In this episode of The Abhisek Cast, we explore one of the most overlooked but highly targeted layers of modern cybersecurity: the browser.
Joining us is Dakshitaa Babu, a Security Researcher and Product Evangelist at SquareX, who brings a fresh and practical perspective on the evolving threat landscape inside browsers. She explains how attackers abuse browser functionality, why traditional security tools fall short, and how developers and defenders alike can better prepare.
If you’ve ever used browser extensions, clicked on an ad, or granted notification permissions, this episode is for you.
What we cover in this episode:
The browser as an active and often exploited attack surface
Real-world examples of browser-native ransomware and fileless attacks
The mechanics behind Browser-in-Browser (BiB) and fullscreen spoofing attacks
How browser extensions can misuse permissions and lead to data leaks
AI-related data exfiltration risks through third-party tools
The importance of secure-by-design thinking during development
Challenges of building custom enterprise browsers
Tips for aspiring researchers entering the browser security space
Observations from the field: misconfigurations, CVEs, and bypass techniques
Building a career in browser security and Dakshitaa’s experience at SquareX
About the Guest:Dakshitaa Babu is a Security Researcher and Product Evangelist at SquareX. With a background in analytics, venture capital, and data engineering, she brings a cross-disciplinary mindset to offensive research and browser-based defense. She actively contributes to building one of the industry’s first Browser Detection and Response (BDR) platforms, pushing boundaries in real-time web threat prevention.
This episode is packed with insights for developers, product teams, security professionals, and researchers who want to understand the future of browser threats and how to build resilience against them.
Also available on:
