LayerX Security

From Counterintelligence to CRO!??? Excited to announce?Jarrett Kolthoff?as LayerX Security's new Chief Revenue Officer. Jarrett, a former U.S. Army Counterintelligence Agent and?previously?CEO of SpearTip (acquired by Zurich Insurance)! Jarrett?brings deep expertise in cyber intrusion, enterprise security, and global threat intelligence. Welcome aboard, Jarrett! Looking forward to driving growth together at LayerX.?

Your employees love GenAI tools—but hidden risks could threaten your security posture. Join our upcoming webinar to unpack the challenges of Shadow AI and learn actionable steps to mitigate GenAI security risks. ? Multiple sessions available ?? Reserve your spot: https://lnkd.in/dEMeKG9z

Ready for a taste of San Francisco’s hidden gems? We’re hosting an exclusive Food & Drink Walking Tour in Little Italy—just for RSAC attendees! Get ready to: ?? Discover family-owned eateries & savor authentic Italian bites ?? Sip on local wines and craft beers ?? Enjoy stunning views of Coit Tower and the Transamerica Pyramid ?? Compete in a fun challenge for a chance to win a unique wine prize When & Where: April 27, April 28, or May 1 6:30 PM – 8:30 PM in North Beach (Little Italy) Spots are limited. Reserve yours now and make your RSAC experience unforgettable! https://lnkd.in/dsgUm6DY

This International Women's Day, we chose to celebrate in a way that connects to our values and honors women in every field. At?LayerX Security, we organized an internal event where we took the time to engage in an open and honest conversation with women within our organization. We joined a fascinating session with?Lilach Nir Canetti, our VP HR and?Inbar Ries, our VP of Product, who spoke candidly about what it's like to be a woman today, the considerations, challenges, and opportunities along the way. It was important for us to dive deep into the journey we’re on as a company — to hear the voices of women, understand where we strive to go, and the steps we need to take to continue fostering a supportive, diverse, and empowering environment. This day has immense power, and it gives us the opportunity to uplift one another and remember that there’s still work to be done.

Coming to RSAC????? LayerX invites you to a?free walking Food & Alcohol tour?in Little Italy, San Francisco, exclusively for RSAC attendees. Explore family-owned restaurants, indulge in wine, beer, pizza, pasta, cannoli, and more, and enjoy stunning views of Coit Tower and the Transamerica Pyramid. Plus, you could win a unique bottle of wine during our fun competition! ?? ?? Dates: April 27, April 28, and May 1 ? Time: 18:30–20:30 Spots are limited—don’t miss out! Save your spot now. https://lnkd.in/dsgUm6DY #RSAC2025

16 Malicious Extensions, 3 Million Victims - #NoPhishingMonday Last week, reports emerged of a newly-discovered attack campaign, identified by GitLab, involving 16 malicious browser extensions that were used for click fraud and advertising fraud, impacting over 3 million users worldwide. While Google removed these extensions from the Chrome Store, removal from the Chrome Store does not automatically disable existing active instances of extensions installed in users’ browsers. Upon discovery, LayerX immediately updated security rules to classify these 16 extensions as malicious and deployed rules to block/disable them in employees’ browsers. Incidents like this demonstrate the growing need for browser-based security controls to actively manage browser extensions and protect against malicious/compromised ones. For organizations concerned about browser extension management, LayerX offers a free browser extension audit to get a snapshot of their extension threat surface and the risk associated with it. Click below to get your audit started today! https://lnkd.in/dKj-Hrgk Below: the list of compromised browser extensions, from the GitLab blog post.

AI has taken the world by storm. ??? Or has it? ?? No one really knows, because actual hard data about #GenAI use is hard to find. Until now.? Based on our full visibility into how users consume GenAI services in web browsers, we know how GenAI is being used, by whom, how corporate data is being shared, and more. And we’ve put it all in a report, available for you to download and use when you make your business and security planning for the upcoming year(s). Read and discover: ?? How many employees use AI, and what types of users use it the most ?? Which AI SaaS applications are the most popular ?? How big of a problem is ‘shadow AI’ (spoiler: it’s big) ?? How users share data with LLMs, And more… Check out the report below ?? https://lnkd.in/dUbVmj2g

??Last call?? Tomorrow in our next webinar, we will host browser extension security expert Matt Frisbie. We will dive deep into the risks associated with browser extensions and discuss actionable practices for minimizing these risks. ? Multiple sessions available https://lnkd.in/digVAeW6

"Till death do us part?" Choosing your web browser should not be a lifelong commitment.?Don’t?settle for security OR choice. Why not have both?

#NoPhishingMonday - Microsoft In recent months, LayerX has been tracking a phishing campaign masquerading as Microsoft security alerts, targeting organizational users in an attempt to steal user credentials and passwords. This campaign has been so effective that Microsoft even added “anti-scareware” capabilities into its Edge browser (not other browsers, however??). There are a number of evasion techniques used by these attacks that make them particularly difficult to stop: ?? Public Hosting on Windows.net: Hides behind Microsoft’s high domain reputation to evade Secure Web Gateways (SWGs). ?? Randomized Subdomains: Constantly changing domains make blocking efforts ineffective. ?? Valid HTTPS Certificates: Tricks browser protections by appearing secure. ?? Anti-Bot Protections: Prevents automated scans from flagging malicious sites. ?? Low Traffic Volume: Targets specific enterprise users, staying under threat detection radars. How do we protect our customers: LayerX includes a built-in, automatic anti-phishing engine that has been highly effective in stopping these attacks, even without Microsoft’s new protections (or on other browsers not protected by Microsoft…). Our AI-driven anti-phishing engine analyzes over 250 parameters per page, detecting and blocking these threats in real-time. Stay ahead of evolving phishing campaigns—contact LayerX to secure your organization today!