[{"data":1,"prerenderedAt":3170},["ShallowReactive",2],{"application-flags":3,"navbar":7,"always-visible-banner":95,"navbar-about-highlight":155,"navbar-resource-highlight":211,"use-case-page":256,"blog/product-release-november-2025":1276},[4],{"name":5,"enabled":6},"maintenanceMode",false,[8,59,76],{"createdDate":9,"id":10,"name":11,"modelId":12,"published":13,"stageModifiedSincePublish":6,"query":14,"data":15,"variations":50,"lastUpdated":51,"firstPublished":52,"testRatio":33,"createdBy":53,"lastUpdatedBy":53,"folders":54,"meta":55,"rev":58},1742213002749,"efff2a27faf4408e9f908eba4b5542fe","inductive-automation","1c6207a5f24948ab82d4a0b17f251193","published",[],{"testimonial":16,"description":43,"type":19,"link":44,"title":47,"testimonialLink":48,"image":49},{"@type":17,"id":18,"model":19,"value":20},"@builder.io/core:Reference","f028f2b685bb47cd8bf9e82a26dd5a79","testimonial",{"query":21,"folders":22,"createdDate":23,"id":18,"name":24,"modelId":25,"published":13,"data":26,"variations":30,"lastUpdated":31,"firstPublished":32,"testRatio":33,"createdBy":34,"lastUpdatedBy":34,"meta":35,"rev":42},[],[],1735823466309,"We found Push to be more accurate when compared to competitors and the browser agent offered features that others couldn’t match.","42035571a56940ac98bff4544aa79aa5",{"author":27,"jobTitle":28,"quote":24,"image":29},"Jason Waits","\u003Cp>CISO at Inductive Automation\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Ff04c0c0689ce4a89ac0f0708d78c0a07",{},1735910703862,1735823501152,1,"ST0tXQM8slWpFrmioqKHmENB2qe2",{"kind":36,"lastPreviewUrl":37,"breakpoints":38,"hasAutosaves":41},"data","",{"small":39,"medium":40},640,768,true,"3v32gocrrqz","Join the industry's top security minds as they break down the browser attack landscape.",{"url":45,"text":46},"https://pushsecurity.com/webinar/state-of-browser-security","Save Your Spot","State of Browser Attacks Series","/customer-stories/inductive-automation","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fe94fca10aa7b46ac8052b7ea22de54cd",{},1776257019270,1742221533648,"CydmZnOWU1XuAaLhEDCoYNM4Z8W2",[],{"breakpoints":56,"kind":36,"lastPreviewUrl":37,"hasAutosaves":6},{"xsmall":57,"small":39,"medium":40},320,"motto9r9yg",{"createdDate":60,"id":61,"name":62,"modelId":12,"published":13,"query":63,"data":64,"variations":69,"lastUpdated":70,"firstPublished":71,"testRatio":33,"createdBy":53,"lastUpdatedBy":72,"folders":73,"meta":74,"rev":58},1742208588866,"1c7a4e423bf54ac1a328bb4063459ef2","Banner",[],{"type":65,"url":66,"text":67,"link":68},"web-banner","https://pushsecurity.com/resources/browser-attacks-report","Get our latest report analyzing browser attack techniques in 2026",{},{},1774258294825,1742208637545,"jKjF9r5jcvXU8tzZEfFQm31Iyvr2",[],{"kind":36,"lastPreviewUrl":37,"breakpoints":75,"hasAutosaves":41},{"xsmall":57,"small":39,"medium":40},{"createdDate":77,"id":78,"name":79,"modelId":12,"published":13,"stageModifiedSincePublish":6,"query":80,"data":81,"variations":89,"lastUpdated":90,"firstPublished":91,"testRatio":33,"createdBy":53,"lastUpdatedBy":53,"folders":92,"meta":93,"rev":58},1742208469288,"6763051b201f44a0838c6400c580ca67","Resource highlight",[],{"image":82,"type":83,"description":84,"link":85,"title":88},"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F7b4a5ebf81d64e8c9d7fc35f6c96c4a9","resource","Learn about the latest techniques being used in the wild.",{"url":86,"text":87},"/resources/browser-attacks-report","Download now","Report: 2026 Browser Attack Techniques",{},1776255866789,1742208570400,[],{"kind":36,"lastPreviewUrl":37,"breakpoints":94,"hasAutosaves":6},{"xsmall":57,"small":39,"medium":40},{"createdDate":96,"id":97,"name":98,"modelId":99,"published":13,"query":100,"data":101,"variations":145,"lastUpdated":146,"firstPublished":147,"testRatio":33,"createdBy":34,"lastUpdatedBy":148,"folders":149,"meta":150,"rev":154},1774965361051,"fd266d0172cc47429be7ad10f48c99ad","always visible banner","0678d178ec8b41efb8a23c09dba7874d",[],{"ctaText":102,"text":103,"url":37,"blocks":104,"state":141},"ewrererw","testrfesssssssssss",[105,129],{"@type":106,"@version":107,"id":108,"component":109,"responsiveStyles":119},"@builder.io/sdk:Element",2,"builder-ca12c06a52de41d7b8743da53118cd38",{"name":110,"tag":110,"options":111,"isRSC":118},"TopBannerContent",{"text":112,"ctaText":46,"url":45,"mainText":113,"cta":116},"New Webinar Series: Join John Hammond, Troy Hunt, and Matt Johansen for the State of Browser Attacks",{"content":114,"fontSize":115},"\u003Cp>New Webinar Series: Join John Hammond, Troy Hunt, and Matt Johansen for the State of Browser Attacks\u003C/p>","text-base",{"content":117,"fontSize":115,"url":45},"\u003Cp>\u003Cstrong style=\"font-weight:700;\">Save Your Spot\u003C/strong>\u003C/p>\n",null,{"large":120},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"marginTop":126,"marginBottom":126,"fontSize":127,"fontWeight":128},"flex","column","relative","0","border-box",".56rem","1.125rem","700",{"id":130,"@type":106,"tagName":131,"properties":132,"responsiveStyles":136},"builder-pixel-08zrjigffq5t","img",{"src":133,"aria-hidden":134,"alt":37,"role":135,"width":124,"height":124},"https://cdn.builder.io/api/v1/pixel?apiKey=f3a1111ff5be48cdbb123cd9f5795a05","true","presentation",{"large":137},{"height":124,"width":124,"display":138,"opacity":124,"overflow":139,"pointerEvents":140},"block","hidden","none",{"deviceSize":142,"location":143},"large",{"path":37,"query":144},{},{},1775137295127,1774968080803,"ax7YYfD0OCeqT1Vxxv1G4FUbqVr1",[],{"breakpoints":151,"hasLinks":6,"kind":152,"lastPreviewUrl":153,"hasAutosaves":6},{"xsmall":57,"small":39,"medium":40},"component","https://pushsecurity.com/?