* [Blog](https://origin-researchcenter.paloaltonetworks.com/blog)
* [SASE](https://origin-researchcenter.paloaltonetworks.com/blog/sase/)
* [Product Features](https://origin-researchcenter.paloaltonetworks.com/blog/sase/category/product-features/)
* A Secure Browser Requires...

# A Secure Browser Requires a World-Class Cyber Research Team

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Forigin-researchcenter.paloaltonetworks.com%2Fblog%2Fsase%2Fa-secure-browser-requires-a-world-class-cyber-research-team%2F)  
[](https://twitter.com/share?text=A+Secure+Browser+Requires+a+World-Class+Cyber+Research+Team&url=https%3A%2F%2Forigin-researchcenter.paloaltonetworks.com%2Fblog%2Fsase%2Fa-secure-browser-requires-a-world-class-cyber-research-team%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Forigin-researchcenter.paloaltonetworks.com%2Fblog%2Fsase%2Fa-secure-browser-requires-a-world-class-cyber-research-team%2F&title=A+Secure+Browser+Requires+a+World-Class+Cyber+Research+Team&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://origin-researchcenter.paloaltonetworks.com/blog/sase/a-secure-browser-requires-a-world-class-cyber-research-team/&ts=markdown)  
\[\](mailto:?subject=A Secure Browser Requires a World-Class Cyber Research Team)  
Link copied  
By [Monique Lance](https://www.paloaltonetworks.com/blog/author/monique-lance/?ts=markdown "Posts by Monique Lance") and [Elad Gavra](https://www.paloaltonetworks.com/blog/author/elad-gavra/?ts=markdown "Posts by Elad Gavra")  
Jun 04, 2025  
4 minutes  
[Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown)  
[Secure the Future](https://www.paloaltonetworks.com/blog/category/secure-the-future/?ts=markdown)  
[Prisma Access Browser](https://www.paloaltonetworks.com/blog/tag/prisma-access-browser/?ts=markdown)  
[Secure AI](https://www.paloaltonetworks.com/blog/tag/secure-ai/?ts=markdown)  
[Secure Browser](https://www.paloaltonetworks.com/blog/tag/secure-browser/?ts=markdown)

In today's cybersecurity landscape, web browsers are among the most frequently targeted attack surfaces. In fact, in the last 12 months, [95% of organizations suffered a security incident originating from the browser](https://start.paloaltonetworks.com/omdia-state-of-workforce-security). Traditional browsers, designed for broad usability, lack enterprise-grade security, leaving organizations vulnerable to emerging threats. What's more, they are inherently vulnerable with 328 vulnerabilities discovered in 2024.

Two recent examples highlight the scale of the threat: [CVE-2025-24113](https://nvd.nist.gov/vuln/detail/CVE-2025-24113), a spoofing flaw in Safari that could mislead users into revealing sensitive information, and [CVE-2025-24201](https://nvd.nist.gov/vuln/detail/CVE-2025-24201), a vulnerability that allowed maliciously crafted web content to break out of the web content sandbox and may have been exploited in extremely sophisticated targeted attacks. While both were patched, they underscore how even well-maintained browsers can expose organizations to significant risk if not proactively secured.

If security is your priority, you need a browser built by the best minds in the industry---one that evolves as fast as the threats do. As cybercriminals exploit new vulnerabilities at an alarming rate, businesses need a browser that can proactively defend against attacks rather than merely react to them.

That's where the [Prisma Access Browser](https://www.paloaltonetworks.com/sase/prisma-access-browser) comes in.

At the core of Prisma Access Browser is cutting-edge security research conducted by Palo Alto Networks security research team. Our research-backed approach, combined with enterprise-grade mitigations and proactive threat detection, makes Prisma Access Browser the only choice for organizations that refuse to compromise on security, high performance and delightful user experiences.

Our world-class researchers---including renowned cybersecurity experts Edouard Bochin and Tao Yan, winners of the Chrome/MSEdge browser category at Pwn2Own 2024---continuously analyze zero-day threats and develop novel mitigations. These mitigations are embedded directly into our browser to help safeguard users before exploits become widespread. What's more, the solutions team continuously performs security assessments of the browser's capabilities, including the underlying Chromium infrastructure.

