* [Blog](https://www2.paloaltonetworks.com/blog)
* [Palo Alto Networks](https://www2.paloaltonetworks.com/blog/corporate/)
* [Mobile Users](https://www2.paloaltonetworks.com/blog/sase/category/mobile-users/)
* Is Your Browser Ground Ze...

# Is Your Browser Ground Zero for Cyberattacks?

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2F2025%2F03%2Fis-your-browser-ground-zero-for-cyberattacks%2F)  
[](https://twitter.com/share?text=Is+Your+Browser+Ground+Zero+for+Cyberattacks%3F&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2F2025%2F03%2Fis-your-browser-ground-zero-for-cyberattacks%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2F2025%2F03%2Fis-your-browser-ground-zero-for-cyberattacks%2F&title=Is+Your+Browser+Ground+Zero+for+Cyberattacks%3F&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://www2.paloaltonetworks.com/blog/2025/03/is-your-browser-ground-zero-for-cyberattacks/&ts=markdown)  
\[\](mailto:?subject=Is Your Browser Ground Zero for Cyberattacks?)  
Link copied  
By [Anupam Upadhyaya](https://www.paloaltonetworks.com/blog/author/anupam-upadhyaya/?ts=markdown "Posts by Anupam Upadhyaya")  
Mar 27, 2025  
4 minutes  
[Mobile Users](https://www.paloaltonetworks.com/blog/sase/category/mobile-users/?ts=markdown)  
[Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown)  
[thought leadership](https://www.paloaltonetworks.com/blog/tag/thought-leadership/?ts=markdown)  
[web browser](https://www.paloaltonetworks.com/blog/tag/web-browser/?ts=markdown)  
[ZTNA](https://www.paloaltonetworks.com/blog/tag/ztna/?ts=markdown)

*This blog was originally published on [Cybersecurity Dive](https://www.cybersecuritydive.com/spons/is-your-browser-ground-zero-for-cyber-attacks/740364/).*

*** ** * ** ***

The facts are stark: 65% of organizations have little-to-no control over the data being shared in GenAI apps, 98% of organizations said they had policy violations involving BYOD (bring your own device), and organizations choose not to inspect application and internet traffic due to business reasons, resulting in 64% of encrypted traffic going uninspected. The common denominator for these challenges? The browser, which has become the center of where modern work happens today.

In the brave new world of AI and the cloud, organizations must protect this final frontier with security that extends seamlessly to every device, enabling both companies and end-users to operate with agility. New research conducted by Omdia and commissioned by Palo Alto Networks, [The State of Workforce Security: Key Insights for IT and Security Leaders](https://www.paloaltonetworks.com/blog/sase/omdia-report-reinforces-need-to-browse-bravely/), sheds light on how a secure browser, integrated with Secure Access Service Edge (SASE), can help overcome these challenges without hurting user experience or disrupting the business.

## **Dangers in Your Browser**

The way we work has changed significantly over the last few years with the rise of hybrid and remote work, the introduction of new policies that allow personal devices to be used for work, and the increased adoption of SaaS applications.

Though the hybrid workforce facilitates productivity and flexibility, it also exposes organizations to risk. Remote employees and contractors often use unmanaged devices, which can open the door to vulnerabilities that are tough for standard security protocols to address. Furthermore, as companies quickly adopt SaaS applications, the browser has become a vital element of today's work environment. For context, today, the average large organization is likely using as many as 10,000 SaaS apps.

We're seeing a rise in threat exposure due to these changes, including an increase in ransomware, phishing and browser-based threats. The report found that 95% of organizations have experienced an attack originating in the browser; 94% have experienced a phishing attack.

Omdia's findings indicate that even with substantial cybersecurity investments, security gaps remain. The report reveals:

* Visibility shortcomings -- 64% of encrypted traffic in participating organizations goes uninspected; 65% of organizations don't have control over the data that is shared in AI tools.
* Missing controls -- None of the participating companies fully deployed their security controls across all devices. This leaves vulnerabilities exposed.
* Incidents are commonplace -- 95% of surveyed companies suffered browser-based attacks over the last year; 94% had to deal with phishing incidents.