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditCode%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CeditProjects%2CmodifyMcpServers%2CmodifyWorkflowIntegrations%2CmodifyProjectSettings%2CconnectCodeRepository%2CcreateProjects%2CindexDesignSystems%2CsendPullRequests%2CmergePullRequests&builder.user.role.name=Developer&builder.user.role.id=developer&builder.cachebust=true&builder.preview=always-visible-banner&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.always-visible-banner=fd266d0172cc47429be7ad10f48c99ad&builder.overrides.fd266d0172cc47429be7ad10f48c99ad=fd266d0172cc47429be7ad10f48c99ad&builder.options.locale=Default","2lvuonnywj",[156,180],{"createdDate":157,"id":158,"name":159,"modelId":160,"published":13,"stageModifiedSincePublish":6,"query":161,"data":162,"variations":173,"lastUpdated":174,"firstPublished":175,"testRatio":33,"createdBy":53,"lastUpdatedBy":53,"folders":176,"meta":177,"rev":179},1776247359804,"9136a8f18b3b4a6ba29b8653a99372b1","testimonial-inductive-automation","20d9eaa352304613b3d1a794b400703d",[],{"link":163,"type":19,"testimonialLink":48,"testimonial":164},{},{"@type":17,"id":18,"model":19,"value":165},{"query":166,"folders":167,"createdDate":23,"id":18,"name":24,"modelId":25,"published":13,"data":168,"variations":169,"lastUpdated":31,"firstPublished":32,"testRatio":33,"createdBy":34,"lastUpdatedBy":34,"meta":170,"rev":172},[],[],{"author":27,"jobTitle":28,"quote":24,"image":29},{},{"kind":36,"lastPreviewUrl":37,"breakpoints":171,"hasAutosaves":41},{"small":39,"medium":40},"7t755zfvte3",{},1776247404986,1776247404973,[],{"breakpoints":178,"kind":36,"lastPreviewUrl":37,"hasAutosaves":6},{"xsmall":57,"small":39,"medium":40},"4moh0qpywtr",{"createdDate":181,"id":182,"name":88,"modelId":160,"published":13,"meta":183,"stageModifiedSincePublish":6,"query":185,"data":186,"variations":207,"lastUpdated":208,"firstPublished":209,"testRatio":33,"createdBy":53,"lastUpdatedBy":53,"folders":210,"rev":179},1776255761419,"05a9322735fc427db12e2740e4302300",{"breakpoints":184,"kind":36,"lastPreviewUrl":37,"hasAutosaves":6},{"xsmall":57,"small":39,"medium":40},[],{"testimonial":187,"link":206,"type":83,"title":88,"description":84,"image":82},{"@type":17,"id":188,"model":19,"value":189},"192acbb1f9ca4cac918c0ec435a8bae3",{"query":190,"folders":191,"createdDate":192,"id":188,"name":193,"modelId":25,"published":13,"data":194,"variations":200,"lastUpdated":201,"firstPublished":202,"testRatio":33,"createdBy":34,"lastUpdatedBy":53,"meta":203,"rev":205},[],[],1728981467463,"Push does for identity what CrowdStrike did for the endpoint",{"video":195,"jobTitle":196,"author":197,"qoute":37,"quote":198,"image":199},"https://cdn.builder.io/o/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F8b30e8ca50064058bbaef0f3c6164575%2Fcompressed?apiKey=f3a1111ff5be48cdbb123cd9f5795a05&token=8b30e8ca50064058bbaef0f3c6164575&alt=media&optimized=true","\u003Cp>Deputy CISO at Microsoft\u003C/p>\u003Cp>Former LinkedIn, Slack, Palantir\u003C/p>","Geoff Belknap","Push does for identity what CrowdStrike did for the endpoint.","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F748f0ad0a5064a00a13f4721fcc8dea1",{},1742902158597,1728981782923,{"kind":36,"lastPreviewUrl":37,"breakpoints":204,"hasAutosaves":41},{"small":39,"medium":40},"6s8ic0w0ao6",{"text":87,"url":86},{},1776255810913,1776255810900,[],[212,235],{"createdDate":213,"id":214,"name":88,"modelId":215,"published":13,"meta":216,"stageModifiedSincePublish":6,"query":218,"data":219,"variations":230,"lastUpdated":231,"firstPublished":232,"testRatio":33,"createdBy":53,"lastUpdatedBy":53,"folders":233,"rev":234},1776256900280,"1f429607996e4e5fae8fe3f9b9610e55","4829faa81e7c4ee8bd2d000e160e8d3c",{"breakpoints":217,"kind":36,"lastPreviewUrl":37,"hasAutosaves":6},{"xsmall":57,"small":39,"medium":40},[],{"testimonial":220,"link":229,"type":83,"title":88,"description":84,"image":82},{"@type":17,"id":188,"model":19,"value":221},{"query":222,"folders":223,"createdDate":192,"id":188,"name":193,"modelId":25,"published":13,"data":224,"variations":225,"lastUpdated":201,"firstPublished":202,"testRatio":33,"createdBy":34,"lastUpdatedBy":53,"meta":226,"rev":228},[],[],{"video":195,"jobTitle":196,"author":197,"qoute":37,"quote":198,"image":