CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Zscaler Acquires SquareX to Enhance Browser Security

First reported
Last updated
2 unique sources, 3 articles

Summary

Hide ▲

In May 2026, Zscaler completed its acquisition of SquareX, formally integrating the Browser Detection and Response (BDR) solution into the Zero Trust Exchange platform to secure unmanaged devices via user-preferred browsers. SquareX’s extension, which converts standard browsers into enterprise-grade secure workspaces with real-time threat detection, remains a standalone offering while being incorporated into Zscaler’s broader strategy. The move, alongside concurrent industry consolidation, reflects growing enterprise adoption of secure browsers amid rising threats to browser-based activities, including malicious extensions, phishing, and AI tool interactions. Gartner projects adoption of secure enterprise browsers to rise from 10% to 25% of organizations by 2028, underscoring the sector’s rapid evolution.

Timeline

  1. 13.02.2026 23:58 2 articles · 3mo ago

    SquareX's Browser Extension Enhances Security Visibility

    SquareX’s browser extension delivers deep, actionable visibility for security teams while remaining invisible to end users. It enforces real-time threat detection and policy controls within standard browsers, addressing gaps in visibility and response for malicious extensions, phishing, generative AI data leakage, and insider threats. The extension’s integration into Zscaler’s Zero Trust Exchange extends these capabilities to unmanaged devices, reinforcing the platform’s comprehensive security posture.

    Show sources
    Open in new tab
  2. 06.02.2026 04:48 3 articles · 3mo ago

    Zscaler Acquires SquareX to Enhance Browser Security

    Zscaler’s integration of SquareX’s Browser Detection and Response (BDR) solution into its Zero Trust Exchange platform advances its strategy to secure unmanaged devices via user-preferred browsers. The acquisition, which closed on February 5, 2026, enables real-time threat detection and response within standard browsers like Chrome and Edge, addressing risks such as malicious extensions, phishing, and data leakage. Zscaler plans to finalize the integration within months, targeting rapid adoption despite SquareX’s limited installed base. Industry-wide consolidation in secure enterprise browsers, including Akamai’s $205 million acquisition of LayerX and Palo Alto Networks’ 2023 acquisition of Talon, highlights the sector’s momentum and strategic importance.

    Show sources
    Open in new tab

Information Snippets

Similar Happenings

Rising Threat of AI Browser Extensions as Enterprise Attack Surface Exposed

A new study reveals AI browser extensions as a rapidly expanding, under-monitored attack vector in enterprise environments. These extensions bypass traditional security controls by operating within the browser, granting direct access to user inputs, session cookies, and rendered page content. Enterprise adoption is nearly universal—99% of users install at least one extension—with AI extensions displaying disproportionately high risk profiles, including elevated vulnerability rates, increased permission escalations, and ungoverned access to sensitive data. The lack of visibility and governance creates an unmonitored channel for data exfiltration, session hijacking, and policy evasion, particularly as AI tooling becomes embedded directly into browsing workflows.

Open in new tab

2026 Browser Security Report Highlights Enterprise Blind Spots

The 2026 State of Browser Security Report reveals that browsers have become the most critical yet least protected control point in enterprises. AI-native browsers have shifted from experimental tools to mainstream business platforms, creating significant security blind spots. The report highlights the rapid evolution of browser capabilities, including AI copilots and generative AI tools, which are now integral to daily work tasks. However, enterprise security architectures have not kept pace, leaving a growing gap in visibility and control over sensitive data and user activities. The report also details the widespread use of AI tools within browser sessions, the exposure of sensitive data in 'trusted' apps, and the increasing prevalence of browser-based attacks that bypass traditional security controls.

Open in new tab

Browser Attacks Evasion of Traditional Security Measures

Modern enterprise work heavily relies on browsers for accessing SaaS applications, identity providers, and AI tools. However, traditional security architectures focus on endpoints, networks, and email, leaving a significant visibility gap in browser activities. This gap allows a class of browser-only attacks to evade detection and investigation, posing a growing challenge for security teams. In 2026, browser attacks continue to leave little traditional evidence, making them difficult to detect and mitigate. These attacks include clickfix and UI-driven social engineering, malicious extensions, man-in-the-browser attacks, and HTML smuggling. Each of these attack types exploits the lack of visibility into browser activities, making them hard to prevent and investigate. The gap in browser-level observability is widening due to the increasing use of AI tools and AI-native browsers, which normalize actions like copying, pasting, and uploading sensitive information. This makes it even more challenging for security teams to evaluate risks and set effective controls.

Open in new tab

Modern web browsers as primary attack surface in enterprise infrastructure

Modern web browsers have become critical components of enterprise infrastructure, but also a primary attack surface for identity-based intrusions, SaaS abuse, and session hijacking. On September 29th at 12:00 PM ET, a webinar will be held to discuss the evolving threat landscape targeting corporate browsers and how attackers compromise accounts, steal data, and bypass traditional defenses. The webinar will focus on real-time detection and response platforms to mitigate these risks. The webinar, titled "Your Browser Is the Breach: Securing the Modern Web Edge", will be co-hosted by BleepingComputer and SC Media, with experts from Push Security. The event aims to educate security professionals on the tactics used by attackers, such as malicious extensions, session token theft, and OAuth abuse, and provide strategies to detect and defend against these threats.

Open in new tab

Increased Focus on Browser Security Due to Rising Threats

The browser has become a prime target for attackers due to its central role in modern work environments. Attacks exploit vulnerabilities, malicious extensions, and session hijacking to steal sensitive data. The Snowflake breach highlighted the risks, prompting discussions on whether the browser is the new endpoint. Experts emphasize the need for stronger browser security measures to mitigate these threats. The Snowflake attack, which used stolen credentials, underscored the vulnerability of browsers. This incident, along with others like those by Scattered Spider and ShinyHunters, has led to increased awareness of browser security risks. Experts suggest that enterprises should treat the browser as a secure agent and integrate browser security with network and endpoint protections. Attacks on browsers often avoid malware, making detection difficult. Security measures should minimize user friction and integrate browser, network, and endpoint security for comprehensive threat prevention.

Open in new tab