LayerX: Enterprise Browser Security
  • Platform
  • Use Cases

    AI Usage Security

    AI Discovery

    Discover and enforce security guardrails on all AI apps 

    AI DLP

    Prevent leakage of sensitive data on AI tools

    AI Access Control

    Restrict user access to unsanctioned AI tools or accounts

    AI Misuse Prevention

    Protect against prompt injection, compliance violations, and more

    AI Browsers

    Protect AI browsers against attack and exploitation

    Enterprise Browser Security

    Web/SaaS DLP

    Threat Prevent data leakage across all web channels

    BYOD/Remote Access

    Secure SaaS remote access by contractors and BYOD

    Identity Protection

    Discover and secure corporate and personal SaaS identities

    Safe Browsing

    Detect and block risky browser extensions on any browser

    Shadow SaaS/SaaS Security

    Discover ‘shadow’ SaaS and enforce SaaS security controls

    Protect Against Malicious Browser Extensions

    Detect and block risky browser extensions on any browser

    LayerX Enterprise GenAI Security Report 2025

    The LayerX Enterprise GenAI Security Report 2025 offers one-of-a-kind insights on GenAI security risks in organizations.

    Download Now
  • Partners

    Partners

    Partners

    Partner program overview

    Technology Partners

    Explore LayerX integrations

     

    Google icon
    LayerX + Google Partnership
  • About Us

    About us

    About Us

    LayerX mission and leadership

    Newsroom

    Get updates about LayerX

    Events

    Learn which events we attend

     

    Careers

    Apply for open positions

    Contact Us

    Submit your inquiry

    LayerX Enterprise GenAI Security Report 2025

    The LayerX Enterprise GenAI Security Report 2025 offers one-of-a-kind insights on GenAI security risks in organizations.

    Download Now
  • Resources

    Resources

    LayerX Library

    Datasheets, whitepapers, case studies and more

    Glossary

    All the terminology you need to know

    Extensions Database

    Extensionpedia

    The browser extensions hub

    Blog & Podcast

    Our Blog

    Latest research, trends and company news

    Podcasts

    #1 podcast for browser security

     

    Enterprise Browser

    Browser Exploits Explained
    Secure Enterprise Browser
    Browser Extension Security Risks and Best Practices
    What is Browser Isolation?
    ChatGPT Security Risks

    AI Security

    What is AI usage control?
    What is GenAI Governance? Tips and Best Practices
    What is Generative AI Security?
    What is ChatGPT Data Leak?
    AI Data Breaches: Root Causes & Real-World Impact

    LayerX vs Competitors

    LayerX vs Island Enterprise Browser
    LayerX vs Prisma Access Browser
    LayerX vs Prisma Access Browser Extension
    LayerX vs Netskope SASE/SSE
    LayerX vs Netskope One Enterprise Browser
    LayerX vs Palo Alto SSE
  • Request a Demo
  • Login
Home Blog Anthropic’s DXT poses “critical RCE vulnerability” by running with full system privileges

Anthropic’s DXT poses “critical RCE vulnerability” by running with full system privileges

Noa Published - February 10, 2026

  • Share:
  • Share:
Noa

Noa

The All-in-One AI & Browser Security Platform

Browser Extension Management Web/SaaS DLP Identity Protection GenAI Security Shadow SaaS Safe Browsing Secure Access

Table of Contents

    Get the Latest from LayerX

    Related Resources

    CursorJacking: Every Cursor User Is Vulnerable to API Key Theft by Rogue Extensions
    Blog Post

    CursorJacking: Every Cursor User Is Vulnerable to API Key Theft by Rogue Extensions

    Cursor doesn’t store API keys in protected storage, meaning any extension can access them. Cursor knew about this vulnerability but didn’t fix it. Executive Summary LayerX security researchers have found that any extension of the popular AI development tool Cursor can access the developer’s API keys and session tokens, leading to full credential compromise, with […]

    Roy Paz - April 04, 2026 Read more
    Extension Developers Sell The Data of At Least 6.5 Million Users – And It’s All Completely Legal
    Blog Post

    Extension Developers Sell The Data of At Least 6.5 Million Users – And It’s All Completely Legal

    This isn’t a story about malware. Nobody hacked you. Nobody stole anything. The extensions you’re running right now may be selling your browsing data — and they told you they would. It’s right there in the privacy policy. Page 4. Paragraph 7. The one nobody reads.

    Dar Kahllon & Guy Erez - April 04, 2026 Read more
    StealTok: 130k Users Compromised by Data Stealing TikTok Video “Downloaders”
    Blog Post

    StealTok: 130k Users Compromised by Data Stealing TikTok Video “Downloaders”

      LayerX security researchers have uncovered a campaign of at least 12 interrelated browser extensions that masquerade as TikTok video downloaders but in reality track user activity and collect data. The extensions share a common codebase and are all clones or lightly modified versions of each other, indicating that this is a long-standing and persistent […]

    Natalie Zargarov - April 04, 2026 Read more
    LayerX Logo
    • Platform
    • Partners
    • Resources
      • LayerX Library
      • Blog
      • Glossary
      • Browser Security Explained
      • What is Browser Isolation?
      • What Are Enterprise Browsers?
    • Company
      • About Us
      • Careers
      • Vulnerability Disclosure Program
    Request Demo

    Copyright © 2026 LayerX Terms & Conditions Privacy Policy Vulnerability Disclosure Program