFA enrollment at the point of login, warning on weak or breached passwords at credential entry, and surfacing app banners that communicate policy at the moment of use. The same control surface that stops attackers stops the user's mistakes that lead to the next breach.",[],{},{"nodeType":1042,"data":14242,"content":14243},{},[14244],{"nodeType":407,"data":14245,"content":14246},{},[14247,14252],{"nodeType":411,"value":14248,"marks":14249,"data":14251},"Balancing security and privacy.",[14250],{"type":457},{},{"nodeType":411,"value":14253,"marks":14254,"data":14255}," Push is designed to give security teams the telemetry they need without monitoring personal browsing. By default, only logins to configured corporate domains are observed; personal browsing is not collected. (Though administrators have the option to observe personal account logins to work apps, and identify where browsers are being synced to personal accounts, which can result in password loss.) Plaintext passwords and form inputs are never transmitted — passwords are analyzed locally using salted partial hashes. Broader browser metadata is stored on the device and only transmitted when it matches a detection rule. Push does not train AI models on customer telemetry.",[],{},{"nodeType":446,"data":14257,"content":14258},{},[],{"nodeType":450,"data":14260,"content":14261},{},[14262],{"nodeType":411,"value":14263,"marks":14264,"data":14266},"Full-stack enterprise browsers and Push’s browser extension are not mutually exclusive",[14265],{"type":457},{},{"nodeType":407,"data":14268,"content":14269},{},[14270],{"nodeType":411,"value":14271,"marks":14272,"data":14273},"It’s worth pausing on a point that often gets lost in the way the market discusses this choice. Full-stack enterprise browsers and Push’s extension-based solution are not mutually exclusive. They do different things for different teams, and they run together. ",[],{},{"nodeType":407,"data":14275,"content":14276},{},[14277],{"nodeType":411,"value":14278,"marks":14279,"data":14280},"Push supports enterprise browsers like Island and Prisma Browser. Many of Push’s customers use a full-stack browser for the contractor population or regulated workload where the IT team needs workspace controls, and Push across the rest of the workforce to provide the deep security capabilities that the IT team is not measured on but the security team is. The right framing for many enterprises is not whether to choose full-stack or extension. It is full-stack for the IT use cases that need it, and Push everywhere else.",[],{},{"nodeType":446,"data":14282,"content":14283},{},[],{"nodeType":450,"data":14285,"content":14286},{},[14287],{"nodeType":411,"value":14288,"marks":14289,"data":14291},"Which one is right for your security team?",[14290],{"type":457},{},{"nodeType":407,"data":14293,"content":14294},{},[14295],{"nodeType":411,"value":14296,"marks":14297,"data":14298},"The answer follows from the need you are trying to meet. The scenarios below cover the most common real-world situations and the approach that fits each.",[],{},{"nodeType":407,"data":14300,"content":14301},{},[14302,14307],{"nodeType":411,"value":14303,"marks":14304,"data":14306},"Is your priority detecting and stopping attacks in the browser?",[14305],{"type":457},{},{"nodeType":411,"value":14308,"marks":14309,"data":14310}," Go with Push. Push detects and stops the threats actually breaching enterprises — AiTM phishing, ClickFix, OAuth abuse, malicious browser extensions. It also provides valuable additional insight during investigations to understand incidents better and decide how to respond to them. ",[],{},{"nodeType":407,"data":14312,"content":14313},{},[14314,14319],{"nodeType":411,"value":14315,"marks":14316,"data":14318},"Do you have a large contractor or third-party population needing locked-down workspace controls?",[14317],{"type":457},{},{"nodeType":411,"value":14320,"marks":14321,"data":14322}," Use a full-stack enterprise browser for that population and Push for everyone else. Watermarking, screenshot blocking and print restriction are OS-level controls that extensions cannot reliably replicate.",[],{},{"nodeType":407,"data":14324,"content":14325},{},[14326,14331],{"nodeType":411,"value":14327,"marks":14328,"data":14330},"Do you have a multi-browser estate including a mix of consumer and agentic browsers?",[14329],{"type":457},{},{"nodeType":411,"value":14332,"marks":14333,"data":14334}," Push will provide the coverage you need to secure users. The browser options are growing, and locking your workforce into a single corporate browser becomes harder every time a new productivity-shaping browser ships. Push regularly adds support for emerging browsers.",[],{},{"nodeType":407,"data":14336,"content":14337},{},[14338,14343],{"nodeType":411,"value":14339,"marks":14340,"data":14342},"Is significant BYOD or unmanaged-device coverage required.",[14341],{"type":457},{},{"nodeType":411,"value":14344,"marks":14345,"data":14346}," Push is a great option, particularly if you also have Chromebooks that fall outside of your EDR coverage. The extension can easily be installed via email or landing page self-enrollment, with options to enforce coverage through conditional access policies. This provides full threat detection and policy enforcement on devices the organization does not own.",[],{},{"nodeType":407,"data":14348,"content":14349},{},[14350],{"nodeType":411,"value":14351,"marks":14352,"data":14353},"In short, if you are solving for workspace control, the right tool is a full-stack enterprise browser. If you’re solving for protecting users as they work in their browsers, Push is the tool built specifically for that need — with the research depth, detection engineering, and operational scale to do the job.",[],{},{"nodeType":407,"data":14355,"content":14356},{},[14357,14360,14368],{"nodeType":411,"value":29,"marks":14358,"data":14359},[],{},{"nodeType":416,"data":14361,"content":14362},{"uri":2055},[14363],{"nodeType":411,"value":14364,"marks":14365,"data":14367},"Book a live demo to learn more",[14366],{"type":424},{},{"nodeType":411,"value":1933,"marks":14369,"data":14370},[],{},"Enterprise browser vs. browser extension: Which should your security team choose?","If you're building a shortlist of browser security vendors, do you need a full-stack enterprise browser, or browser security extension? ","2026-05-21T00:00:00.000Z","enterprise-browser-vs-browser-extension-which-should-your-security-team-choose",{"items":14376},[14377,14379],{"sys":14378,"name":5652},{"id":5651},{"sys":14380,"name":5648},{"id":5647},{"items":14382},[14383],{"fullName":7845,"firstName":7846,"jobTitle":6594,"profilePicture":14384},{"url":7848},"blog/browser-visibility-and-control-can-achieve-ai-compliance",{"json":14387},{"data":14388,"content":14389,"nodeType":403},{},[14390],{"data":14391,"content":14392,"nodeType":407},{},[14393],{"data":14394,"marks":14395,"value":14396,"nodeType":411},{},[],"AI regulations across the US, EU, and UK are converging on five categories of obligation that most organizations cannot meet without browser-layer visibility into how employees actually use AI tools.",{"id":4618,"publishedAt":14398},"2026-06-02T18:15:45.251Z",{"items":14400},[14401,14403],{"sys":14402,"name":5648},{"id":5647},{"sys":14404,"name":5652},{"id":5651},"DpX3siO8xWSKLnmWTq-m60N3e4Ohjxb7mhxu8NCY704",{"w":14407,"h":14407,"d":14408},512,"M256.1 0c4.6 0 9.2 1 13.3 2.9L457.8 82.8c22 9.3 38.4 31 38.3 57.2-.5 99.2-41.3 280.7-213.7 363.2-16.7 8-36.1 8-52.7 0-172.4-82.5-213.1-263.9-213.6-363.2-.1-26.2 16.3-47.9 38.3-57.2L242.7 2.9C246.8 1 251.4 0 256.1 0zm90.9 164.6c-10.7-7.8-25.7-5.4-33.5 5.3l-85.6 117.7-26.5-27.4c-9.2-9.5-24.4-9.8-33.9-.6-9.5 9.2-9.8 24.4-.6 33.9l46.4 48c4.9 5.1 11.8 7.8 18.9 7.3s13.6-4.1 17.8-9.8L352.3 198.1c7.8-10.7 5.4-25.7-5.3-33.5z",{"w":32,"h":14407,"d":14410},"M320 16a104 104 0 1 1 0 208 104 104 0 1 1 0-208zM96 88a72 72 0 1 1 0 144 72 72 0 1 1 0-144zM0 416c0-70.7 57.3-128 128-128 12.8 0 25.2 1.9 36.9 5.4-32.9 36.8-52.9 85.4-52.9 138.6l0 16c0 11.4 2.4 22.2 6.7 32L32 480c-17.7 0-32-14.3-32-32l0-32zm521.3 64c4.3-9.8 6.7-20.6 6.7-32l0-16c0-53.2-20-101.8-52.9-138.6 11.7-3.5 24.1-5.4 36.9-5.4 70.7 0 128 57.3 128 128l0 32c0 17.7-14.3 32-32 32l-86.7 0zM472 160a72 72 0 1 1 144 0 72 72 0 1 1 -144 0zM160 432c0-88.4 71.6-160 160-160s160 71.6 160 160l0 16c0 17.7-14.3 32-32 32l-256 0c-17.7 