These findings illuminate a key problem: even if a company has advanced security controls, it is still susceptible to cyberthreats. Omdia's research found that, despite major budget allocation for point solutions like secure web gateways, mobile device management (MDM) and endpoint protection, security incidents still happen. It's clear that companies need a more holistic and integrated approach to security that puts stronger browser security at the forefront.

## **Addressing Browser-Related Security Risks**

The Omdia report found two technologies that can transform how organizations meet such challenges:

* Secure browsers offer security to the last mile and visibility into user actions. These are web browsers that are built to protect against external threats and they provide greater privacy protections than traditional browsers. Secure browsers defend against browser-based threats with seamless user experience. They also empower companies with detailed control to prevent data loss, mitigate risks from malware and phishing, and enforce data loss prevention (DLP) policies.
* Secure access service edge (SASE) is a cloud-based network architecture that combines network and security services into a single framework. It integrates technologies like SD-WAN, cloud access security brokers (CASB), secure web gateways (SWG), Zero Trust network access (ZTNA), and firewall as a service (FWaaS). SASE delivers secure, seamless access to applications and data, regardless of user location, enabling efficient and scalable hybrid work and cloud adoption.

These two technologies working in concert empower companies to create security architectures that are future-ready and resilient. By isolating the workspace from the underlying device and by embedding advanced security mechanisms in the browser, secure browsers protect sensitive data. Secure browsers enable security at the endpoint, and SASE offers a strong foundation for enforcing Zero Trust principles and securing network traffic. This establishes holistic coverage across all applications, devices and locations.

## **Securing Ground Zero**

There's a high cost to inaction, particularly when it comes to the ever-increasing sophistication of cyberthreats. The Omdia report provides crucial insights organizations can use to create comprehensive strategies that keep them secure -- even in the face of emerging threats. Leveraging secure browsers and SASE helps complete the security picture so there are no gaps in visibility, empowering companies to reduce risk and empower productivity in this evolving work environment.

*** ** * ** ***

## Related Blogs

### [AI and Cybersecurity](https://www.paloaltonetworks.com/blog/security-operations/category/ai-and-cybersecurity/?ts=markdown), [Interview](https://www.paloaltonetworks.com/blog/category/interview/?ts=markdown), [Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown)

[#### Our CIO on Why Security Must Be Built Into AI from Day One](https://www2.paloaltonetworks.com/blog/2025/11/cio-why-security-must-be-built-into-ai/)

### [AI Security](https://www.paloaltonetworks.com/blog/category/ai-security/?ts=markdown), [CIO/CISO](https://www.paloaltonetworks.com/blog/category/ciociso/?ts=markdown), [Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown)

[#### A CIO's First Principles Reference Guide for Securing AI by Design](https://www2.paloaltonetworks.com/blog/2025/11/cios-first-principles-reference-guide-securing-ai-design/)

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown), [Public Sector](https://www.paloaltonetworks.com/blog/category/public-sector/?ts=markdown)

[#### Securing the Quantum Age](https://www2.paloaltonetworks.com/blog/2025/08/securing-the-quantum-age/)

### [AI Security](https://www.paloaltonetworks.com/blog/category/ai-security/?ts=markdown), [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown), [Predictions](https://www.paloaltonetworks.com/blog/category/predictions/?ts=markdown), [Reports](https://www.paloaltonetworks.com/blog/category/reports/?ts=markdown)

[#### GenAI's Impact --- Surging Adoption and Rising Risks in 2025](https://www2.paloaltonetworks.com/blog/2025/06/genais-impact-surging-adoption-rising-risks/)

### [AI and Cybersecurity](https://www.paloaltonetworks.com/blog/security-operations/category/ai-and-cybersecurity/?ts=markdown), [Interview](https://www.paloaltonetworks.com/blog/category/interview/?ts=markdown), [Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown), [Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown)

[#### SOC and Awe --- How Autonomous Security Is Changing the Game](https://www2.paloaltonetworks.com/blog/2025/03/autonomous-security-changing-the-game/)

### [Points of View](https://www.paloaltonetworks.com/blog/category/points-of-view/?ts=markdown)

[#### Securing DOT Infrastructure](https://www2.paloaltonetworks.com/blog/2025/01/securing-dot-infrastructure/)

### Subscribe to the Blog!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www2.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language