Browser AI Agents Pose Massive Security Risks Warn Experts
New warnings highlight security vulnerabilities in browser AI agents used by 79% of organizations, urging immediate action to mitigate risks.
A new warning has been issued for Chrome and Edge users as AI-powered browser agents, now used by 79% of organizations, are becoming a significant security vulnerability. According to SquareX, these agents lack the ability to recognize malicious sites or suspicious activities, making them easy targets for cyberattacks.
Warning as new AI attacks surface (Getty)
Key Findings:
- Browser AI Agents are trained to complete tasks but lack security awareness, making them prone to attacks like phishing and OAuth exploits.
- Attackers are creating sites specifically designed to trick these agents into performing malicious workflows.
- Google Chrome and Microsoft Edge users are advised to enable the highest security settings, including Enhanced Protection in Chrome.
SquareX’s Vivek Ramachandran explains that these agents operate with the same privileges as users, accessing sensitive data without safeguards. “Browsers cannot distinguish between actions by a real user and an AI agent,” he says.
Proof of Concept:
SquareX demonstrated how a Browser AI Agent, instructed to register for a file-sharing tool, fell victim to an OAuth attack, granting a malicious app full access to the user’s email. Similar risks apply to credit card info, enterprise systems, and more.
Recommendations:
- Enable Enhanced Protection in Chrome or similar high-security modes in Edge.
- Implement browser-native guardrails to prevent agents from executing risky actions.
- Monitor AI agent usage closely, as they cannot detect visual warning signs like suspicious URLs.
Broader Implications:
- Gartner estimates 15% of daily workflows will be handled by Browser AI Agents by 2028.
- Privacy concerns are rising as AI integration accelerates, with unauthorized data sharing becoming a major issue.
For more details, visit SquareX or read Google’s Safe Browsing guide.
“Today’s security strategies focus on user behavior, but we need a paradigm shift for AI agents,” Ramachandran warns.
Related News
Zscaler CAIO on securing AI agents and blending rule-based with generative models
Claudionor Coelho Jr, Chief AI Officer at Zscaler, discusses AI's rapid evolution, cybersecurity challenges, and combining rule-based reasoning with generative models for enterprise transformation.
Lenovo Wins Frost Sullivan 2025 Asia-Pacific AI Services Leadership Award
Lenovo earns Frost Sullivan's 2025 Asia-Pacific AI Services Customer Value Leadership Recognition for its value-driven innovation and real-world AI impact.
About the Author

Dr. Sarah Chen
AI Research Expert
A seasoned AI expert with 15 years of research experience, formerly worked at Stanford AI Lab for 8 years, specializing in machine learning and natural language processing. Currently serves as technical advisor for multiple AI companies and regularly contributes AI technology analysis articles to authoritative media like MIT Technology Review.