Cybersecurity News in Asia

RECENT STORIES:

SEGA moves faster with flow-based network monitoring
Resilience the true benchmark for smart infrastructure
Vast foreign-run cybercrime networks taken down in Africa
Cybercriminals take quishing to new heights with split/nested maliciou...
Frost & Sullivan Honors NEC’s Scalable and Automation-First ...
Why human mistakes remain critical weak points amid the rise of AI-pow...
LOGIN REGISTER
CybersecAsia
  • Features
    • Featured

      Resilience the true benchmark for smart infrastructure

      Resilience the true benchmark for smart infrastructure

      Wednesday, August 27, 2025, 8:21 PM Asia/Singapore | Features, IoT Security
    • Featured

      Deepfake a crisis of trust, not just technology

      Deepfake a crisis of trust, not just technology

      Tuesday, August 19, 2025, 10:06 AM Asia/Singapore | Features
    • Featured

      When talking sense into AI power mongers fails, talk $$$: A message from AI

      When talking sense into AI power mongers fails, talk $$$: A message from AI

      Thursday, August 14, 2025, 12:26 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2025
  • Directory
  • E-Learning

Select Page

LOGIN REGISTER
  • Features
    • Featured

      Resilience the true benchmark for smart infrastructure

      Resilience the true benchmark for smart infrastructure

      Wednesday, August 27, 2025, 8:21 PM Asia/Singapore | Features, IoT Security
    • Featured

      Deepfake a crisis of trust, not just technology

      Deepfake a crisis of trust, not just technology

      Tuesday, August 19, 2025, 10:06 AM Asia/Singapore | Features
    • Featured

      When talking sense into AI power mongers fails, talk $$$: A message from AI

      When talking sense into AI power mongers fails, talk $$$: A message from AI

      Thursday, August 14, 2025, 12:26 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2025
  • Directory
  • E-Learning
Sponsored

The End of Secure Web Gateways: Why Enterprises Must Look Beyond The Network Layer to Secure Employee Browsing

By SquareX | Friday, November 8, 2024, 3:11 PM Asia/Singapore

The End of Secure Web Gateways: Why Enterprises Must Look Beyond The Network Layer to Secure Employee Browsing

Secure Web Gateways (SWGs) have long been the guardian of the web in enterprise security. However, as cyber threats evolve, with more and more client side web attacks occurring in the wild, these legacy systems are proving increasingly ineffective, leaving organisations exposed. In the age of SaaS and browser-centric work environments, SWGs are struggling to keep up, particularly with the rise of Last Mile Reassembly Attacks.

Last Mile Reassembly Attacks exploit the fundamental limitations of SWGs by assembling malicious payloads within the user’s browser, beyond the reach of network-level inspections. By leveraging techniques such as file chunking, encryption, and encoding when sending data through the network attackers can evade detection and deliver even known malicious payloads directly to the target’s device. SWGs, which were designed to monitor and filter network traffic, lack the application-layer context needed to detect and prevent these client-side threats.

The flaws inherent in SWGs are not just theoretical. Research conducted by the SquareX team has demonstrated that all major SWGs, including those in Gartner’s Magic Quadrant for SASE/SSE, are vulnerable to these evasion techniques. Jointly coined as ‘Last Mile Reassembly Attacks’, SquareX researchers documented more than 30 evasion techniques that might have already been exploited in the wild for some time. Each of them tap on a vulnerability of SWGs. They have also set up a website for anybody, including vendors, to test the efficiency of their SWGs against these Last Mile Reassembly Attacks. The results are clear: SWGs, as they exist today, are no longer sufficient to protect enterprises from modern web threats.

The solution against these attacks lies in adopting a browser-native security approach, which operates directly within the browser and has the visibility necessary to monitor and mitigate threats at the application layer. Solutions like SquareX, provide a robust defence against Last Mile Reassembly Attacks and other advanced threats, by leveraging rich browser data such as DOM changes, browser events, session data, user interactions and feeding it to their detection algorithms, all from within the browser itself.