199},{},{"kind":36,"lastPreviewUrl":37,"breakpoints":227,"hasAutosaves":41},{"small":39,"medium":40},"r77qqueuo3j",{"text":87,"url":86},{},1776256937553,1776256937540,[],"q0jkez80wkg",{"createdDate":236,"id":237,"name":11,"modelId":215,"published":13,"stageModifiedSincePublish":6,"query":238,"data":239,"variations":250,"lastUpdated":251,"firstPublished":252,"testRatio":33,"createdBy":53,"lastUpdatedBy":53,"folders":253,"meta":254,"rev":234},1776256949234,"ce043785b71b4ece98eac811ecf4ba10",[],{"link":240,"type":19,"testimonial":241,"testimonialLink":48},{},{"@type":17,"id":18,"model":19,"value":242},{"query":243,"folders":244,"createdDate":23,"id":18,"name":24,"modelId":25,"published":13,"data":245,"variations":246,"lastUpdated":31,"firstPublished":32,"testRatio":33,"createdBy":34,"lastUpdatedBy":34,"meta":247,"rev":249},[],[],{"author":27,"jobTitle":28,"quote":24,"image":29},{},{"kind":36,"lastPreviewUrl":37,"breakpoints":248,"hasAutosaves":41},{"small":39,"medium":40},"mnaneamy308",{},1776256974140,1776256974130,[],{"breakpoints":255,"kind":36,"lastPreviewUrl":37,"hasAutosaves":6},{"xsmall":57,"small":39,"medium":40},[257,441,560,679,797,917,1037,1157],{"createdDate":258,"id":259,"name":260,"modelId":261,"published":13,"stageModifiedSincePublish":6,"query":262,"data":268,"variations":429,"lastUpdated":430,"firstPublished":431,"testRatio":33,"screenshot":432,"createdBy":34,"lastUpdatedBy":433,"folders":434,"meta":435,"rev":440},1744829487099,"387451215c314dd5bd654668cdc1a197","Zero-day phishing","cca4143377554c5a9163cc203a8ed2ba",[263],{"@type":264,"property":265,"operator":266,"value":267},"@builder.io/core:Query","urlPath","is","/uc/zero-day-phishing-protection",{"inputs":269,"customFonts":270,"seoTitle":318,"title":318,"tsCode":37,"seoDescription":319,"fontAwesomeIcon":320,"jsCode":37,"blocks":321,"url":267,"state":426},[],[271],{"family":272,"kind":273,"version":274,"lastModified":275,"files":276,"category":295,"menu":296,"subsets":297,"variants":300},"DM Sans","webfonts#webfont","v14","2023-07-13",{"100":277,"200":278,"300":279,"500":280,"600":281,"700":282,"800":283,"900":284,"800italic":285,"900italic":286,"700italic":287,"100italic":288,"italic":289,"regular":290,"200italic":291,"500italic":292,"300italic":293,"600italic":294},"https://fonts.gstatic.com/s/dmsans/v14/rP2tp2ywxg089UriI5-g4vlH9VoD8CmcqZG40F9JadbnoEwAop1hTmf3ZGMZpg.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2tp2ywxg089UriI5-g4vlH9VoD8CmcqZG40F9JadbnoEwAIpxhTmf3ZGMZpg.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2tp2ywxg089UriI5-g4vlH9VoD8CmcqZG40F9JadbnoEwA_JxhTmf3ZGMZpg.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2tp2ywxg089UriI5-g4vlH9VoD8CmcqZG40F9JadbnoEwAkJxhTmf3ZGMZpg.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2tp2ywxg089UriI5-g4vlH9VoD8CmcqZG40F9JadbnoEwAfJthTmf3ZGMZpg.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2tp2ywxg089UriI5-g4vlH9VoD8CmcqZG40F9JadbnoEwARZthTmf3ZGMZpg.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2tp2ywxg089UriI5-g4vlH9VoD8CmcqZG40F9JadbnoEwAIpthTmf3ZGMZpg.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2tp2ywxg089UriI5-g4vlH9VoD8CmcqZG40F9JadbnoEwAC5thTmf3ZGMZpg.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2rp2ywxg089UriCZaSExd86J3t9jz86Mvy4qCRAL19DksVat8JCm3zRmYJpso5.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2rp2ywxg089UriCZaSExd86J3t9jz86Mvy4qCRAL19DksVat8gCm3zRmYJpso5.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2rp2ywxg089UriCZaSExd86J3t9jz86Mvy4qCRAL19DksVat9uCm3zRmYJpso5.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2rp2ywxg089UriCZaSExd86J3t9jz86Mvy4qCRAL19DksVat-JDG3zRmYJpso5.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2rp2ywxg089UriCZaSExd86J3t9jz86Mvy4qCRAL19DksVat-JDW3zRmYJpso5.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2tp2ywxg089UriI5-g4vlH9VoD8CmcqZG40F9JadbnoEwAopxhTmf3ZGMZpg.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2rp2ywxg089UriCZaSExd86J3t9jz86Mvy4qCRAL19DksVat8JDW3zRmYJpso5.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2rp2ywxg089UriCZaSExd86J3t9jz86Mvy4qCRAL19DksVat-7DW3zRmYJpso5.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2rp2ywxg089UriCZaSExd86J3t9jz86Mvy4qCRAL19DksVat_XDW3zRmYJpso5.ttf","https://fonts.gstatic.com/s/dmsans/v14/rP2rp2ywxg089UriCZaSExd86J3t9jz86Mvy4qCRAL19DksVat9XCm3zRmYJpso5.ttf","sans-serif","https://fonts.gstatic.com/s/dmsans/v14/rP2tp2ywxg089UriI5-g4vlH9VoD8CmcqZG40F9JadbnoEwAopxRT23z.ttf",[298,299],"latin","latin-ext",[301,302,303,304,305,306,128,307,308,309,310,311,312,313,314,315,316,317],"100","200","300","regular","500","600","800","900","100italic","200italic","300italic","italic","500italic","600italic","700italic","800italic","900italic","Zero-day phishing protection","Detect phishing TTPs directly in the browser and stop credential theft.","faFishingRod",[322,421],{"@type":106,"@version":107,"tagName":323,"id":324,"children":325},"div","builder-76c6b8d1499346c7bc1fd56ae4e93638",[326,343,351,358,370,385,396,407,413],{"@type":106,"@version":107,"layerName":327,"id":328,"component":329,"responsiveStyles":340},"UseCaseHero","builder-5228fe062bef4a40a91e43f1112832fa",{"name":327,"options":330,"isRSC":118},{"title":318,"description":331,"points":332,"video":339},"\u003Cp>Push detects phishing as it happens. Autonomous agents hunt for new phishing techniques, identify kit signatures, and deploy detections within minutes of a new attack being analyzed. From cloned login pages to AiTM credential harvesting, Push sees what traditional filters miss and stops threats before they escalate.