0-32-14.3-32-32l0-16z",[14412,14495,14615,14771,14907],{"createdDate":219,"id":220,"name":221,"modelId":222,"published":13,"stageModifiedSincePublish":6,"query":14413,"data":14415,"variations":14490,"lastUpdated":379,"firstPublished":380,"testRatio":23,"screenshot":381,"createdBy":24,"lastUpdatedBy":93,"folders":14491,"meta":14492,"rev":14494},[14414],{"@type":225,"property":226,"operator":227,"value":228},{"ogImage":230,"resourcesPageImage":230,"description":231,"indexPageDescription":232,"seoDescription":233,"indexPageDesciption":234,"logo":235,"resourcesPageTitle":236,"seoTitle":236,"title":237,"themeId":6,"resourcesPageDescription":238,"effectivePublishDate":239,"blocks":14416,"url":228,"state":14487},[14417,14423,14436,14444,14454,14464,14476,14482],{"@type":47,"@version":48,"id":242,"meta":14418,"component":14419,"responsiveStyles":14421},{"previousId":244},{"name":246,"tag":247,"options":14420,"isRSC":62},{"heroTitle":236,"heroDescription":249,"heroLogo":235,"glowColor":250},{"large":14422},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":254,"meta":14424,"component":14425,"responsiveStyles":14434},{"previousId":256},{"name":258,"tag":259,"options":14426,"isRSC":62},{"summaryTitle":261,"summaryDescription":262,"summaryStat1":14427,"summaryStat2":14428,"summaryStat3":14429,"summaryStat4":14430,"stats":14431},{"icon":264,"value":265,"gap":62,"extraValueText":29,"helpText":266},{"icon":268,"value":23,"gap":23,"extraValueText":269,"helpText":270},{"icon":29,"value":62,"extraValueText":29,"helpText":29},{"icon":29,"value":62,"extraValueText":29,"helpText":29},[14432,14433],{"formatValue":34,"icon":275,"value":276,"gap":277,"helpText":278,"extraValueText":29},{"formatValue":6,"icon":264,"value":280,"gap":277,"helpText":281,"extraValueText":29},{"large":14435},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":285,"meta":14437,"component":14438,"responsiveStyles":14442},{"previousId":287},{"name":289,"tag":290,"options":14439,"isRSC":62},{"quoteCarousel":14440},[14441],{"author":294,"jobTitle":295,"quote":296},{"large":14443},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69,"paddingBottom":299},{"@type":47,"@version":48,"id":301,"meta":14445,"component":14446,"responsiveStyles":14452},{"previousId":303},{"name":305,"tag":306,"options":14447,"isRSC":62},{"theme":308,"sections":14448,"title":316,"diagonalVariant":317},[14449],{"text":311,"quotes":14450},[14451],{"quote":314,"quoteBy":315},{"large":14453},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":321,"meta":14455,"component":14456,"responsiveStyles":14462},{"previousId":323},{"name":305,"tag":306,"options":14457,"isRSC":62},{"theme":326,"sections":14458,"title":333,"diagonalVariant":334},[14459],{"text":329,"quotes":14460},[14461],{"quote":332,"quoteBy":315},{"large":14463},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":338,"meta":14465,"component":14466,"responsiveStyles":14474},{"previousId":340},{"name":305,"tag":306,"options":14467,"isRSC":62},{"theme":308,"sections":14468,"title":352,"diagonalVariant":353},[14469,14472],{"text":345,"quotes":14470},[14471],{"quote":348,"quoteBy":315},{"text":350,"quotes":14473},[],{"large":14475},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69,"marginTop":356},{"@type":47,"@version":48,"id":358,"meta":14477,"component":14478,"responsiveStyles":14480},{"previousId":360},{"name":362,"tag":363,"options":14479,"isRSC":62},{},{"large":14481},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"id":14483,"@type":47,"tagName":75,"properties":14484,"responsiveStyles":14485},"builder-pixel-8wzwxggf1uq",{"src":77,"aria-hidden":78,"alt":29,"role":79,"width":68,"height":68},{"large":14486},{"height":68,"width":68,"display":82,"opacity":68,"overflow":83,"pointerEvents":84},{"deviceSize":86,"location":14488},{"path":29,"query":14489},{},{},[],{"lastPreviewUrl":384,"kind":385,"originalContentId":386,"winningTest":62,"breakpoints":14493,"hasErrors":6,"hasLinks":6,"hasAutosaves":34},{"xsmall":31,"small":32,"medium":33},"djp0mx35rjh",{"createdDate":14496,"id":386,"name":14497,"modelId":222,"published":13,"query":14498,"data":14501,"variations":14606,"lastUpdated":14607,"firstPublished":14608,"testRatio":23,"screenshot":14609,"createdBy":24,"lastUpdatedBy":25,"folders":14610,"meta":14611,"rev":14494},1762795321508,"Cribl",[14499],{"@type":225,"property":226,"operator":227,"value":14500},"/customer-stories/cribl",{"effectivePublishDate":239,"seoDescription":233,"seoTitle":14502,"indexPageDescription":14503,"resourcesPageTitle":14502,"title":237,"ogImage":14504,"indexPageDesciption":234,"resourcesPageDescription":233,"logo":14504,"description":14505,"themeId":6,"resourcesPageImage":14506,"blocks":14507,"url":14500,"state":14603},"Customer Story: Cribl","Using Push, Cribl confirmed and remediated unmonitored login paths across critical business apps — risks that had previously gone unquantified.","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F790a9cc56084478592eae39f53790e4c","How Cribl leverages Push to enhance proactive browser security. ","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F5542d0f63c334af3bfcb4fe02fba2921",[14508,14517,14537,14549,14562,14575,14591,14598],{"@type":47,"@version":48,"id":244,"meta":14509,"component":14511,"responsiveStyles":14515},{"previousId":14510},"builder-358a6779ad884910828de44db2f7109a",{"name":246,"tag":247,"options":14512,"isRSC":62},{"heroTitle":14502,"heroDescription":14513,"heroLogo":14514,"glowColor":250},"\u003Cp>Using Push, Cribl confirmed and remediated unmonitored login paths across critical business apps — risks that had previously gone unquantified.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F000dad7ce3904fa9959f4ac8bc0681c0",{"large":14516},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":256,"meta":14518,"component":14520,"responsiveStyles":14535},{"previousId":14519},"builder-639f543377f343e1aeefd0da4c808dca",{"name":258,"tag":259,"options":14521,"isRSC":62},{"summaryTitle":14522,"summaryDescription":14523,"summaryStat1":14524,"summaryStat2":14525,"summaryStat3":14526,"summaryStat4":14527,"stats":14528},"About Cribl","\u003Cp>Cribl is an American company developing a data platform for information technology and security operations teams. Their solutions give organizations control and flexibility over their observability and security data.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Cp>\u003Cstrong style=\"color: rgb(255, 72, 36);\">Why Cribl chose Push:\u003C/strong>\u003C/p>\u003Cul>\u003Cli>Cribl, a leader in data management for IT and security teams, wanted a security solution that could support its proactive approach to identity and browser security in a fast-moving, remote-first environment. Their goal was to enhance the security of identities and applications beyond what traditional IdP and SSO tools could cover, without slowing down their work.\u003C/li>\u003Cli>Push helped Cribl validate and quantify hard-to-detect risks, including misconfigured login pages for key business applications that were allowing a significant number of users to bypass SSO.\u003C/li>\u003Cli>The Cribl security team used Push's flexible, high-fidelity data to scale their existing detection and response workflows, reduce manual effort, and enforce policy with confidence, without introducing friction for end users.\u003C/li>\u003C/ul>",{"icon":264,"value":265,"gap":62,"extraValueText":29,"helpText":266},{"icon":268,"value":23,"gap":23,"extraValueText":269,"helpText":270},{"icon":29,"value":62,"extraValueText":29,"helpText":29},{"icon":29,"value":62,"extraValueText":29,"helpText":29},[14529,14533,14534],{"formatValue":6,"icon":14530,"value":14531,"gap":277,"helpText":14532,"extraValueText":29},"faBuildingFlag",2024,"Protected by Push since 2024",{"formatValue":34,"icon":264,"value":265,"gap":277,"helpText":266},{"formatValue":34,"icon":268,"value":23,"gap":277,"helpText":270,"extraValueText":269},{"large":14536},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":287,"meta":14538,"component":14540,"responsiveStyles":14547},{"previousId":14539},"builder-c1e460bfc9dd4dd19a5eedad71702d9b",{"name":289,"tag":290,"options":14541,"isRSC":62},{"quoteCarousel":14542},[14543],{"author":14544,"jobTitle":14545,"quote":14546},"Alex Crusco","Staff Security Engineer","\u003Cp>We knew one of our biggest risks was tied to identity. Push was the only solution that could give us a true picture of that attack surface, connecting employee actions directly to the SaaS apps they use every day.\u003C/p>",{"large":14548},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69,"paddingBottom":299},{"@type":47,"@version":48,"id":303,"meta":14550,"component":14552,"responsiveStyles":14560},{"previousId":14551},"builder-1cb31d58a3084cebae42a5a4cceec88b",{"name":305,"tag":306,"options":14553,"isRSC":62},{"theme":308,"sections":14554,"title":316,"diagonalVariant":317},[14555],{"text":14556,"quotes":14557},"\u003Cp>As a remote-first company, Cribl empowers its employees with the flexibility to innovate quickly. This freedom, though, creates a common challenge for security teams in remote-first environments: the inherent difficulty in gaining deep visibility into the browser-based attack surface, even with a robust security stack.\u003C/p>\u003Cp>\"I threat-modeled every single thing that we could think of that could possibly go wrong, and identity was high on that list,\" said Alex Crusco, Staff Security Engineer at Cribl. \"There are many ways attackers can manipulate users and gain access without triggering traditional alerts.