This proactive approach ensures Prisma Access Browser isn't just another Chromium-based option---it's a security-first platform designed to withstand modern cyberthreats. This is particularly crucial as security evolves, often introducing new vulnerabilities alongside advancements in protection.

One example of proactive research surfaced recently with the introduction of a major security innovation from Google, which, upon analysis, unearthed a new vulnerability.

# Even Security Innovations Can Introduce Security Gaps

Introducing isolated web apps (IWAs) is a major advancement in browser security. These applications pioneered within the Chromium ecosystem, offer enhanced security by running in a restricted, sandboxed environment. Installed only from verified sources, IWAs operate under stricter content security policies (CSPs) and integrate more securely with operating systems, effectively bridging the gap between web and native applications.

IWAs introduce new levels of functionality to the browser, enabling web applications to request additional permissions and leverage advanced APIs. This enhances browser-based applications in ways never before possible. However, with greater capabilities come greater risks---particularly when low-level OS APIs are exposed to web environments.

# The Risks of Network-Capable IWAs

While IWAs unlock exciting new possibilities, they also expand the browser's attack surface. By exposing low-level OS APIs to the web, IWAs inadvertently create new attack vectors, reducing the complexity required for exploitation.

At this critical juncture, our world-class research team discovered a use-after-free vulnerability in the Chrome network stack, a flaw that could potentially be exploited to gain unauthorized access.

This issue, which was midrollout and initially deployed on Chrome OS, led to the [CVE-2025-1006](https://nvd.nist.gov/vuln/detail/CVE-2025-1006) vulnerability report. Alongside Edouard Bochin, our research team---including Tal Keren, Sam Agranat, Eran Rom and Adam Hatsir---was instrumental in identifying and reporting this flaw.

For full technical details on the vulnerability, visit the official [CVE report](https://chromereleases.googleblog.com/2025/02/stable-channel-update-for-chromeos_21.html).

In an era where the browser has become both the hub of your sensitive data and the frontline of cyberattacks, relying on generic, consumer-grade browsers is no longer enough. Prisma Access Browser stands apart---not just as a secure alternative, but as a purpose-built platform engineered by some of the world's top security minds.

Backed by continuous threat research, real-time mitigation and a relentless focus on staying ahead of attackers, it's the browser built for modern enterprise demands. If your business depends on the web, your browser should be your strongest line of defense.

When it comes to protecting your business from browser-based threats, why settle for less? Request[a demo today](https://start.paloaltonetworks.com/prisma-access-browser-demo) to experience the protection only Prisma Access Browser can deliver.

*** ** * ** ***

## Related Blogs

### [Data Security](https://www.paloaltonetworks.com/blog/category/data-security/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### The End of Data Leaks: Modern Data Security Begins in the Browser](https://origin-researchcenter.paloaltonetworks.com/blog/sase/the-end-of-data-leaks-modern-data-security-begins-in-the-browser/)

### [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Secure M\&As and Accelerate Time-to-Value with Prisma Access Browser](https://origin-researchcenter.paloaltonetworks.com/blog/sase/secure-mas-and-accelerate-time-to-value-with-prisma-access-browser/)

### [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Solving Encrypted Traffic Challenges with Prisma Access Browser](https://origin-researchcenter.paloaltonetworks.com/blog/sase/solving-encrypted-traffic-challenges-with-prisma-access-browser/)

### [Mobile Users](https://www.paloaltonetworks.com/blog/sase/category/mobile-users/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### Ensure Your Company's Business Continuity with Prisma Access Browser](https://origin-researchcenter.paloaltonetworks.com/blog/sase/ensure-your-companys-business-continuity-with-prisma-access-browser/)

### [Mobile Users](https://www.paloaltonetworks.com/blog/sase/category/mobile-users/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Secure BYOD with Prisma Access Browser for Mobile Devices](https://origin-researchcenter.paloaltonetworks.com/blog/sase/secure-byod-with-prisma-access-browser-for-mobile-devices/)

### [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Secure Browsing Demands More Than Extensions](https://origin-researchcenter.paloaltonetworks.com/blog/sase/secure-browsing-demands-more-than-extensions/)

### Subscribe to Sase Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language