\u003C/p>",[333,335,337],{"item":334},"Detect phishing that bypasses traditional filters, including AiTM, SSO password theft, and fake login pages",{"item":336},"Stop never-before-seen attacks with AI-native behavioral and on-page analysis inside the browser",{"item":338},"Investigate faster with unified browser, user, and page context","https://cdn.builder.io/o/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F40433ceeb4f94b43a82e039a0f4fd411%2Fcompressed?apiKey=f3a1111ff5be48cdbb123cd9f5795a05&token=40433ceeb4f94b43a82e039a0f4fd411&alt=media&optimized=true",{"large":341},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":342},"transparent",{"@type":106,"@version":107,"id":344,"component":345,"responsiveStyles":348},"builder-96634044407e491299e291ed64669e39",{"name":346,"options":347,"isRSC":118},"TrustedBy",{"AllPartners":41,"backgroundTransparent":6},{"large":349},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":350},"#000",{"@type":106,"@version":107,"id":352,"component":353,"responsiveStyles":356},"builder-2c3768f930534557bb8978e32b6a6a0f",{"name":354,"options":355,"isRSC":118},"Diagonal",{"darkMode":41},{"large":357},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"layerName":359,"id":360,"component":361,"responsiveStyles":368},"TextImageBlockVertical","builder-7c3c1c2840424db2ad2ccbfaf382dd64",{"name":359,"tag":359,"options":362,"isRSC":118},{"darkMode":6,"maxWidth":363,"maxTextWidth":364,"title":365,"description":366,"animatedTitle":37,"image":367,"reverse":6,"descriptionPaddingHorizontal":118},1200,800,"\u003Ch2>Why stop at the inbox?\u003C/h2>","\u003Cp>Phishing attacks have evolved. Whether attackers lure users with QR codes, instant messages, or OAuth consent screens, the outcome is the same: it plays out in the browser. Push gives you real-time detection for in-browser threats, stopping phishing and consent-based attacks before they lead to compromise\u003C/p>\u003Cp>\u003Cbr>\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F7fdcac241f0e4a049166d7076858adeb",{"large":369},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":371,"component":372,"responsiveStyles":380},"builder-41c978b3669749cf947e622b4e79e4d7",{"name":373,"options":374,"isRSC":118},"TextImageBlockHorizontal",{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":376,"title":377,"description":378,"reverse":41,"image":379},600,100,"\u003Cp>Detect phishing at the edge\u003C/p>","\u003Cp>Push uses industry-first telemetry to detect phishing based on behavior, not static indicators. Autonomous agents analyze how phishing pages behave and how users interact with them, uncovering fake logins, credential theft, and phishing kits the moment they load in the browser.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F9df3d180c97b4e61af142af2ccd68721",{"large":381},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"fontFamily":382,"paddingTop":383,"marginTop":384},"DM Sans, sans-serif","20px","0px",{"@type":106,"@version":107,"id":386,"component":387,"responsiveStyles":393},"builder-d2a7bc941feb43cdb898bc116b203cf9",{"name":373,"options":388,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":389,"title":390,"description":391,"reverse":6,"image":392},120,"\u003Ch2>Go beyond blocklists and IOCs\u003C/h2>","\u003Cp>Push goes beyond URLs and easy-to-change indicators. It reads the full phishing playbook like script behavior, session hijacks, DOM changes, user inputs, then connects the dots in real time. This gives your team a complete picture of how the phishing attempt worked, not just an alert.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fabfd58db169b433e96d3f1261797156e",{"large":394},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":395},"36px",{"@type":106,"@version":107,"layerName":373,"id":397,"component":398,"responsiveStyles":404},"builder-42c32198083f4880acb37c5cb76934da",{"name":373,"options":399,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":400,"title":401,"description":402,"reverse":41,"image":403},140,"\u003Ch2>Enhance your phishing response\u003C/h2>","\u003Cp>When phishing enters your environment, speed matters. Push gives you instant access to the telemetry that counts like session data, user behavior, and page activity, so you can investigate fast, trigger in-browser prompts, or forward alerts to your SIEM or SOAR for response. All in real time, right from the browser.