72% of Enterprise Users Have Vulnerable Browser Extensions

💬 72% of enterprise users have at least one browser extension with a known CVE. Pulled the numbers on our org and it tracks. An audit of the organization revealed a similar or slightly worse rate of users with vulnerable browser extensions. Most vulnerabilities stemmed from outdated tools like grammar checkers and an old screen recorder, rather than malware. The post highlights that AI-related extensions are 60% more likely to have a CVE and six times more likely to silently expand permissions after installation.