As enterprises continue to rely more heavily on SaaS applications, most of which are accessed via a browser, it is important for enterprises and vendors to reassess their security framework. Clinging to outdated SWG technology could leave organisations vulnerable to attacks that are easily preventable with modern, browser-native security solutions. The era of Secure Web Gateways is over—it’s time to look beyond the network layer and secure the browser where the real threats now reside.

Test your Secure Web Gateway against these evasion techniques at https://browser.security/

About SquareX:
SquareX helps organizations detect, mitigate and threat-hunt client-side web attacks happening against their users in real time.

SquareX’s industry-first Browser Detection and Response (BDR) solution, takes an attack-focused approach to browser security, ensuring enterprise users are protected against advanced threats like malicious QR Codes, Browser-in-the-Browser phishing, macro-based malware and other web attacks encompassing malicious files, websites, scripts, and compromised networks.

With SquareX, enterprises can provide contractors and remote workers with secure access to internal applications, enterprise SaaS, and convert the browsers on BYOD / unmanaged devices into trusted browsing sessions. 

For more information, visit http://www.sqrx.com

Share:

PreviousDriving Innovation and Security in the Future of Finance in Singapore
NextHikvision unveils a new range of one-stop SMB solutions – making it easier for installers to grow their business

Related Posts

Whitepaper: IT and OT Infrastructure Cybersecurity Threats

Whitepaper: IT and OT Infrastructure Cybersecurity Threats

Friday, June 24, 2022

2021 Cloud Protection Trends Report

2021 Cloud Protection Trends Report

Tuesday, November 23, 2021

Maximize the ROI of detection and response

Maximize the ROI of detection and response

Thursday, January 14, 2021

Sensitive data protection in the retail card payments ecosystem

Sensitive data protection in the retail card payments ecosystem

Tuesday, August 25, 2020

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
previous arrow
next arrow

CybersecAsia Voting Placement

Gamification listing or Participate Now

PARTICIPATE NOW

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

  • 2024 Insider Threat Report: Trends, Challenges, and Solutions

    2024 Insider Threat Report: Trends, Challenges, and Solutions

    Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
  • AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    The future of cybersecurity is a perfect storm: AI-driven attacks, cloud expansion, and the convergence …Download Whitepaper
  • Data Management in the Age of Cloud and AI

    Data Management in the Age of Cloud and AI

    In today’s Asia Pacific business environment, organizations are leaning on hybrid multi-cloud infrastructures and advanced …Download Whitepaper
  • Mitigating Ransomware Risks with GRC Automation

    Mitigating Ransomware Risks with GRC Automation

    In today’s landscape, ransomware attacks pose significant threats to organizations of all sizes, with increasing …Download Whitepaper

Middle-sidebar-banner

Case Studies

  • CISOs can navigate emerging risks from autonomous AI with a new security framework

    CISOs can navigate emerging risks from autonomous AI with a new security framework

    See how security leaders can adopt layered strategies addressing intent, governance, and oversight to manage …Read more
  • MoneyMe strengthens fraud prevention and credit decisioning

    MoneyMe strengthens fraud prevention and credit decisioning

    Australian fintech strengthens risk management with SEON to scale lending operations securely and efficiently.Read more
  • PT Kereta Api Indonesia announces nationwide email and communication overhaul

    PT Kereta Api Indonesia announces nationwide email and communication overhaul

    The state railway operator’s upgraded email system improves privacy, operational reliability, and regulatory alignment for …Read more
  • Operationalizing sustainability in cybersecurity: Group-IB’s approach

    Operationalizing sustainability in cybersecurity: Group-IB’s approach

    See how the firm turned malware-group takedowns into measurements of sustainability and resilience gains: by …Read more

Bottom sidebar

  • Our Brands
  • DigiconAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2025 CybersecAsia All Rights Reserved.