Security teams are facing two AI-driven challenges at once: attackers are using AI to rapidly evolve phishing infrastructure, while employees are adopting unapproved AI tools, extensions, and OAuth integrations that can expose sensitive data. The article argues that both risks converge in the browser, making browser-level visibility and control the most effective way to detect attacks and govern AI use. #PushSecurity #ShinyHunters #BlackFile #Doko #Vercel #Salesloft #Gainsight #ChatGPT #Claude #MicrosoftCopilot #Gemini
Keypoints
- Attackers are using AI to create and rotate phishing kits faster.
- Device code phishing and ClickFix-style attacks are spreading quickly.
- Domain blocklists are losing value as phishing infrastructure changes in hours.
- Employees are adopting unapproved AI apps, extensions, and OAuth grants.
- Browser-based telemetry is needed to stop attacks and control AI usage.