You can only catch so much at the edge and DNS level. Browser extension catches the stragglers that get through. But we’ve mitigated virtually all browser induced malware possibilities by just moving to cloud-based internet isolation. It’s similar to what the DoD uses, if anyone’s familiar with their use case: https://www.bylight.com/wp-content/uploads/2020/09/CBII_2020-2025.pdf
I’m not always working in the office, and they’ve asked us to connect to VPN only if we need access to the internal network. Email and Teams work without VPN, but now you want me to log in for web access? A browser blocker is better imo.
A good IT is blocking ads at a company-level. Browser extensions wouldn’t matter, and in fact, shouldn’t be allowed for the same reason.
You can only catch so much at the edge and DNS level. Browser extension catches the stragglers that get through. But we’ve mitigated virtually all browser induced malware possibilities by just moving to cloud-based internet isolation. It’s similar to what the DoD uses, if anyone’s familiar with their use case: https://www.bylight.com/wp-content/uploads/2020/09/CBII_2020-2025.pdf
Even with CBII ads still make the internet cancerous to even look at
Oh for sure, but with CBII, malicious ads can’t exploit a vulnerability and infect your local system.
I’m not always working in the office, and they’ve asked us to connect to VPN only if we need access to the internal network. Email and Teams work without VPN, but now you want me to log in for web access? A browser blocker is better imo.