\"\u003C/p>\u003Cp>The team needed a solution that wouldn't slow the business down but could deliver concrete high-confidence data about identity hygiene and risky app behavior. \"Without the right data, this problem was just a theory,\" said Aaron Thummel, Senior Security Analyst. \"Push gave us the data to quantify the risk and drive real change. It's hard to get a security initiative off the ground without solid numbers to back it up.\"\u003C/p>",[14558],{"quote":14559,"quoteBy":14497},"\u003Cp>Without the right data, this problem was just a theory. Push gave us the data to quantify the risk and drive real change. It's hard to get a security initiative off the ground without solid numbers to back it up.\u003C/p>\n",{"large":14561},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":323,"meta":14563,"component":14565,"responsiveStyles":14573},{"previousId":14564},"builder-99a5a96c9ce04e3483b9e8156a81006c",{"name":305,"tag":306,"options":14566,"isRSC":62},{"theme":326,"sections":14567,"title":333,"diagonalVariant":334},[14568],{"text":14569,"quotes":14570},"\u003Ch3>\u003Cstrong>Visibility limitations beyond the IdP\u003C/strong>\u003C/h3>\u003Cp>Before Push, the security team relied on correlating data from their IdP and other tools to investigate potential threats. This process was time-consuming, and it often lacked the browser-level context needed to trace incidents back to their source.\u003C/p>\u003Cp>\"I didn't have visibility into the browser before, so there was no way for me to determine what actually happened or how it started,\" explained Alex. \"It's more like backwards tracing, rather than, ‘How did it happen?’\"\u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Ch3>\u003Cstrong>Validating hidden risks\u003C/strong>\u003C/h3>\u003Cp>Those limitations came into sharper focus when Cribl deployed Push. Early on, the team identified a misconfigured login page on a core business application that was still accessible, and in use.\u003C/p>\u003Cp>\"We found that a significant number of users were still logging in with just their username and password, bypassing SSO entirely,\" recalled Alex. \"Our team's diligence discovered this issue and, with the power of Push, addressed this hidden, previously unquantifiable risk.\"\u003C/p>\u003Cp>Equipped with this new telemetry, the team proactively reviewed login activity across other high-use apps. They discovered a similar misconfiguration on another widely used business platform, where password reuse and insecure login methods posed added risk. These discoveries confirmed what the team had long suspected, that some risks are only visible from inside the browser.\u003C/p>",[14571],{"quote":14572,"quoteBy":14497},"We found that a significant number of users were still logging in with just their username and password, bypassing SSO entirely. With the power of Push, we addressed this hidden, previously unquantifiable risk.",{"large":14574},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":340,"meta":14576,"component":14578,"responsiveStyles":14589},{"previousId":14577},"builder-7de0aae035ff4029ab392358a324e878",{"name":305,"tag":306,"options":14579,"isRSC":62},{"theme":308,"sections":14580,"title":352,"diagonalVariant":353},[14581,14586],{"text":14582,"quotes":14583},"\u003Cp>Cribl chose Push to build on their existing security strategy and extend protection into the browser, the control point where users interact with critical apps every day. Push’s browser extension gave the team real-time visibility into SaaS usage, authentication methods, and identity posture. Rather than introducing new overhead, Push enhanced the workflows the team already had in place.\u003C/p>\u003Ch3>\u003Cstrong>From manual triage to automated remediation \u003C/strong>\u003C/h3>\u003Cp>Initially, Cribl analysts manually triaged Push alerts. But as they operationalized the data, they began building their own automations, starting with a custom Slack bot that notifies employees about issues like password reuse, in line with Cribl’s culture of positive, proactive security engagement.\u003C/p>\u003Cp>This shift from manual investigation to structured automation saved the team hours of effort per incident.\u003C/p>\u003Cp>“Now we can focus our efforts elsewhere,” said Aaron. \u003C/p>\u003Cp>Push’s structured telemetry also gave the team the confidence to work cross-functionally, partnering with IT to deprecate risky login paths and fully enforce SSO where needed.\u003C/p>\u003Cp>Using Push, Cribl confirmed and remediated unmonitored login paths across critical business apps, risks that had previously gone unquantified.\u003C/p>",[14584],{"quote":14585,"quoteBy":14497},"The shift from manual investigation to structured automation saved the team hours of effort per incident.",{"text":14587,"quotes":14588},"\u003Ch3>\u003Cstrong>Integration spotlight\u003C/strong>\u003C/h3>\u003Cp>As the Cribl team operationalized Push’s browser-native telemetry, they found it incredibly useful for detection, enrichment, and investigation. So useful, in fact, that they built official Cribl packs to help other teams get the same benefits, without needing to write custom code.\u003C/p>\u003Cp>The result:\u003C/p>\u003Cul>\u003Cli>\u003Ca href=\"https://packs.cribl.io/packs/cc-push-security\" rel=\"noopener noreferrer\" target=\"_blank\">Cribl Stream Pack for Push\u003C/a>: Easily ingest, normalize, and route Push telemetry to your SIEM, SOAR, or data lake—while reducing event volume and cost.\u003C/li>\u003Cli>\u003Ca href=\"https://packs.cribl.io/packs/cc-search-push-security\" rel=\"noopener noreferrer\" target=\"_blank\">Cribl Search Pack for Push\u003C/a>: Pre-built dashboards for Push detections, posture, and browser activity, enabling faster investigation and historical analysis.\u003C/li>\u003C/ul>\u003Cp>Both are available via the \u003Ca href=\"https://packs.cribl.io/\" rel=\"noopener noreferrer\" target=\"_blank\">Cribl Dispensary\u003C/a>, and designed to help security teams operationalize browser-based detection and response with minimal effort.\u003C/p>\u003Cp>This native integration is part of Push’s broader strategy to work with the tools security teams already use, and get powerful telemetry into their hands, fast.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>",[],{"large":14590},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69,"marginTop":356},{"@type":47,"@version":48,"id":360,"meta":14592,"component":14594,"responsiveStyles":14596},{"previousId":14593},"builder-2d869b1b36854de8b473c370c7afee8d",{"name":362,"tag":363,"options":14595,"isRSC":62},{},{"large":14597},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"id":14599,"@type":47,"tagName":75,"properties":14600,"responsiveStyles":14601},"builder-pixel-1olcegmol7f",{"src":77,"aria-hidden":78,"alt":29,"role":79,"width":68,"height":68},{"large":14602},{"height":68,"width":68,"display":82,"opacity":68,"overflow":83,"pointerEvents":84},{"deviceSize":86,"location":14604},{"path":29,"query":14605},{},{},1764673427456,1763395528235,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fbca4c4ff8c1a421fa199a6bf3dee17af",[],{"winningTest":62,"originalContentId":14612,"hasLinks":6,"lastPreviewUrl":14613,"kind":385,"breakpoints":14614,"hasAutosaves":34,"hasErrors":6},"ceec2869ab5c44b9ac568ee6e09b5e5e","https://app.stg.pushsecurity.com/customer-stories/cribl?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CcreateProjects&builder.user.role.name=Designer&builder.user.role.id=creator&builder.cachebust=true&builder.preview=customer-stories&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.customer-stories=08b65992e49d4c2c9db231662879f089&builder.overrides.08b65992e49d4c2c9db231662879f089=08b65992e49d4c2c9db231662879f089&builder.options.includeRefs=true&builder.options.enrich=true&builder.options.locale=Default",{"xsmall":31,"small":32,"medium":33},{"createdDate":14616,"id":14617,"name":14618,"modelId":222,"published":13,"query":14619,"data":14621,"variations":14763,"lastUpdated":14764,"firstPublished":14765,"testRatio":23,"screenshot":14766,"createdBy":24,"lastUpdatedBy":25,"folders":14767,"meta":14768,"rev":14494},1759928101183,"9d3e1db8d71b44c097df0cecc0fca167","Inductive Automation",[14620],{"@type":225,"property":226,"operator":227,"value":110},{"themeId":6,"seoDescription":14622,"indexPageDescription":234,"resourcesPageDescription":14622,"description":14622,"title":237,"logo":14623,"resourcesPageTitle":14624,"indexPageDesciption":234,"seoTitle":14624,"resourcesPageImage":14625,"blocks":14626,"url":110,"state":14760},"Why Inductive Automation chose Push Security. ","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fdab2eea9bfa746bebd4ac559e93b532d","Customer Story: Inductive Automation","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fe48cc549e10f4ef3811a6fd0dcb88957",[14627,14636,14665,14677,14691,14706,14716,14747,14755],{"@type":47,"@version":48,"id":14628,"meta":14629,"component":14631,"responsiveStyles":14634},"builder-ce3b478ca3d84bab908cb14ad7c1f4d1",{"previousId":14630},"builder-9116cb4244a0433a8a8a04902f1a247d",{"name":246,"tag":247,"options":14632,"isRSC":62},{"heroTitle":14624,"heroDescription":14633,"glowColor":250,"heroLogo":14623},"\u003Cp>Inductive Automation, a software company for high-tech manufacturing, needed a way to reduce the security risks associated with unmanaged cloud identities, apps, and integrations.