Work Moved Into the Browser. Security Didn’t. AI Is Exposing the Gap
Work Moved Into the Browser. Security Didn’t. AI Is Exposing the Gap
https://thehackernews.com/expert-insights/2026/04/work-moved-into-browser-security-didnt.html
Publish Date: 2026-04-27 01:33:00
Source Domain: thehackernews.com
The event that didn’t exist
At 2:14 p.m. on a Tuesday, an employee clicks a link.
If you reconstruct the moment from your security stack, nothing happened. A browser process opened an HTTPS connection. The certificate was valid. The destination wasn’t flagged. Traffic volume was unremarkable. No detections fired.
Inside the browser session, a different story was unfolding. The page that loaded looked like a routine CAPTCHA with “verify you’re human” framing, a prompt to complete a quick check to continue. The instructions told the user to press Windows+R, paste what had already been copied to their clipboard, and hit Enter. In the middle of a busy work day, they did.
What they pasted was a shell script. It executed in the user’s own context, with the user’s own permissions, as a deliberate action the user performed with their own hands.
Nothing about the browser session looked unusual. The page rendered normal web content. The clipboard write happened entirely inside the tab. The command ran on the endpoint as a legitimate user-initiated process. The EDR saw a shell executing under an authenticated user (indistinguishable from an admin running a troubleshooting script). And yet something meaningful had occurred: something present in every log, and absent from every interpretation.
This isn’t a detection failure. Each layer did exactly what it was designed to do. The problem is that the system answered the wrong question. (This is why I started Keep Aware)
The browser is a new kind of operating system
To see why that question disappeared, step back from security and look at how computing itself has changed.
The traditional operating system hasn’t gone anywhere. Windows is still Windows. macOS is still macOS. The kernel still schedules processes, and the file system still exists. But above that layer, something else has taken shape: an operating environment running inside the browser that now hosts most of what the business actually does.
The browser has…