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fbb195aec46904056b85e8688629e558e",{"large":405},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":406},"47px",{"@type":106,"@version":107,"id":408,"component":409,"responsiveStyles":411},"builder-9a95b9cbc4854421a92ef7b90f6c7adb",{"name":354,"options":410,"isRSC":118},{"darkMode":6},{"large":412},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":414,"component":415,"responsiveStyles":419},"builder-0afa17a9f25c4661a90f314d5578aa18",{"name":416,"tag":416,"options":417,"isRSC":118},"LatestResources",{"sectionHeading":37,"customClass":418},"bg-black",{"large":420},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"id":422,"@type":106,"tagName":131,"properties":423,"responsiveStyles":424},"builder-pixel-21yj6h3p4wh",{"src":133,"aria-hidden":134,"alt":37,"role":135,"width":124,"height":124},{"large":425},{"height":124,"width":124,"display":138,"opacity":124,"overflow":139,"pointerEvents":140},{"deviceSize":142,"location":427},{"path":37,"query":428},{},{},1776275046831,1745499158657,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fff60c30a8442489c8ed7e0af9599d14f","kYgMv6WsbvfmlOUYqR2SFwGzw6e2",[],{"lastPreviewUrl":436,"winningTest":118,"breakpoints":437,"kind":438,"hasLinks":6,"originalContentId":439,"hasAutosaves":6},"https://pushsecurity.com/uc/zero-day-phishing-protection?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CcreateProjects%2CsendPullRequests&builder.user.role.name=Designer&builder.user.role.id=creator&builder.cachebust=true&builder.preview=use-case-page&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.use-case-page=387451215c314dd5bd654668cdc1a197&builder.overrides.387451215c314dd5bd654668cdc1a197=387451215c314dd5bd654668cdc1a197&builder.overrides.use-case-page:/uc/zero-day-phishing-protection=387451215c314dd5bd654668cdc1a197&builder.options.locale=Default",{"xsmall":57,"small":39,"medium":40},"page","2daa5670b8504fc7ba4700633e8bd921","atvz4dp24b7",{"createdDate":442,"id":443,"name":444,"modelId":261,"published":13,"stageModifiedSincePublish":6,"query":445,"data":448,"variations":552,"lastUpdated":553,"firstPublished":554,"testRatio":33,"screenshot":555,"createdBy":34,"lastUpdatedBy":433,"folders":556,"meta":557,"rev":440},1756833377777,"54f8256648f54d439303734b1e69221b","Browser extension security",[446],{"@type":264,"property":265,"operator":266,"value":447},"/uc/browser-extension-security",{"seoDescription":449,"jsCode":37,"fontAwesomeIcon":450,"tsCode":37,"title":444,"seoTitle":444,"customFonts":451,"inputs":456,"blocks":457,"url":447,"state":549},"Shine a light on risky browser extensions.","faPuzzlePiece",[452],{"kind":273,"family":272,"version":274,"files":453,"category":295,"lastModified":275,"subsets":454,"variants":455,"menu":296},{"100":277,"200":278,"300":279,"500":280,"600":281,"700":282,"800":283,"900":284,"100italic":288,"italic":289,"regular":290,"900italic":286,"800italic":285,"700italic":287,"200italic":291,"300italic":293,"500italic":292,"600italic":294},[298,299],[301,302,303,304,305,306,128,307,308,309,310,311,312,313,314,315,316,317],[],[458,544],{"@type":106,"@version":107,"tagName":323,"id":459,"meta":460,"children":461},"builder-71d0648c1d2f4ede8d0d0b5b28b7b94c",{"previousId":324},[462,478,485,492,501,511,521,531,538],{"@type":106,"@version":107,"id":463,"meta":464,"component":465,"responsiveStyles":476},"builder-ff325b4b8fad4edea53f38865947e854",{"previousId":328},{"name":327,"options":466,"isRSC":118},{"title":444,"description":467,"points":468,"video":475},"\u003Cp>Browser extensions introduce new code, new permissions, and new potential for risk. Many include AI features, and most go completely unnoticed. Push gives you full visibility into every extension used across your workforce, across major browsers, so you can uncover shadow IT, assess risky permissions, and block unsafe tools before they lead to compromise.\u003C/p>",[469,471,473],{"item":470},"Discover every browser extension in use",{"item":472},"Spot risky or unsanctioned behavior",{"item":474},"Make informed decisions on extension policy","https://cdn.builder.io/o/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fc538aad95d7f403aa3c3551af72f67c0?alt=media&token=1411fa6d-2eac-4e6c-94bf-ea117da12d67&apiKey=f3a1111ff5be48cdbb123cd9f5795a05",{"large":477},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":342},{"@type":106,"@version":107,"id":479,"meta":480,"component":481,"responsiveStyles":483},"builder-fb89d128c64e47cf9cbb11d90fc24523",{"previousId":344},{"name":346,"options":482,"isRSC":118},{"AllPartners":41,"backgroundTransparent":6},{"large":484},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":350},{"@type":106,"@version":107,"id":486,"meta":487,"component":488,"responsiveStyles":490},"builder-54388d35126c4d0096eeebaf8c4448cd",{"previousId":352},{"name":354,"options":489,"isRSC":118},{"darkMode":41},{"large":491},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"layerName":359,"id":493,"component":494,"responsiveStyles":499},"builder-3c8fa6785dd6466abf52a2470d66d85a",{"name":359,"tag":359,"options":495,"isRSC":118},{"darkMode":6,"maxWidth":363,"maxTextWidth":364,"title":496,"description":497,"image":498,"reverse":6},"\u003Ch2>Take