\u003C/p>",{"large":14635},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14637,"meta":14638,"component":14640,"responsiveStyles":14663},"builder-c6d6db7d467c40708cba33dea7daf2be",{"previousId":14639},"builder-48915b18a7ed4fc9a21ec0b2f7ffea58",{"name":258,"tag":259,"options":14641,"isRSC":62},{"summaryTitle":14642,"summaryDescription":14643,"summaryStat1":14644,"summaryStat2":14646,"summaryStat3":14650,"summaryStat4":14653,"stats":14658},"About Inductive Automation","\u003Cp>Inductive Automation, a software company for high-tech manufacturing, needed a way to reduce the security risks associated with unmanaged cloud identities, apps, and integrations.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Cp>\u003Cstrong style=\"color: rgb(255, 72, 36);\">Why Inductive Automation chose Push:\u003C/strong>\u003C/p>\u003Cul>\u003Cli>Push helped Inductive find and secure shadow accounts and apps with high-fidelity data that didn’t interfere with employees’ productivity.\u003C/li>\u003Cli>Inductive was able to consolidate tools with Push and close a gap in their identity security program, all while improving their return on investment in SSO and their password manager.\u003C/li>\u003Cli>Inductive got complete visibility across their SaaS identities, apps, and integrations, allowing them to consolidate tools and stop chasing false positives from previous solutions.\u003C/li>\u003C/ul>",{"icon":275,"value":14645,"extraValueText":269,"helpText":266,"gap":62},360,{"icon":14647,"value":48,"extraValueText":29,"gap":14648,"helpText":14649},"faDollar",3,"Tools consolidated",{"icon":268,"value":280,"extraValueText":14651,"helpText":14652,"gap":23},"mins","Time to deploy",{"icon":14654,"value":14655,"extraValueText":14656,"helpText":14657},"faUserChart",99,"%","Uptake on deployment",[14659,14660,14661,14662],{"formatValue":34,"icon":275,"value":14645,"gap":23,"extraValueText":269,"helpText":266},{"formatValue":34,"icon":14647,"value":48,"gap":62,"extraValueText":29,"helpText":14649},{"formatValue":34,"icon":268,"value":280,"gap":23,"extraValueText":14651,"helpText":14652},{"formatValue":34,"icon":14654,"value":14655,"gap":23,"extraValueText":14656,"helpText":14657},{"large":14664},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14666,"meta":14667,"component":14669,"responsiveStyles":14675},"builder-0801e2e4d31d4ba18490d1d2c4798ebb",{"previousId":14668},"builder-da89546ce7e349818e03a7da8bc8a778",{"name":289,"tag":290,"options":14670,"isRSC":62},{"quoteCarousel":14671},[14672],{"author":121,"jobTitle":14673,"quote":14674},"Chief Information Security Officer, Inductive Automation","\u003Cp>With Push, we loved the UI/UX and we loved the founders’ vision. We got a tool that was better quality and we reduced another vendor, so that’s always a win.\u003C/p>",{"large":14676},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14678,"meta":14679,"component":14681,"responsiveStyles":14689},"builder-8f8905bcdee541acb28b223c64cff2bb",{"previousId":14680},"builder-ed504b3dd2c2473e9f977a455c82f267",{"name":305,"tag":306,"options":14682,"isRSC":62},{"theme":308,"sections":14683,"title":316,"diagonalVariant":317},[14684],{"text":14685,"quotes":14686},"\u003Cp>As the software partner to critical industries in 100 countries, including nuclear power, water systems, pharmaceutical manufacturing and data centers, Inductive Automation deeply values security. \u003C/p>\u003Cp>Over the past decade, Inductive has built a security team that prioritizes nimble solutions to complex problems while supporting a business that has scaled rapidly, with 30 percent growth year-over-year for multiple years. Inductive’s workforce is also highly skilled, with about 70 percent of the company in technical roles.\u003C/p>\u003Cp>To secure identities and apps in the cloud, Inductive needed an approach that would not disrupt their velocity while also closing the security gaps for a long tail of powerful apps and integrations.\u003C/p>",[14687],{"quote":14688,"quoteBy":14618},"An issue with our software could cause downstream effects that have massive ramifications.",{"large":14690},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14692,"meta":14693,"component":14695,"responsiveStyles":14704},"builder-ddb6030401ab4311b8ce1bc5abdde4fc",{"previousId":14694},"builder-6db6a18a48334bb6b91dbd6c5e19342d",{"name":305,"tag":306,"options":14696,"isRSC":62},{"theme":326,"sections":14697,"title":14703,"diagonalVariant":334},[14698],{"text":14699,"quotes":14700},"\u003Cp>With a strong strategy around centralizing identity via SSO, Inductive’s security team were paying close attention to the explosion of third-party apps and integrations that could access critical business systems and data while flying under the radar.\u003C/p>\u003Cp>I was always worried about the gaps, like what about the apps that don’t have SSO or don’t have MFA?” Jason said. “Everything, every major breach you read of, goes back to identity in some way. So protecting those identities is just like a foundational component of a modern security program. You can’t protect what you don’t know. So if you have people spinning up apps with weak passwords and no MFA, and you don’t even know that app exists. I mean, it’s just a massive potential issue for you.\"\u003C/p>\u003Cp>With Inductive’s culture of experimentation and innovation, the security team embraces a “guardrails, not gates” approach. So legacy cloud access security broker (CASB) solutions were a poor fit for multiple reasons.\u003C/p>\u003Cp>“So we really wanted to wrap our heads around what people were doing in a way that wasn’t heavy and draconian,” Jason said. “We didn’t want to proxy all traffic and decrypt it all and break sessions. And, you know, weaken some of the fundamental security of internet browsing so we could get that visibility and then cause performance impacts as a result.”\u003C/p>\u003Cp>Other market solutions were so niche, they only tackled part of the problem, and for a while, Waits’ team used two tools in order to manage OAuth apps and to find and secure shadow SaaS and accounts.\u003C/p>\u003Cp>But the solutions didn’t “spark joy,” he said. They relied on data sources like email that were prone to false positives — what Jason calls “chasing ghosts.”\u003C/p>\u003Cp>They started looking for a modern solution that could validate their security controls across a portfolio of managed apps while finding and fixing issues on the unmanaged ones, too.\u003C/p>\u003Cp>“We were trying to look at the lightest way we could get that visibility, and wrap our heads around this problem in a way that's very user-friendly,” he said. \u003C/p>",[14701],{"quote":14702,"quoteBy":14618},"\u003Cp>We didn’t want to proxy all traffic and decrypt it all and break sessions. And, you know, weaken some of the fundamental security of internet browsing so we could get that visibility and then cause performance impacts as a result.\u003C/p>","Technical challenge",{"large":14705},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14707,"meta":14708,"component":14710,"responsiveStyles":14714},"builder-9599d92cf81b4ecc944727ae0fa96b4e",{"previousId":14709},"builder-717c8aa9eea04fdd9da96d5c24cd1e64",{"name":14711,"tag":14711,"options":14712,"isRSC":62},"PageDescription",{"description":14713},"\u003Cp>Modern phishing has changed a lot in the past decade or so. MFA-bypassing Attacker-in-the-Middle (AitM) kits are table stakes — anyone can pick up a copy of Evilginx and immediately blow past most email and network security solutions on the market.  \u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Cp>But the most sophisticated attacks — the ones that usually hit the headlines in the form of major breaches — are doing much more than this. The latest generation of fully customized AitM phishing kits are dynamically obfuscating the code that loads the web page, implementing bot protection through custom CAPTCHA, and using runtime anti-analysis features, making them increasingly difficult to detect by the tools most enterprises are using to combat the problem. \u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Cp>\u003Cstrong style=\"color: rgb(249, 173, 44);\">Read our analysis of how modern phishing tools and techniques have changed the game — and what security teams can do to level the playing field.  \u003C/strong>\u003C/p>",{"large":14715},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14717,"meta":14718,"component":14720,"responsiveStyles":14745},"builder-e702b1bf1c7248a19f9edb3b157481c2",{"previousId":14719},"builder-ffdb35908521490b84d21cd36c87f29d",{"name":305,"tag":306,"options":14721,"isRSC":62},{"theme":308,"sections":14722,"title":352,"diagonalVariant":353},[14723,14728,14731,14734,14737,14740],{"text":14724,"quotes":14725},"\u003Cp>Inductive chose Push after a competitive vendor review. With Push, the Inductive team was able to get rid of two other security tools, saving budget and time. With high-fidelity data from Push’s browser activity detection approach, they now confidently rely on Push as the source of truth for their cloud app portfolio.\u003C/p>\u003Cp>“We’re not mandated to do a bunch of bogus compliance stuff. So we don’t buy tools to check boxes. Everything we do, we do it to solve a problem,” Jason said. “But the whole ‘Does it spark joy?’ is my benchmark. So with Push, we loved the UI/UX and we loved the founders’ vision. We got a tool that was better quality and we reduced another vendor, so that’s always a win.”\u003C/p>",[14726],{"quote":14727,"quoteBy":14618},"We got a tool that was better quality and we reduced another vendor, so that’s always a win.",{"text":14729,"quotes":14730},"\u003Ch3>Broad visibility across apps and OAuth integrations\u003C/h3>\u003Cp>By providing broader visibility with more accurate data across cloud identity, third-party cloud apps, and OAuth integrations, Push helps Inductive get a complete picture of their ecosystem. \u003C/p>\u003Cp>Push helped Inductive find and secure apps used only in pockets of the organization and get them managed centrally.\u003C/p>",[],{"text":14732,"quotes":14733},"\u003Ch3>Automated remediation\u003C/h3>\u003Cp>“Automation is in our name,” said Jason, so Push’s automated remediation workflows were a huge draw. \u003C/p>\u003Cp>Push’s use of a Slackbot to directly engage end-users to help them make simple but meaningful security improvements was a perfect fit for Inductive’s culture. This approach offloads Inductive’s security team while also being more effective: “It’s not someone from the security team reaching out and saying, ‘Hey, what are you doing?!’ It feels less accusatory if it’s a Slackbot,” Jason said. It’s also a much more scalable solution for their 4-person team.\u003C/p>",[],{"text":14735,"quotes":14736},"\u003Ch3>Easy deployment\u003C/h3>\u003Cp>With Inductive’s managed Chrome browser program, they were able to deploy the Push browser extension to 99 percent of their devices in 5 minutes in the middle of a regular workday. The deployment was so seamless that they received no help desk requests, Jason said.\u003C/p>",[],{"text":14738,"quotes":14739},"\u003Ch3>Return on investment\u003C/h3>\u003Cp>Push also helps Inductive improve their return on investment in a recent migration to a new enterprise password manager and an ongoing emphasis on centrally managing apps via SSO. They use Push’s detection of shadow apps and accounts, as well as its password manager detection capabilities, to close the gaps they find.\u003C/p>",[],{"text":14741,"quotes":14742},"\u003Ch3>A foundational source of truth\u003C/h3>\u003Cp>Push has become a trusted source of truth for Inductive’s cloud portfolio, providing the foundation for their vendor risk management program.\u003C/p>\u003Cp>“We have a cybersecurity strategy we’re implementing company-wide with a big identity component. So being able to validate that is just super critical. Otherwise it’s all a paper policy,” Jason said. “We don’t like to say we’re going to do something. We like to do it and validate that we are doing it. It only takes one little incident, one little crack, so staying on top of this is just really important for us.”\u003C/p>",[14743],{"quote":14744,"quoteBy":14618},"We have a cybersecurity strategy we’re implementing company-wide with a big identity component. So being able to validate that is just super critical. Otherwise it’s all a paper policy.",{"large":14746},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14748,"meta":14749,"component":14751,"responsiveStyles":14753},"builder-1d0bbf6cc53e4641b5fee22e518bf8e9",{"previousId":14750},"builder-cb724ebb498e4d0c811fad38906e9ab7",{"name":362,"tag":363,"options":14752,"isRSC":62},{},{"large":14754},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"id":14756,"@type":47,"tagName":75,"properties":14757,"responsiveStyles":14758},"builder-pixel-2jsymg0gps4",{"src":77,"aria-hidden":78,"alt":29,"role":79,"width":68,"height":68},{"large":14759},{"height":68,"width":68,"display":82,"opacity":68,"overflow":83,"pointerEvents":84},{"deviceSize":86,"location":14761},{"path":29,"query":14762},{},{},1764673408653,1760696983767,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Ffd740e1fb14b4218a5c28b23f3d328d3",[],{"hasLinks":6,"lastPreviewUrl":14769,"originalContentId":14612,"breakpoints":14770,"kind":385,"winningTest":62,"hasAutosaves":34},"https://app.stg.pushsecurity.com/customer-stories/inductive-automation?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CcreateProjects&builder.user.role.name=Designer&builder.user.role.id=creator&builder.cachebust=true&builder.preview=customer-stories&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.customer-stories=9d3e1db8d71b44c097df0cecc0fca167&builder.overrides.9d3e1db8d71b44c097df0cecc0fca167=9d3e1db8d71b44c097df0cecc0fca167&builder.options.includeRefs=true&builder.options.enrich=true&builder.options.locale=Default",{"xsmall":31,"small":32,"medium":33},{"createdDate":14772,"id":14773,"name":14774,"modelId":222,"published":13,"query":14775,"data":14778,"variations":14899,"lastUpdated":14900,"firstPublished":14901,"testRatio":23,"screenshot":14902,"createdBy":24,"lastUpdatedBy":25,"folders":14903,"meta":14904,"rev":14494},1754571334372,"3d9a9922aa394c27b2847b3fd7101841","Upvest",[14776],{"@type":225,"property":226,"operator":227,"value":14777},"/customer-stories/upvest",{"seoTitle":14779,"seoDescription":14780,"indexPageDescription":14781,"title":14782,"logo":14783,"themeId":6,"resourcesPageDescription":14780,"indexPageDesciption":14784,"description":14780,"resourcesPageTitle":14779,"resourcesPageImage":14785,"blocks":14786,"url":14777,"state":14896},"Customer Story: Upvest","Why Upvest chose Push Security.","Upvest partnered with Push to achieve a scalable and  user-centric way to secure SaaS apps and reduce third-party risks across a complex ecosystem of integrations  and apps.","upvest","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F07979505bdc841c3b807c4355147a770","Upvest partnered with  Push to achieve a scalable and  user-centric way to secure SaaS apps and reduce third-party risks across a complex ecosystem of integrations  and apps.","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F1e030d40870f4ac0917f0cf7c166a441",[14787,14793,14819,14829,14840,14859,14886,14891],{"@type":47,"@version":48,"id":14630,"component":14788,"responsiveStyles":14791},{"name":246,"tag":247,"options":14789,"isRSC":62},{"heroTitle":14779,"heroDescription":14790,"heroLogo":14783,"glowColor":250},"\u003Cp>Upvest, a cloud-native German fintech, needed a scalable and user-centric way to secure SaaS apps and reduce third-party risks from a complex ecosystem of OAuth integrations.\u003C/p>",{"large":14792},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14639,"component":14794,"responsiveStyles":14817},{"name":258,"tag":259,"options":14795,"isRSC":62},{"summaryTitle":14796,"summaryDescription":14797,"summaryStat1":14798,"summaryStat2":14800,"summaryStat3":14804,"summaryStat4":14808,"stats":14810},"About Upvest","\u003Cp>Upvest is a financial technology startup that provides Investment API infrastructure to financial organizations and neobanks. Upvest is headquartered in Berlin, Germany, and was founded in 2017.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Cp>\u003Cstrong style=\"color: rgb(255, 72, 36);\">Why Upvest chose Push:\u003C/strong>\u003C/p>\u003Cul>\u003Cli>Upvest, a fintech company that provides investment infrastructure to financial organizations, needed a way to secure the cloud identities, apps, and third-party integrations that make up their core infrastructure as a SaaS-first organization.\u003C/li>\u003Cli>Push helped Upvest get high-fidelity data on their SaaS estate while engaging with users directly in the browser to guide their security choices.\u003C/li>\u003Cli>Upvest now has a unique source of telemetry to use for automating the management of SaaS and identifying security issues.