Recognition proves enterprise browser security doesn’t require a new browser; Push wins by working with what’s already there

BOSTON: Push Security, the most powerful AI-native security tool in the browser, today announced it has been named Best Secure Enterprise Browser in The Hacker News’ inaugural Cybersecurity Stars Awards. The recognition underscores Push Security's differentiated approach to enterprise browser security. Rather than requiring organizations to replace the browsers their employees already use, Push deploys as a lightweight extension that transforms any browser into a high-fidelity telemetry source and real-time control point.

“The enterprise browser market has been dominated by vendors asking security teams to upend their entire browser infrastructure,” said Adam Bateman, CEO of Push Security. “Instead, we ensure every browser your team currently relies on is fully secured. Winning this award confirms the industry’s support for our approach.”

Enterprise browser security has historically forced a difficult choice: Accept the limited visibility of conventional browsers, or mandate a wholesale migration to a proprietary browser that employees resist and IT teams struggle to deploy. Push Security rejects that trade-off entirely.

By deploying as an extension via MDM, browser policy, or direct install, Push works across popular browsers - including Chrome, Edge, Firefox, Safari, and more - as well as emerging agentic browsers, like Comet, Atlas, and Dia. This means that hundreds of thousands of users can be protected in minutes with zero downtime, compared to months-long browser migration projects that often stall entirely.

Visibility that no other tool can match

Push operates directly inside the browser, capturing the signal that other security layers miss. This includes user input, rendered DOM, scripts, and pre-TLS client-side requests, telemetry that network tools, SWG proxies, and CASB solutions are architecturally blind to.

The result is the highest-fidelity visibility available at the browser layer, covering:

• Session events, file uploads and downloads, clipboard activity, credential submissions, and unsanctioned AI app usage
• AiTM phishing kits including Evilginx, Sneaky2FA, and Tycoon2FA
• Clipboard-injection campaigns such as ClickFix and ConsentFix
• Session hijacking via stolen tokens
• Malicious and unapproved extensions
• OAuth consent abuse
• Credential reuse from infostealer activity

When a threat is identified, Push acts immediately, blocking phishing attempts, preventing credential submission on unauthorized sites, and preventing malicious script downloads in real time, and all within the browser session, without waiting for a policy update or analyst intervention. This approach effectively shifts detection much earlier in the kill chain, preventing account and endpoint compromise before it can happen.

One platform, four use cases

Push consolidates what previously required multiple point solutions into a single browser extension, covering four distinct enterprise security use cases:

• Identity and shadow IT hardening: Enforcing credential hygiene and gaining visibility into unsanctioned SaaS usage
• AI visibility and control: Monitoring and governing employee use of AI tools and data inputs, including visibility and control over file uploads and downloads and clipboard activity, as well as unsanctioned AI app usage
• Detection and response: Real-time detection and response against the modern attacker TTPs that are the No. 1 source of breaches, combined with autonomous agentic threat hunting that identifies active campaigns and emerging threats and ships production-grade detections in minutes, not days
• DLP and insider threat investigations: Browser-layer telemetry and controls to prevent security incidents related to data loss and to provide the evidentiary record for browser activity that traditional DLP tools lack

The first AI-native agentic threat hunting in the secure enterprise browser category

Launched in May 2026, Push's agentic detection engine brings a capability that no other secure enterprise browser vendor offers: Autonomous agents that continuously ingest threat research, generate and test detection hypotheses against live browser telemetry, and deploy production-grade detections in minutes.

This agentic approach, fueled by a research team with deep red and blue team experience, has delivered a threefold increase in new-TTP detection volume in 2026 alone. Push researchers have been first to document and name emerging attack techniques, such as ConsentFix and InstallFix, and to track the massive increase this year in device code phishing campaigns, before they go mainstream. That intelligence feeds directly into the agents, ensuring detections reflect real attacker behavior rather than theoretical frameworks or outdated threat intelligence lists of static IOCs.

“We compete in the Secure Enterprise Browser market, but we've never lost sight of what matters to security teams: detection depth, not just browser features,” said Bateman. “With this recognition, it’s clear that the market is recognizing the difference.”

The company also recently announced it has been named to the 2026 Redpoint InfraRed 100 Report, an annual list recognizing ascendant private companies that are building the foundational infrastructure powering the next wave of AI innovation.

About Push Security

Push Security is the secure enterprise browser extension for security teams. Founded by red team and blue team experts, Push combines high-fidelity browser telemetry, real-time control, and autonomous agents to stop advanced attacks, secure AI usage, harden identities, and prevent data loss - all from your users’ existing browsers, no migration required. Push is backed by Decibel, GV (Google Ventures), Redpoint Ventures, Datadog Ventures, B3 Capital and other notable angel investors. For more information, visit https://pushsecurity.com or follow @pushsecurity.

About The Hacker News Cybersecurity Stars Awards

The Hacker News Cybersecurity Stars is an inaugural awards program recognizing outstanding innovation, impact, and leadership across the cybersecurity industry. Winners are selected based on technical differentiation, real-world effectiveness, and demonstrable customer outcomes. For more information on the awards program, visit: https://awards.thehackernews.com/.

Fonte: Business Wire