control of browser extensions\u003C/h2>","\u003Cp>Attackers are increasingly using malicious browser extensions to gain access to data processed and stored in the browser. And the problem is, most security teams have no visibility into what extensions are being used. Push changes that. With browser-native telemetry, the Push extension continuously inventories browser extensions across your environment, flags the risky ones, and gives you intelligence to act. \u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Cp>\u003Cbr>\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F0a004f16a6874f4c8fdf14344acc9fec",{"large":500},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":502,"meta":503,"component":504,"responsiveStyles":509},"builder-93738f98109a4009affb349afd7bb182",{"previousId":371},{"name":373,"options":505,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":376,"title":506,"description":507,"reverse":41,"image":508},"\u003Ch2>Discover every extension in use\u003C/h2>","\u003Cp>Push gives you structured, searchable data about every extension in your environment, so you’re not just seeing what’s there, but also understanding how it got there, what it can do, and who it affects. It’s the kind of granular insight that’s nearly impossible to get from traditional tools, and it lays the groundwork for better policy decisions and faster investigations.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F0e5727ca99474f14b1b7916bf6bbb782",{"large":510},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"fontFamily":382,"paddingTop":383,"marginTop":384},{"@type":106,"@version":107,"id":512,"meta":513,"component":514,"responsiveStyles":519},"builder-83393acb12ee4fdd840839185b51edb4",{"previousId":386},{"name":373,"options":515,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":389,"title":516,"description":517,"reverse":6,"image":518},"\u003Ch2>Spot risky or malicious extensions\u003C/h2>","\u003Cp>Push highlights extensions with dangerous permissions, broad access, or poor reputations. This includes AI extensions that request access far beyond what their stated purpose requires. You can quickly detect sideloaded, manually installed, or development-mode extensions that bypass normal controls. And because Push shows you who’s using them and where, you can respond precisely and effectively.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fa104d58c8da34fbb8901f738fb21453b",{"large":520},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":395},{"@type":106,"@version":107,"layerName":373,"id":522,"meta":523,"component":524,"responsiveStyles":529},"builder-da98e3de949646d89c53a0d1c2784664",{"previousId":397},{"name":373,"options":525,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":400,"title":526,"description":527,"reverse":41,"image":528},"\u003Ch2>Accelerate security reviews\u003C/h2>","\u003Cp>Most teams have extension policies, they just don’t have the data to enforce them. Push reveals how each extension entered your environment, whether it was installed manually, sideloaded, or deployed in dev mode. You’ll see which users are running what, and where, so you can surface violations, investigate quickly, and respond with confidence.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F229f355be6f243b180f410d237a75bb3",{"large":530},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":406},{"@type":106,"@version":107,"id":532,"meta":533,"component":534,"responsiveStyles":536},"builder-1a689287d1a1418997d57db578a71105",{"previousId":408},{"name":354,"options":535,"isRSC":118},{"darkMode":6},{"large":537},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":539,"component":540,"responsiveStyles":542},"builder-feb4e75029f84c10b6498ef1f8f79128",{"name":416,"tag":416,"options":541,"isRSC":118},{"sectionHeading":37,"customClass":418},{"large":543},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"id":545,"@type":106,"tagName":131,"properties":546,"responsiveStyles":547},"builder-pixel-0edn39avfcei",{"src":133,"aria-hidden":134,"alt":37,"role":135,"width":124,"height":124},{"large":548},{"height":124,"width":124,"display":138,"opacity":124,"overflow":139,"pointerEvents":140},{"deviceSize":142,"location":550},{"path":37,"query":551},{},{},1776275365038,1757000441666,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F8d496cf111644ee5afcc046b72d1ca5a",[],{"kind":438,"winningTest":118,"breakpoints":558,"lastPreviewUrl":559,"hasLinks":6,"originalContentId":259,"hasAutosaves":6},{"xsmall":57,"small":39,"medium":40},"https://pushsecurity.com/uc/browser-extension-security?