{"id":3782,"date":"2025-12-09T13:43:23","date_gmt":"2025-12-09T13:43:23","guid":{"rendered":"https:\/\/ft365.org\/index.php\/2025\/12\/09\/gartner-calls-for-pause-on-ai-browser-use\/"},"modified":"2025-12-09T13:43:23","modified_gmt":"2025-12-09T13:43:23","slug":"gartner-calls-for-pause-on-ai-browser-use","status":"publish","type":"post","link":"http:\/\/ft365.org\/index.php\/2025\/12\/09\/gartner-calls-for-pause-on-ai-browser-use\/","title":{"rendered":"Gartner Calls For Pause on AI Browser Use"},"content":{"rendered":"<div>\n<p><img decoding=\"async\" src=\"https:\/\/ft365.org\/wp-content\/uploads\/2025\/06\/localimages\/ea721ff9-8ba4-4d88-b386-57e9e1606077.jpg?width=64&#038;height=64&#038;mode=crop&#038;scale=both&#038;format=webp\" alt=\"Photo of Phil Muncaster\" loading=\"lazy\"><\/p>\n<\/div>\n<div id=\"cphContent_pnlArticleBody\">\n<div id=\"layout-781cab2d-715b-4f31-aae9-da8f4e68e37b\" data-layout-id=\"2\" data-edit-folder-name=\"text\" data-index=\"0\">\n<p>Gartner has recommended that enterprises block use of AI browsers until the associated risks can be adequately managed.<\/p>\n<p>The analyst firm made the suggestion in a new report, <em>Cybersecurity Must Block AI Browsers for Now.<\/em><\/p>\n<p>The report authors warned that \u201cdefault AI browser settings prioritize user experience over security,\u201d pointing to several risky scenarios. These include:<\/p>\n<ul>\n<li>Indirect prompt injection via rogue agents<\/li>\n<li>Erroneous agent actions due to \u201cinaccurate reasoning\u201d<\/li>\n<li>Loss and abuse of credentials, if a browser is tricked into visiting to a phishing site<\/li>\n<li>Employees dodging cybersecurity training by telling their AI browser to complete sessions on their behalf<\/li>\n<li>Agents making expensive but incorrect corporate purchases, e.g., booking the wrong flights<\/li>\n<li>Loss of sensitive corporate data to the cloud, where it is processed by AI services<\/li>\n<\/ul>\n<p>\u201cEliminating all risks is unlikely \u2013 erroneous actions by AI agents will remain a concern,\u201d the report warned.<\/p>\n<p>\u201cOrganizations with low risk tolerance may need to block AI browsers for the longer term.\u201d<\/p>\n<p><em>Read more on AI browsers: Why we Need to Manage the Risk of AI Browser Extensions<\/em><\/p>\n<h2>Researcher Warnings<\/h2>\n<p>Gartner\u2019s warnings\u00a0are the latest in a string of reports urging enterprises to treat AI browsers with caution.<\/p>\n<p>In October, a SquareX study identified prompt injection, malicious workflows, malicious downloads and trusted app misuse as potential architectural weaknesses in browsers like Perplexity\u2019s Comet and ChatGPT\u2019s Atlas.<\/p>\n<p>A month later, Cato Networks revealed\u00a0\u201cHashJack,\u201d a new vulnerability capable of weaponizing legitimate websites to manipulate browsers. Attackers would simply embed malicious fragments of code in a real website\u2019s URL, to instruct AI browsers to return misinformation, phishing links\u00a0and even exfiltrate user data.<\/p>\n<p>KnowBe4 lead security awareness advocate, Javvad Malik, argued that AI browsers have introduced a new tension in cybersecurity by forcing users to assess the tradeoff between productivity and security risk.<\/p>\n<p>\u201cWhile agentic browsers promise many features to enhance user experience, we are still in early stages where the risks are not well understood and default configurations prioritize convenience over security, something we see in many technologies,\u201d he added.<\/p>\n<p>\u201cHowever, blanket bans are rarely sustainable long-term strategies. Instead, the focus should be on risk assessments that evaluate the specific AI services powering these browsers. This can allow for measured adoption while maintaining necessary oversight.\u201d<\/p>\n<p>Organizations should develop playbooks to \u201cassess and protect AI agents\u201d in line with their corporate risk appetite, he concluded.<\/p>\n<\/p><\/div>\n<p>Image credit:\u00a0Samuel Boivin \/ Shutterstock.com<\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>Gartner has recommended that enterprises block use of AI browsers until the associated risks can be adequately managed. The analyst firm made the suggestion in a new report, Cybersecurity Must Block AI Browsers for Now. The report authors warned that \u201cdefault AI browser settings prioritize user experience over security,\u201d pointing to several risky scenarios. These<\/p>\n","protected":false},"author":2,"featured_media":3783,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-3782","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized"],"featured_image_urls":{"full":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/12\/3782-27166d66-22ec-4b5f-84f2-c51561f956da.jpg",300,300,false],"thumbnail":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/12\/3782-27166d66-22ec-4b5f-84f2-c51561f956da-150x150.jpg",150,150,true],"medium":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/12\/3782-27166d66-22ec-4b5f-84f2-c51561f956da.jpg",300,300,false],"medium_large":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/12\/3782-27166d66-22ec-4b5f-84f2-c51561f956da.jpg",300,300,false],"large":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/12\/3782-27166d66-22ec-4b5f-84f2-c51561f956da.jpg",300,300,false],"1536x1536":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/12\/3782-27166d66-22ec-4b5f-84f2-c51561f956da.jpg",300,300,false],"2048x2048":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/12\/3782-27166d66-22ec-4b5f-84f2-c51561f956da.jpg",300,300,false],"morenews-featured":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/12\/3782-27166d66-22ec-4b5f-84f2-c51561f956da.jpg",300,300,false],"morenews-large":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/12\/3782-27166d66-22ec-4b5f-84f2-c51561f956da.jpg",300,300,false],"morenews-medium":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/12\/3782-27166d66-22ec-4b5f-84f2-c51561f956da.jpg",300,300,false],"crawlomatic_preview_image":["http:\/\/ft365.org\/wp-content\/uploads\/2025\/12\/3782-27166d66-22ec-4b5f-84f2-c51561f956da-146x146.jpg",146,146,true]},"author_info":{"display_name":"henry","author_link":"http:\/\/ft365.org\/index.php\/author\/henry\/"},"category_info":"<a href=\"http:\/\/ft365.org\/index.php\/category\/uncategorized\/\" rel=\"category tag\">Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","_links":{"self":[{"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts\/3782","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/comments?post=3782"}],"version-history":[{"count":0,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts\/3782\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/media\/3783"}],"wp:attachment":[{"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/media?parent=3782"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/categories?post=3782"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/tags?post=3782"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}