Follow ZDNET: Add us as a preferred source on Google.
ZDNET’s key takeaways
- AI browsers are too risky for adoption today, Gartner said.
- CISOs need to block them until existing security concerns are reduced.
- Automation is useful, but convenience shouldn’t replace security.
Businesses should steer clear of agentic browsers for now, analysts from research firm Gartner have warned.
Agentic browsers, otherwise known as AI browsers, are changing how we use browsers to access the internet, perform search queries, and manage workflows.
Also: Scammers are poisoning AI search results to steer you straight into their traps – here’s how
As AI has now embedded itself into almost every industry, it was only a matter of time before these technologies infiltrated the web browser market.
Not only are well-known browser developers exploring the benefits and potential applications of artificial intelligence in search functionality, user assistance, support, and security, but interest in agentic browsers has also led to a crop of smaller outfits appearing, with AI browsers now being offered from organizations including OpenAI and Perplexity.
Also: Are AI browsers worth the security risk? Why experts are worried
For research purposes, content summarization, and personalization, AI browsers can be beneficial. They can save you time and may increase your efficiency — but this doesn’t mean that every query LLM-based chat assistant’s answer is correct, nor does it mean that AI browsers are inherently secure.
In an analyst report and advisory dubbed “Cybersecurity Must Block AI Browsers for Now,” published earlier this month, as reported by The Register, Gartner analysts said that while agentic browsers have the potential to revolutionize how we interface with websites and perform online activities, they also introduce “critical cybersecurity risks.”
“CISOs must block all AI browsers in the foreseeable future to minimize risk exposure,” the research agency said.
(Disclosure: Ziff Davis, ZDNET’s parent company, filed an April 2025 lawsuit against OpenAI, alleging it infringed Ziff Davis copyrights in training and operating its AI systems.)
The risks of AI browsers, explained
According to analysts Dennis Xu, Evgeny Mirolyubov, and John Watts, the main issue is that “default AI browser settings prioritize user experience over security.”
As AI browsers are able to operate independently, interact with websites, and perform tasks on a user’s behalf, as well as display content that could prompt the user to take specific actions — even when this content is malicious — there are demonstrable risks to their use, in both a consumer and business context.
Also: I’ve been testing the top AI browsers – here’s which ones actually impressed me
For example, an AI chatbot could unintentionally interact with a malicious website, or an employee might submit confidential, sensitive corporate data to an AI assistant and be unaware of where this information is stored. If an AI’s cloud backend is not secure, this could eventually result in a data breach or security incident that places businesses at risk.
In addition, Gartner said that employees could be tempted to use AI browsers or assistants to automate repetitive tasks. While AI can benefit workflows and improve efficiency, using it in this way may also have unintended effects — such as a member of staff using it to complete cybersecurity training while not learning anything at all.
Why it matters
Gartner is far from the only organization raising the alarm about the potential cybersecurity implications of AI browsers and assistants.
Security experts are watching the AI browser evolution closely and have warned us of many potential cybersecurity challenges involved in regulating them, including the emergence of prompt injection attacks, personal data theft and exposure, and the increased risk of surveillance that compromises our personal security.
Gartner recommends that businesses conduct risk assessments on AI solutions as well as any associated backend systems, as such security audits can reveal whether or not AI browsers are deemed an acceptable security risk. Considering how new and untried they are, the answer is likely no.
Also: Use an AI browser? 5 ways to protect yourself from prompt injections – before it’s too late
If this is the case, Gartner said that CISOs should consider blocking AI browser use entirely. However, in either case, employees should be trained on the dangers of relying too heavily on AI — and why they shouldn’t part with sensitive information when they are interacting with AI programs.
“While agentic browsers promise many features to enhance user experience, we are still in early stages where the risks are not well understood and default configurations prioritise convenience over security, something we see in many technologies,” commented Javvad Malik, lead security awareness advocate at KnowBe4. “However, blanket bans are rarely sustainable long-term strategies. Instead, the focus should be on risk assessments that evaluate the specific AI services powering these browsers. This can allow for measured adoption while maintaining necessary oversight.”
Comments are closed, but trackbacks and pingbacks are open.