\u003C/li>\u003C/ul>",{"icon":275,"value":14799,"extraValueText":269,"helpText":266,"gap":62},180,{"icon":14801,"value":23,"extraValueText":14802,"gap":14648,"helpText":14803},"faClock","hour","Proof of concept setup",{"icon":14805,"value":14806,"extraValueText":29,"helpText":14807},"faEarth",2017,"Founded in Berlin, Germany",{"icon":264,"value":14648,"extraValueText":269,"helpText":14809},"Regulations complied with",[14811,14814,14815],{"formatValue":6,"icon":14530,"value":14812,"gap":277,"extraValueText":29,"helpText":14813},2022,"Protected by Push since 2022",{"formatValue":34,"icon":275,"value":14799,"gap":277,"extraValueText":269,"helpText":266},{"formatValue":34,"icon":14801,"value":23,"gap":14816,"extraValueText":14802,"helpText":14803},4,{"large":14818},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14668,"component":14820,"responsiveStyles":14827},{"name":289,"tag":290,"options":14821,"isRSC":62},{"quoteCarousel":14822},[14823],{"author":14824,"jobTitle":14825,"quote":14826},"Sebastien Jeanquier","Chief Security Officer","\u003Cp>Being a regulated entity, we need to have considered everything from a regulatory standpoint, a compliance standpoint, a pure security standpoint, and a data protection standpoint... this was going to represent an almost existential problem for us in the future if we didn’t tackle it now.\u003C/p>",{"large":14828},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14680,"component":14830,"responsiveStyles":14838},{"name":305,"tag":306,"options":14831,"isRSC":62},{"theme":308,"sections":14832,"title":316,"diagonalVariant":317},[14833],{"text":14834,"quotes":14835},"\u003Cp>Operating in the highly regulated German financial services environment, Upvest has carefully built a culture of security throughout its workforce.\u003C/p>\u003Cp>“Security is all of our responsibility and we democratize it to every department in the company,” explains Sebastien Jeanquier, chief security officer at Upvest.\u003C/p>\u003Cp>When Jeanquier joined the financial technology startup five years ago with a background in security consulting and penetration testing, he had a rare opportunity to build a security program from the ground up based on what he’d learned from years of red teaming.\u003C/p>\u003Cp>“I really wanted to move somewhere where I was going to be able to build as greenfield as possible to take what I saw as the best practices from every security domain,” he says.\u003C/p>\u003Cp>As a cloud-native company, Upvest must demonstrate security mastery of its entire cloud ecosystem in order to meet internal requirements and regulatory standards. In seeking out a tool to secure cloud apps and identities, Upvest needed a solution that would meet its high standards and fit its user-centric culture.\u003C/p>",[14836],{"quote":14837,"quoteBy":14774},"Security is all of our responsibility and we democratize it to every department in the company.",{"large":14839},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14694,"component":14841,"responsiveStyles":14857},{"name":305,"tag":306,"options":14842,"isRSC":62},{"theme":326,"sections":14843,"title":14703},[14844,14849,14854],{"text":14845,"quotes":14846},"\u003Ch3>\u003Cstrong>Meeting a high bar for security and regulatory compliance\u003C/strong>\u003C/h3>\u003Cp>Operating in Germany and the EU, Upvest holds multiple banking licenses with BaFin, Germany’s financial regulator, and is bound to Germany’s strict privacy standards, in addition to GDPR, so finding technical solutions that support these regulations is paramount.\u003C/p>\u003Cp>“Our original product was in the blockchain space. We’ve since pivoted into the more traditional finance space. But if anything, our security requirements and our compliance and regulatory controls actually have only gone up,” Jeanquier explains.\u003C/p>\u003Cp>For Upvest’s security team, a top-of-mind goal was how to get their arms around the full portfolio of cloud identities, SaaS apps, and OAuth integrations that represented core business assets.\u003C/p>\u003Cp>“Being a regulated entity, it means that we need to be able to demonstrate the fact that we have considered everything from a regulatory standpoint, a compliance standpoint, a pure security standpoint, and a data protection standpoint,” says Jeanquier. “And so shadow IT is something that we were keen to get ahead of. We’re SaaS native. We don’t have any other applications internally. And so this was going to represent an almost existential problem for us in the future if we didn’t tackle it now.”\u003C/p>",[14847],{"quote":14848,"quoteBy":14774},"We’re SaaS native. We don’t have any other applications internally. And so this was going to represent an almost existential problem for us in the future if we didn’t tackle it now.",{"text":14850,"quotes":14851},"\u003Ch3>\u003Cstrong>Challenge of managing third-party integrations\u003C/strong>\u003C/h3>\u003Cp>The Upvest team was particularly concerned about the potential for a fast-growing tangle of OAuth integrations. They had been looking for solutions that would allow them to quickly see and take action on these third-party app integrations.\u003C/p>\u003Cp>“Any user can go to pretty much any service and grant it access into your environment,” Jeanquier says. “And unless you’re keeping tabs on it, it’s very easy for some really small application run by three people somewhere to just request excessive access. It's that supply chain risk that could end up resulting in a lot more compromises than we would otherwise see if we were being attacked directly.”\u003C/p>\u003Cp>The Upvest security team was also focused on finding and securing any non-SSO identities in their environment, which could pose a significant risk if an offboarded employee retained access to business systems or data.\u003C/p>\u003Cp>The team quickly found that existing tools such as Google Workspace weren’t purpose-built for the kind of context and scalability they needed in order to make efficient and informed security decisions about their SaaS accounts and third-party integrations.\u003C/p>\u003Cp>“We could have dug down and written some custom tooling to try and identify what's being used by whom, and doing a regular batch job of trying to identify what they're doing,” says Jeanquier. “But I didn’t really see any good solution for tackling this at scale.”\u003C/p>",[14852],{"quote":14853,"quoteBy":14774},"Unless you’re keeping tabs on it, it’s very easy for some really small application run by three people somewhere to just request excessive access. It's that supply chain risk that could end up resulting in a lot more compromises.",{"text":14855,"quotes":14856},"\u003Ch3>\u003Cstrong>Desire to preserve a positive security culture\u003C/strong>\u003C/h3>\u003Cp>The team also needed a solution that would fit their company culture. They didn’t want to limit the possibilities for employee innovation by outright blocking access to apps and integrations.\u003C/p>\u003Cp>But they needed to be able to monitor for excessively permissioned, untrustworthy apps and remove them — while communicating security best practices to employees.\u003C/p>\u003Cp>“It’s really about trying to engender as much as possible that culture of awareness,” Jeanquier says. “Awareness not just for our end-users, but also for us as a team across both security and IT, and trying to encourage as much as possible our processes to be followed.”\u003C/p>",[],{"large":14858},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14719,"component":14860,"responsiveStyles":14884},{"name":305,"tag":306,"options":14861,"isRSC":62},{"theme":308,"sections":14862,"title":352},[14863,14866,14871,14874,14879],{"text":14864,"quotes":14865},"\u003Cp>Upvest chose Push because the product provided a unique browser agent-based approach to solving the problem of shadow SaaS and identities, while also aligning strongly with Upvest’s security culture.\u003C/p>\u003Cp>As an early customer, Jeanquier also embraced the opportunity to provide input on product direction and use cases.\u003C/p>\u003Cp>“We very much shared the vision of what it is we were trying to tackle in terms of a security challenge in the modern-day SaaS world,” he says.\u003C/p>",[],{"text":14867,"quotes":14868},"\u003Ch3>\u003Cstrong>Meeting employees where they work\u003C/strong>\u003C/h3>\u003Cp>With Push, the Upvest security team was able to maintain their user-centric approach to security by getting the rich contextual information they needed on the apps, accounts, and third-party OAuth integrations being used across their workforce — without having to resort to outright blocking.\u003C/p>\u003Cp>Push’s guardrails features, including the ability to communicate security policy directly with employees using that appear in the browser, were a perfect fit for Upvest. These messages help reinforce security policy and prompt secure behavior right at the point of access: The app signup or login screens.\u003C/p>\u003Cp>“You can write as much policy as you want, but ultimately users are going to jump over the lowest hurdle,” Jeanquier says. “The Push browser extension gives you a seat on the user's side where you can start to enforce some of these best practices.”