Zscaler acquires SquareX to extend Zero Trust controls into browsers

· Source: Tech Monitor · Field: Technology & Digital — Cybersecurity & Data Privacy, Cloud Computing & IT Infrastructure · Depth: Intermediate, short

Summary

Zscaler, a Nasdaq-listed cloud-native cybersecurity company, has acquired San Francisco-based SquareX to enhance its Zero Trust controls within web browsers. The acquisition aims to secure access from unmanaged and third-party devices by integrating SquareX's Browser Detection and Response (BDR) product into Zscaler's Zero Trust Browser platform. SquareX's technology uses lightweight browser extensions across common browsers like Google Chrome and Microsoft Edge to monitor and respond to client-side threats, providing real-time detection and visibility into in-browser events. This move addresses the security gap presented by web applications becoming primary enterprise execution environments and offers an alternative to legacy VPNs and VDIs for securing SaaS and private applications, including support for work profiles, data loss prevention, and device posture checks on BYOD endpoints. Zscaler previously acquired AI security platform SplxAI and MDR provider Red Canary in the last year.

Key takeaway

For IT professionals and security engineers managing distributed environments with unmanaged or BYOD endpoints, Zscaler's acquisition of SquareX signals a shift towards browser-centric Zero Trust security. You should evaluate how integrated browser threat detection and response, coupled with granular access controls, can replace legacy VPNs/VDIs and enhance data protection without requiring full endpoint agents or third-party browsers.

Key insights

Integrating browser-level security with Zero Trust principles enhances protection for web applications and unmanaged devices.

Principles

Method

SquareX's BDR product integrates as a lightweight browser extension, providing real-time threat detection, response, and visibility into in-browser events, while enabling least-privilege access controls for SaaS and private applications.

In practice

Topics

Best for: Executive, Investor, Security Engineer, IT Professional, CTO

Related on AIssential

Open in AIssential →

Editorial summary, takeaway, and curation by AIssential. Original article published by Tech Monitor.