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CcreateProjects%2CsendPullRequests&builder.user.role.name=Designer&builder.user.role.id=creator&builder.cachebust=true&builder.preview=use-case-page&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.use-case-page=54f8256648f54d439303734b1e69221b&builder.overrides.54f8256648f54d439303734b1e69221b=54f8256648f54d439303734b1e69221b&builder.overrides.use-case-page:/uc/browser-extension-security=54f8256648f54d439303734b1e69221b&builder.options.locale=Default",{"createdDate":561,"id":562,"name":563,"modelId":261,"published":13,"query":564,"data":567,"variations":670,"lastUpdated":671,"firstPublished":672,"testRatio":33,"screenshot":673,"createdBy":34,"lastUpdatedBy":674,"folders":675,"meta":676,"rev":440},1744923509705,"94bebb7bb99d48629ad157e80cf4d81d","Account takeover detection",[565],{"@type":264,"property":265,"operator":266,"value":566},"/uc/account-takeover-detection",{"title":563,"customFonts":568,"jsCode":37,"seoTitle":563,"seoDescription":573,"fontAwesomeIcon":574,"tsCode":37,"blocks":575,"url":566,"state":667},[569],{"kind":273,"category":295,"variants":570,"menu":296,"files":571,"family":272,"subsets":572,"version":274,"lastModified":275},[301,302,303,304,305,306,128,307,308,309,310,311,312,313,314,315,316,317],{"100":277,"200":278,"300":279,"500":280,"600":281,"700":282,"800":283,"900":284,"300italic":293,"500italic":292,"800italic":285,"700italic":287,"italic":289,"900italic":286,"600italic":294,"200italic":291,"regular":290,"100italic":288},[298,299],"Stop ATO with stolen credential and compromised token detection.","faUserSecret",[576,662],{"@type":106,"@version":107,"tagName":323,"id":577,"meta":578,"children":579},"builder-e7913a774cae44c5a23d6081c5c30a52",{"previousId":324},[580,596,603,610,619,629,639,649,656],{"@type":106,"@version":107,"id":581,"meta":582,"component":583,"responsiveStyles":594},"builder-f1f1ab1601bc4c0f8c2a8aafd173675d",{"previousId":328},{"name":327,"options":584,"isRSC":118},{"title":563,"description":585,"points":586,"video":593},"\u003Cp>Attackers don’t need to phish, they just need a password that works. Push monitors for signs of credential-based attacks in real time, directly in the browser, catching account takeover attempts before the damage spreads. From ghost logins to credential stuffing, Push cuts off the paths attackers use to quietly slip in the back door.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>",[587,589,591],{"item":588},"Identify credential-based ATO as it unfolds",{"item":590},"Surface hijacked sessions and token misuse",{"item":592},"Strengthen authentication where your IdP can’t","https://cdn.builder.io/o/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fb4dd9db24bc9495b8a686b1b4d492016%2Fcompressed?apiKey=f3a1111ff5be48cdbb123cd9f5795a05&token=b4dd9db24bc9495b8a686b1b4d492016&alt=media&optimized=true",{"large":595},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":342},{"@type":106,"@version":107,"id":597,"meta":598,"component":599,"responsiveStyles":601},"builder-0bc0d1c78ece4994993c3a6427a4d533",{"previousId":344},{"name":346,"options":600,"isRSC":118},{"AllPartners":41,"backgroundTransparent":6},{"large":602},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":350},{"@type":106,"@version":107,"id":604,"meta":605,"component":606,"responsiveStyles":608},"builder-e45de8f3768c4f16938dbf78e4e87524",{"previousId":352},{"name":354,"options":607,"isRSC":118},{"darkMode":41},{"large":609},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":611,"component":612,"responsiveStyles":617},"builder-c98e8bfd341146c1b67c02d5698ff093",{"name":359,"tag":359,"options":613,"isRSC":118},{"darkMode":6,"maxWidth":363,"maxTextWidth":364,"title":614,"description":615,"image":616,"reverse":6},"\u003Ch2>Assume less. See more.\u003C/h2>","\u003Cp>Most account takeovers don’t start with a breach, they start with a login. Whether it’s a reused password, a local account, or an outdated login flow, Push shows you how accounts are actually accessed day to day, not just how policies say they should be. That means no more blind spots around ghost logins, bypassed SSO, or stale access paths that quietly persist.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Cp>\u003Cbr>\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F18630ad2746d4eb7b7fcc0428b11a8f0",{"large":618},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":620,"meta":621,"component":622,"responsiveStyles":627},"builder-55c1fc38ddc04fd1a0d6a8e2fb819e00",{"previousId":371},{"name":373,"options":623,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":376,"title":624,"description":625,"reverse":41,"image":626},"\u003Ch2>Catch stolen credential use in real time\u003C/h2>","\u003Cp>Push monitors login activity directly in the browser to detect signs of credential-based attacks like leaked password use or suspicious login flows. By analyzing attacker TTPs instead of relying on known indicators, Push spots credential stuffing and account takeover attempts the moment they begin, not after they’ve succeeded.