What the ”Passkeys Pwned” talk is and isn’t about, and what it reveals about the importance of correct implementation of the standardThe Passkeys Pwned Talk SummaryAs outlined in the DEF CON abstract below, the Passkeys Pwned attack highlights a passkey implementation flaw, specifically that of WebAuthn in the registration and authentication process ... Read More

Over the past several months, Google Cloud Threat Intelligence has been tracking a campaign abusing Salesforce CRM integrations has caused a wave of breaches affecting prominent companies worldwide such as Adidas, Dior, and Google itself with the latest disclosure coming from Workday, a leading HR and financial software provider.Customer Relationship ... Read More

Passkeys Pwned: Turning WebAuthn Against ItselfFor years, passwords have been the default way we prove our identity online. However, they have also been at the center of countless breaches as a result of phishing, credential stuffing and stolen credentials. When passkeys emerged, they were hailed as the gold standard for authentication, ... Read More

SquareX at Black Hat and DEF CON: Bringing Our Browser Security Research to the WorldTeam SquareX Takes on Hacker Summer Camp in 2025With the twin events of Black Hat USA and DEF CON 33, Las Vegas transformed into the cybersecurity capital of the world once again this August, and SquareX was there ... Read More

The past few years have witnessed a surge in malicious browser extensions, including the Geco Colorpick, Cyberhaven and the Great Suspender. These malicious extensions exfiltrate data, steal session cookies, spread spyware and even hijack browser sessions of victims. Critically, many involved benign extensions that turned malicious — either due to a compromise ... Read More

Since OpenAI launched Operator last fall, a whopping 79% of organizations have started using Browser AI Agents in their day to day work (PwC AI Agents Survey). This is not unexpected as the productivity uplift promised by these AI agents are highly attractive, particularly as boards increasingly demand companies to ... Read More

According to MITRE, Browser-in-the-Middle (BitM) is an attack where “an adversary exploits the inherent functionalities of a web browser, in order to establish an unnoticed remote desktop connection in the victim’s browser to the adversary’s system.” This attack has been used by many attackers to trick victims into unknowingly entering ... Read More

Engaging the cybersecurity communityAs part of our activities at RSAC 2025 Conference, SquareX hosted an exclusive networking dinner for CISOs and security leaders at the St. Francis Yacht Club. The event brought together forward-thinking security professionals to discuss a critical question facing today’s enterprises: With the browser becoming the new ... Read More

Bringing Browser Security to the ForefrontWhat a week it’s been! The SquareX team just returned from San Francisco where we attended two back-to-back cybersecurity events: BSides SF and RSAC 2025 Conference. These events gave us the perfect opportunity to connect with the security community and showcase how our Browser Detection ... Read More

Among the cyber community, ransomware stands as one of the most recognized and dreaded forms of attack due to the scale of financial and reputational repercussions that come with it. However, over the years, endpoint solutions like EDRs have gotten pretty good at detecting traditional ransomware.However, we are currently at ... Read More