\u003C/p>",[14869],{"quote":14870,"quoteBy":14774},"You can write as much policy as you want, but ultimately users are going to jump over the lowest hurdle. Push gives you a seat on the user's side where you can start to enforce some of these best practices.",{"text":14872,"quotes":14873},"\u003Ch3>\u003Cstrong>A scalable way to meet regulatory requirements\u003C/strong>\u003C/h3>\u003Cp>To balance Upvest’s user-centric security culture with their stringent regulatory requirements, they also needed a scalable way to reliably identify and review every cloud app used across the business — without getting in employees’ way.\u003C/p>\u003Cp>Push provides them with insights into not just which apps and integrations are being used, but also the specific details about which users, which accounts, which login methods, and how recently a login was observed. This context allows Upvest to quickly act on newly adopted apps that aren’t approved for use, and to have a complete picture of their estate when performing app reviews to meet compliance standards.\u003C/p>\u003Cp>“Because of the regulatory landscape, it won’t fly for you to suddenly decide that you want to use a specific file-sharing app for something. And that you just go and log in and start using that for company data,” Jeanquier says. “The regulatory requirements mandate that we have assessed every app from the perspective of data protection, confidentiality requirements, assessed the vendor themselves, and so on.”\u003C/p>",[],{"text":14875,"quotes":14876},"\u003Ch3>\u003Cstrong>Shedding light on shadow IT and non-SSO identities\u003C/strong>\u003C/h3>\u003Cp>Push’s use of a browser agent was also a key differentiator for Upvest because the approach provides a high-fidelity source of information.\u003C/p>\u003Cp>“From my perspective, I think a lot of value comes from the browser extension. There is a lot that you can do both in terms of passive guardrailing as well as active education that can only happen at the browser level.”\u003C/p>\u003Cp>Upvest was able to monitor employee SaaS account creation and logins in real time and identify apps in use across the business that were not approved or had not been reviewed by the security team. The Push browser agent also supplied the login methods used to access these accounts, so that the Upvest team could track their SSO coverage and identify non-SSO apps. This was information they otherwise had no way of collecting.\u003C/p>",[14877],{"quote":14878,"quoteBy":14774},"Because of the regulatory landscape, it won’t fly for you to suddenly decide that you want to use a specific file-sharing app for something.",{"text":14880,"quotes":14881},"\u003Ch3>\u003Cstrong>Essential building block for security operations\u003C/strong>\u003C/h3>\u003Cp>With a focus on agility and efficiency, the Upvest security team also sees the telemetry provided by Push as a valuable input to their security operations and automation efforts.\u003C/p>\u003Cp>They are currently exploring how to use Push’s REST API and webhooks to build detections for security incidents and to automate basic SaaS and account management tasks.\u003C/p>\u003Cp>“Push is uniquely positioned to be able to expose certain actions and practices to us as a team which could then allow us to say, okay on the basis of this particular type of action which we consider to be a very strong signal, let us know and we’ll do something off the back of that using some automated workflows,” explains Jeanquier.\u003C/p>\u003Cp>“This kind of automated security orchestration is the way forward with regards to orchestrating very specific and rapid responses to very clear-cut security signals.”\u003C/p>",[14882],{"quote":14883,"quoteBy":14774},"This kind of automated security orchestration is the way forward with regards to orchestrating very specific and rapid responses to very clear-cut security signals.",{"large":14885},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14750,"component":14887,"responsiveStyles":14889},{"name":362,"tag":363,"options":14888,"isRSC":62},{},{"large":14890},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"id":14892,"@type":47,"tagName":75,"properties":14893,"responsiveStyles":14894},"builder-pixel-r5b0bp9l2v",{"src":77,"aria-hidden":78,"alt":29,"role":79,"width":68,"height":68},{"large":14895},{"height":68,"width":68,"display":82,"opacity":68,"overflow":83,"pointerEvents":84},{"deviceSize":86,"location":14897},{"path":29,"query":14898},{},{},1764673376391,1754571937914,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F17710b7416ff49c59d08560c9aabb2c3",[],{"lastPreviewUrl":14905,"breakpoints":14906,"kind":385,"hasLinks":6,"hasAutosaves":34},"https://app.stg.pushsecurity.com/customer-stories/upvest?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CcreateProjects&builder.user.role.name=Designer&builder.user.role.id=creator&builder.cachebust=true&builder.preview=customer-stories&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.customer-stories=3d9a9922aa394c27b2847b3fd7101841&builder.overrides.3d9a9922aa394c27b2847b3fd7101841=3d9a9922aa394c27b2847b3fd7101841&builder.options.includeRefs=true&builder.options.enrich=true&builder.options.locale=Default",{"xsmall":31,"small":32,"medium":33},{"createdDate":14908,"id":14612,"name":14909,"modelId":222,"published":13,"query":14910,"data":14913,"variations":15013,"lastUpdated":15014,"firstPublished":15015,"testRatio":23,"screenshot":15016,"createdBy":24,"lastUpdatedBy":25,"folders":15017,"meta":15018,"rev":14494},1749126907543,"Convex",[14911],{"@type":225,"property":226,"operator":227,"value":14912},"/customer-stories/convex",{"themeId":6,"indexPageDescription":14914,"resourcesPageDescription":14915,"seoTitle":14916,"seoDescription":14915,"logo":14917,"indexPageDesciption":234,"description":14915,"resourcesPageTitle":14916,"title":237,"resourcesPageImage":14918,"blocks":14919,"url":14912,"state":15010},"Convex Insurance chose Push to close the gap left by traditional CASB solutions, enabling them to enhance their identity security and gain control of shadow SaaS at the same time.","Why Convex Insurance chose Push Security. ","Customer Story: Convex Insurance","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F25b3ec2a3c714329a945a4701bf15bae","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F46b15e4e61394b28963f940a70f7259c",[14920,14926,14945,14955,14967,14978,15000,15005],{"@type":47,"@version":48,"id":14510,"component":14921,"responsiveStyles":14924},{"name":246,"tag":247,"options":14922,"isRSC":62},{"heroTitle":14916,"heroDescription":14923,"heroLogo":14917,"glowColor":250},"\u003Cp>Convex Insurance chose Push to close the gap left by traditional CASB solutions, enabling them to enhance their identity security and gain control of shadow SaaS at the same time.\u003C/p>",{"large":14925},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14519,"component":14927,"responsiveStyles":14943},{"name":258,"tag":259,"options":14928,"isRSC":62},{"summaryTitle":14929,"summaryDescription":14930,"summaryStat1":14931,"summaryStat2":14934,"summaryStat3":14935,"summaryStat4":14937,"stats":14939},"About Convex Insurance","\u003Cp>Convex Insurance is an international specialty insurer founded in 2019 and operating in Bermuda, London, and Luxembourg. Convex provides underwriting for complex specialty risks, including in the areas of energy, commercial property, crisis management, and aerospace.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Cp>\u003Cstrong style=\"color: rgb(255, 72, 36);\">Why Convex chose Push:\u003C/strong>\u003C/p>\u003Cul>\u003Cli>Convex Insurance, an international specialty insurer, needed a way to secure identities on cloud apps — including apps not on SSO.\u003C/li>\u003Cli>Push helped Convex get a unified view across both their identity security posture and their estate of third-party apps and OAuth integrations.\u003C/li>\u003Cli>Convex was able to get reliable data in order to put further weight behind their security policies. The security team was also able to use Push’s automated self-remediation ChatOps workflows to reduce the manual effort of fixing issues.\u003C/li>\u003C/ul>",{"icon":264,"value":14932,"gap":62,"extraValueText":269,"helpText":14933},1000,"Number of apps",{"icon":14801,"value":23,"gap":14648,"extraValueText":14802,"helpText":14803},{"icon":14805,"value":14648,"extraValueText":269,"helpText":14936},"Locations protected",{"icon":264,"value":14938,"extraValueText":29,"helpText":266},1750,[14940,14941,14942],{"icon":264,"value":14932,"extraValueText":269,"helpText":14933,"formatValue":34},{"icon":14801,"value":23,"extraValueText":14802,"helpText":14803,"formatValue":34,"gap":48},{"icon":264,"value":14938,"extraValueText":29,"helpText":266,"formatValue":34,"gap":277},{"large":14944},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14539,"component":14946,"responsiveStyles":14953},{"name":289,"tag":290,"options":14947,"isRSC":62},{"quoteCarousel":14948},[14949],{"author":14950,"jobTitle":14951,"quote":14952},"Michael Earl","Security Operations Lead","\u003Cp>With Push, suddenly we had the potential of installing something into our estate that would give us even better information to make decisions about our SaaS and identity security posture so we could get a unified picture of the risks.