While much of the AI security discussion focuses on shadow AI and GenAI consumption, a significant vulnerability lies in AI browser extensions. A new report from **LayerX** highlights the depth of this issue, suggesting that AI extensions may be the most dangerous AI threat surface in your network that remains largely unaddressed. AI browser extensions bypass DLP systems and SaaS logs, residing within the browser itself. They have direct access to user activity, including what employees see, type, and remain logged into. AI extensions are reportedly 60% more likely to have vulnerabilities than average extensions, three times more likely to access cookies, 2.5 times more likely to execute remote scripts, and six times more likely to have increased permissions in the past year. These extensions can be installed rapidly and persist indefinitely. ## The Overlooked Browser Extension Threat A common misconception is that extensions are a niche risk, limited to specific users or edge cases. However, the report indicates that 99% of enterprise users have at least one browser extension installed, with over a quarter having more than ten. This is a widespread issue. Most organizations lack basic visibility into which extensions are in use, who installed them, their permissions, and the data they can access. While security teams have invested heavily in network, endpoint, and identity visibility, browser extensions remain a significant blind spot.  ## AI Extensions: A Hidden Consumption Channel While AI security efforts often target SaaS platforms and APIs, AI browser extensions represent a largely ignored channel. These tools are rapidly gaining popularity, with approximately one in six enterprise users already utilizing at least one AI extension.  Organizations may block or monitor direct access to AI applications, but extensions operate within the browser, accessing page content, user inputs, and session data without triggering traditional security controls. This creates an ungoverned layer of AI usage, bypassing visibility and policy enforcement. ## Elevated Risk Profile AI extensions pose a significantly higher risk compared to other extensions. They are 60% more likely to have a **CVE**, three times more likely to access cookies, 2.5 times more likely to have scripting permissions, and twice as likely to manipulate browser tabs.  Cookie access can expose session tokens, scripting enables data extraction and manipulation, and tab control can facilitate phishing or silent redirection. The combination of rapid adoption, elevated access, and weak governance makes AI extensions an emerging threat vector. ## Dynamic Nature of Extensions Security teams often treat extensions as static entities, but they evolve through updates, ownership changes, and permission expansions. The report indicates that AI extensions are nearly six times more likely to change their permissions over time, with over 60% of users having at least one AI extension that has changed permissions in the past year. This dynamic nature renders traditional allowlists ineffective, as an extension deemed safe yesterday may not be secure today.  ## Trust Deficit Security teams rely on trust signals such as publisher transparency, install counts, update frequency, and privacy policies to assess extensions. However, a significant portion of extensions have small user bases, with over 10% having fewer than 1,000 users. This is particularly concerning for AI extensions, where 33% have fewer than 5,000 users and nearly 50% have less than 10,000. Around 40% of extensions haven't been updated in over a year, suggesting they are no longer actively maintained and may contain unresolved vulnerabilities. Most extensions used in enterprise environments exhibit weak or missing trust signals, raising concerns about data handling and compliance.  ## Recommendations for CISOs The report provides actionable steps for security teams: 1. **Continuous Monitoring:** Implement continuous monitoring of browser extensions to identify and assess risks. 2. **Visibility and Control:** Gain visibility into the extensions used within your organization and establish controls to manage their permissions and access. 3. **Risk Assessment:** Conduct thorough risk assessments of AI extensions, considering their potential impact on data security and privacy. 4. **User Education:** Educate employees about the risks associated with browser extensions and promote safe browsing habits. By addressing the risks posed by AI browser extensions, organizations can significantly improve their overall security posture and mitigate potential threats.