行业研究公司研究宏观策略财报招股书会议纪要 seedance2.0 低空经济 DeepSeek AIGC 大模型

2026年浏览器安全状况报告

信息技术 2026-04-05 Keep Aware 一抹朝阳

研报总结

核心观点

浏览器已成为企业端点中最重要的工具，也是工作执行的主要环境。然而，浏览器安全控制点相对不成熟，传统安全措施难以应对现代工作模式下的安全挑战，尤其是在生成式AI和AI浏览器兴起的背景下。

关键数据与发现

生成式AI使用广泛但管理分散：41%的用户通过浏览器使用AI工具，平均每人使用1.91个AI工具。其中，58%的AI提示输入发送到个人账户，22%的包含文件上传的AI提示输入包含敏感数据。
浏览器DLP挑战：46%的敏感数据输入到个人SaaS账户，敏感上传内容涉及多种平台，传统DLP工具难以检测浏览器内的交互。
浏览器攻击技术：Credential theft（41%）和browser-initiated escalation（31%）是主要攻击手段。新兴攻击技术包括ClickFix（剪贴板劫持）、ConsentFix（OAuth滥用）和“Sleeper”扩展（持久化恶意扩展）。
扩展管理风险：平均每个用户安装4.67个扩展，13%的扩展被归类为高风险。高风险扩展通常请求广泛访问权限，且市场分类与实际风险不符。
AI浏览器与浏览器蔓延：AI原生浏览器和AI集成浏览器（如ChatGPT Atlas、Gemini、Copilot Mode）的兴起，导致浏览器生态多样化，增加了管理复杂性。AI浏览器引入了新的攻击模型，如提示注入、过度代理和错误信息。

研究结论

传统安全工具无法满足现代浏览器环境的需求，需要浏览器原生的安全控制，如浏览器检测与响应（BDR）。
安全团队必须重新思考威胁检测策略，关注浏览器事件、用户行为、账户上下文和实时行为。
扩展管理需要从静态控制转向持续监控，评估扩展的声誉、权限、代码和行为。
AI浏览器和浏览器蔓延要求安全团队评估新浏览器的信任模型、数据处理实践和代理功能，并确保对AI代理的权限和数据保留政策的明确管理。
未来，浏览器必须被视为执行环境，而非可信应用，需要浏览器级别的可见性、实时会话上下文和明确的活动归因。

对策建议

部署浏览器检测与响应（BDR）解决方案，提供实时可见性和响应能力。
加强扩展管理，持续评估扩展风险，而非依赖安装时审批。
评估AI浏览器的风险和治理考虑，确保对AI代理的权限和数据保留政策的明确管理。
采用浏览器原生安全控制，确保对现代企业环境中浏览器活动的全面可见性和控制。

Contents Foreword Introduction Methodology Security challenges 1. Gen AI 2. Browser DLP 3. Browser-based attacks 4. Extension management 5. AI browsers and browser sprawl Future outlook Appendix About Keep Aware Foreword Over the past few years, the browser has become the mostimportant enterprise endpoint. Work no longer happens within thecorporate network or even traditional applications. It happens intabs. In AI copilots and GenAI applications. In SaaS. And in desktop At the same time, the security market signaled something important.We saw major acquisitions across SASE and EDR. Entire categoriesare colliding in an effort to regain visibility and control over howwork actually happens. These acquisitions are not just Neither network controls nor traditional endpoint agents weredesigned for a world where business logic executes inside thebrowser. Neither has the native context to understand user actions 2025 also saw the rapid rise of AI‑native browsers and AI‑embeddedapplications. Browsers are no longer passive renderers of webpages: they are agents, assistants, automation engines, and data transmit sensitive information at machine speed, and can actautonomously. That shift fundamentally changes the risk model:security teams are no longer just defending users in the browser, The events of the past year make one thing clear: the browsercannot remain an extension of network policy or an afterthought ofendpoint protection. It needs to stand on its own, with its own Security teams must be able to understand: •What data is being accessed, generated, or pasted into AI tools•What SaaS applications are being used and how•What actions users and AI agents are taking in real time Without a browser-native model, organizations are blind to the verylayer where productivity and risk now converge. Understanding thestate of browser security starts with understanding the state of the The future of work runs in the browser. The future of AI runs in the browser. Security must meet it there. Introduction Industry data and security teams' firsthand experience in the lastyear confirmed a fundamental shift: the browser is now the primary As network and email security matured, these threats shifted to"known good" environments: legitimate browsers, trusted SaaS, andauthenticated sessions. Unlike email, where organizations controlflow and inspection, browser activity is inherently fragmented This browser blind spot exposes areas of risk across the entirebusiness. Credential theft, session hĳacking, and data exfiltrationnow occur through everyday work (file uploads, SaaS logins,embedded third-party tools) without triggering traditional Verizonʼs 2025 DBIRechoed this: the human element is involved in60% of breaches. Industry analysts like Gartner have similarly calledout the browser as a critical yet under protected control point.Gartner predicts that by 2028, 25% of organizations will deploy a The research in this reportvalidates what IT and securityteams across industries havelong suspected:traditional Methodology This report is based on anonymized telemetry collected fromproduction enterprise environments using the Keep Aware browsersecurity platform. The analysis reflects real-world browser activityobserved over a twelve-month period, with select metrics derived Definitions and Classification •Sensitive dataincludes structured and unstructured contentmatching enterprise policy definitions, such as PII, PHI, financial •Corporate accountsare identities federated or governed byenterprise identity providers, or account domains validated to •Personal accountsare identities not managed by enterpriseSSO or identity infrastructure. In many cases, both were used •Confirmed phishingreflects in-session credential harvesting ordeceptive login flows observed through user interaction. •Extension riskis determined based on permission scope,reputation signals and organizational context, behavioral Security Challenges As work continues to consolidate inside the browser, so do theenterpriseʼs most pressing security challenges.Generative AItoolsare now embedded in everyday workflows, introducing new dataexposure risks that demand real-time monitoring and governance.Sensitive information is routinely typed, pasted, and uploaded into SaaS applications, makingBrowser DLPessential for visibility where data actually moves. At the same time, attackers increasingly operate through browser-native techniques—phishing, OAuth abuse,malicious extensions, and social engineering—driving the need for 1. Gen-AI Monitoring Challenges in Generative AI has rapidly become embedded in daily workflows,with the browser serving as the primary interface for interaction.While these tools deliver productivity gains, they also introduce new Our 2025 data shows that GenAI adoption is already widespread,unevenly managed, and frequently intertwined with sensitive Widespread GenAI Adoption Is Fragmented AcrossPersonal and Corporate

点击免费查看完整报告