\u003C/p>",{"large":14954},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14551,"component":14956,"responsiveStyles":14965},{"name":305,"tag":306,"options":14957,"isRSC":62},{"theme":308,"sections":14958,"title":316,"diagonalVariant":317},[14959],{"text":14960,"quotes":14961},"\u003Cp>As a specialty insurer handling complex requirements, Convex Insurance relies on security solutions that provide the flexibility their workforce needs in order to deliver services in areas as diverse as crisis management, marine cargo, renewable energy, and satellite launches in multiple countries and territories.\u003C/p>\u003Cp>“At Convex, we embrace the role that our staff play in helping secure the business and we empower them to make good decisions while providing them with the information they need to do that,” says Michael Earl, security operations lead at Convex.\u003C/p>\u003Cp>Convex has also welcomed the use of cloud apps to supercharge productivity, with employees using a large number of SaaS apps, from the mundane to the obscure. \u003C/p>\u003Cp>However, the widespread use of cloud apps posed a challenge for the Convex security team in getting a unified view across their app estate and identity posture. Existing tools provided a lot of data, but it was a time-consuming process to glean the insights the team needed to effectively enforce security policies.\u003C/p>\u003Cp>The potential blindspot of unmanaged apps and identities was a concern and led to hard conversations among the security team.\u003C/p>",[14962],{"quote":14963,"quoteBy":14964},"If we have a breach at a third party that some of our users are signed up to, we need to immediately understand where we have accounts and data so we can take appropriate steps.","Convex Insurance",{"large":14966},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14564,"component":14968,"responsiveStyles":14976},{"name":305,"tag":306,"options":14969,"isRSC":62},{"theme":326,"sections":14970,"title":333,"diagonalVariant":334},[14971],{"text":14972,"quotes":14973},"\u003Ch3>\u003Cstrong>CASB approach was time-consuming\u003C/strong>\u003C/h3>\u003Cp>Early attempts to solve the challenge of getting full visibility of both identity posture and their app estate were time-consuming.\u003C/p>\u003Cp>This entailed combing through CASB logs to identify visited URLs and HTTP methods, as well as evidence of POST data and transferred bytes. Then the security team would try to infer if employees were using unsanctioned applications or storing data where it wasn’t approved to go. “It was quite a manual exercise,” Michael says. \u003C/p>\u003Cp>That spotty evidence made it hard for the security team to have informed conversations with end-users. \u003C/p>\u003Cp>“When you have a conversation with an employee, you want to make sure you have the proper information on whether they were actually using an app so you don’t put someone on the defensive when they were just doing their job,” Michael says.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Ch3>\u003Cstrong>Seeking visibility of non-SSO cloud identities\u003C/strong>\u003C/h3>\u003Cp>At the same time, the team was looking for additional ways to get the visibility they needed for securing non-SSO cloud identities. In particular, they were worried about identities that could exist on unmanaged apps.\u003C/p>\u003Cp>“In our industry, it is the SaaS apps that are not SSO-integrated that are potentially the biggest danger,” says Alistair McGlinchy, IT security engineer at Convex.\u003C/p>\u003Cp>“So if a third party has their password database attacked and there has been any password reuse, an attacker can password-spray and get to the point where MFA is the only blocker for somebody trying to authenticate.”\u003C/p>",[14974],{"quote":14975,"quoteBy":14964},"In our industry, it is the SaaS apps that are not SSO-integrated that are potentially the biggest danger.",{"large":14977},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14577,"component":14979,"responsiveStyles":14998},{"name":305,"tag":306,"options":14980,"isRSC":62},{"theme":308,"sections":14981,"title":352,"diagonalVariant":353},[14982,14987,14990,14995],{"text":14983,"quotes":14984},"\u003Cp>Convex chose Push initially to help them further secure identities on a large catalog of cloud apps. In learning more about the product, they realized Push would also give them a unique unified view of both identity posture and their third-party apps and OAuth integrations — even unsanctioned or “shadow” apps.\u003C/p>\u003Cp>“Other than you guys, we just didn’t have any awareness of anything in the market that matched the level of intelligence that Push can provide about how our employees use passwords,” Michael says. “ And then we learned about all the additional features, like you can see where all of your apps are integrated and what people are doing with them.\u003C/p>\u003Cp>You’ve got this nice unified view of all of the OAuth scopes and things that people have been granting. The product works. It ticks all the boxes, really.”\u003C/p>",[14985],{"quote":14986,"quoteBy":14964},"The product works. It ticks all the boxes, really.",{"text":14988,"quotes":14989},"\u003Ch3>\u003Cstrong>Easy deployment\u003C/strong>\u003C/h3>\u003Cp>Setting up a proof of concept was a 1-hour video call, Alistair recalls. \u003C/p>\u003Cp>“It was one of the more straightforward onboarding and trial experiences that we’ve had, and that’s continued post-procurement as well,” Michael says.\u003C/p>\u003Cp>The team was able to select a test group and deploy the Push browser extension via MDM. The Convex team also appreciated Push’s support for Google Workspace and alternative identity providers.\u003C/p>",[],{"text":14991,"quotes":14992},"\u003Ch3>\u003Cstrong>Immediate value\u003C/strong>\u003C/h3>\u003Cp>During the trial, the security team found high-risk password reuse among their own IT team.\u003C/p>\u003Cp>Armed with this information, they could follow up with employees directly — or use Push’s automated self-remediation ChatOps workflows to facilitate that conversation without it feeling awkward for either party.\u003C/p>\u003Cp>“As far as we’re concerned, it is better coming from an automated platform,” Michael says. “We’re a small team, so we don’t have a lot of time to manually follow up on every possible issue. We absolutely need tools that both detect and notify about the problem and facilitate the remediation steps.”\u003C/p>\u003Cp>They were also able to identify non-SSO apps with heavy usage and restrict their use, as well as gauge their employees’ use of AI and LLM tools.\u003C/p>",[14993],{"quote":14994,"quoteBy":14964},"It was one of the more straightforward onboarding and trial experiences that we’ve had, and that’s continued post-procurement as well.",{"text":14996,"quotes":14997},"\u003Ch3>\u003Cstrong>Putting more weight behind security policies\u003C/strong>\u003C/h3>\u003Cp>With the data provided by the Push platform, the Convex security team now has the evidence they need to be able to reinforce security policies for their cloud estate.\u003C/p>\u003Cp>“It gives us all the information that we need to attack the problem and provide even better security for our business,” Michael says.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>",[],{"large":14999},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"@type":47,"@version":48,"id":14593,"component":15001,"responsiveStyles":15003},{"name":362,"tag":363,"options":15002,"isRSC":62},{},{"large":15004},{"display":65,"flexDirection":66,"position":67,"flexShrink":68,"boxSizing":69},{"id":15006,"@type":47,"tagName":75,"properties":15007,"responsiveStyles":15008},"builder-pixel-aw0ur7lagp",{"src":77,"aria-hidden":78,"alt":29,"role":79,"width":68,"height":68},{"large":15009},{"height":68,"width":68,"display":82,"opacity":68,"overflow":83,"pointerEvents":84},{"deviceSize":86,"location":15011},{"path":29,"query":15012},{},{},1764673394915,1749126936428,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F10953d20c9db4987ac26800a13bcbf48",[],{"breakpoints":15019,"hasLinks":6,"lastPreviewUrl":15020,"kind":385,"hasAutosaves":6},{"xsmall":31,"small":32,"medium":33},"https://app.stg.pushsecurity.com/customer-stories/convex?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CcreateProjects&builder.user.role.name=Designer&builder.user.role.id=creator&builder.cachebust=true&builder.preview=customer-stories&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.customer-stories=ceec2869ab5c44b9ac568ee6e09b5e5e&builder.overrides.ceec2869ab5c44b9ac568ee6e09b5e5e=ceec2869ab5c44b9ac568ee6e09b5e5e&builder.options.includeRefs=true&builder.options.enrich=true&builder.options.locale=Default",1782721962893]