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F52b0123cac2c4dfdb1dc0af6adf9d603",{"large":628},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"fontFamily":382,"paddingTop":384,"marginTop":384},{"@type":106,"@version":107,"id":630,"meta":631,"component":632,"responsiveStyles":637},"builder-dfb31737b30948c6b95323655d571a50",{"previousId":386},{"name":373,"options":633,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":389,"title":634,"description":635,"reverse":6,"image":636},"\u003Ch2>Detect session hijacks and stealth access\u003C/h2>","\u003Cp>Attackers don’t always need a login screen, they often sidestep it entirely using stolen session tokens. Push detects when valid sessions are reused in unexpected ways, identifying hijacked sessions and stealth access attempts that traditional tools miss. Because we monitor directly in the browser, you see what’s happening inside active sessions in real time.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F94a6859a99e04d309ffe5841f3dbdf5c",{"large":638},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":395},{"@type":106,"@version":107,"layerName":373,"id":640,"meta":641,"component":642,"responsiveStyles":647},"builder-f7585b90eb974d03a7dc7eae5b58d227",{"previousId":397},{"name":373,"options":643,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":400,"title":644,"description":645,"reverse":41,"image":646},"\u003Ch2>Harden accounts before they’re compromised\u003C/h2>","\u003Cp>Push goes beyond alerts. It identifies apps that still allow local logins, even when SSO is configured, so you can remove weak access paths. Push also flags users without MFA, reused work credentials, or weak passwords, and prompts users in-browser to fix risky behaviors before they’re exploited.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F01c1b638f1b6497093a4f2b8ceddb5bb",{"large":648},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":406},{"@type":106,"@version":107,"id":650,"meta":651,"component":652,"responsiveStyles":654},"builder-ad81d1e3afec49a791214194eae09bdc",{"previousId":408},{"name":354,"options":653,"isRSC":118},{"darkMode":6},{"large":655},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":657,"component":658,"responsiveStyles":660},"builder-8dac1aa4b9d148628d92252bd8eff822",{"name":416,"tag":416,"options":659,"isRSC":118},{"sectionHeading":37,"customClass":418},{"large":661},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"id":663,"@type":106,"tagName":131,"properties":664,"responsiveStyles":665},"builder-pixel-s5u3wmvz7jq",{"src":133,"aria-hidden":134,"alt":37,"role":135,"width":124,"height":124},{"large":666},{"height":124,"width":124,"display":138,"opacity":124,"overflow":139,"pointerEvents":140},{"deviceSize":142,"location":668},{"path":37,"query":669},{},{},1770892814499,1745499162732,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F58b660fa94aa4b30b0faeb9b663ae41a","SfUPqW5tkibIPby49keNFMdHFTr1",[],{"lastPreviewUrl":677,"hasLinks":6,"originalContentId":259,"breakpoints":678,"winningTest":118,"kind":438,"hasAutosaves":41},"https://pushsecurity.com/uc/account-takeover-detection?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditCode%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CeditProjects%2CmodifyMcpServers%2CmodifyWorkflowIntegrations%2CmodifyProjectSettings%2CconnectCodeRepository%2CcreateProjects%2CindexDesignSystems%2CsendPullRequests&builder.user.role.name=Developer&builder.user.role.id=developer&builder.cachebust=true&builder.preview=use-case-page&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.use-case-page=94bebb7bb99d48629ad157e80cf4d81d&builder.overrides.94bebb7bb99d48629ad157e80cf4d81d=94bebb7bb99d48629ad157e80cf4d81d&builder.overrides.use-case-page:/uc/account-takeover-detection=94bebb7bb99d48629ad157e80cf4d81d&builder.options.includeRefs=true&builder.options.enrich=true&builder.options.locale=Default",{"xsmall":57,"small":39,"medium":40},{"createdDate":680,"id":681,"name":682,"modelId":261,"published":13,"query":683,"data":686,"variations":789,"lastUpdated":790,"firstPublished":791,"testRatio":33,"screenshot":792,"createdBy":34,"lastUpdatedBy":674,"folders":793,"meta":794,"rev":440},1745009370904,"23eb48fb56d3451cab77cb6ed140ee6d","Attack path hardening",[684],{"@type":264,"property":265,"operator":266,"value":685},"/uc/attack-path-hardening",{"tsCode":37,"seoDescription":687,"jsCode":37,"customFonts":688,"fontAwesomeIcon":693,"seoTitle":682,"title":682,"blocks":694,"url":685,"state":786},"Harden access paths with visibility,  detection, and guardrails.",[689],{"kind":273,"files":690,"version":274,"lastModified":275,"subsets":691,"menu":296,"category":295,"variants":692,"family":272},{"100":277,"200":278,"300":279,"500":280,"600":281,"700":282,"800":283,"900":284,"regular":290,"italic":289,"800italic":285,"500italic":292,"600italic":294,"200italic":291,"900italic":286,"700italic":287,"100italic":288,"300italic":293},[298,299],[301,302,303,304,305,306,128,307,308,309,310,311,312,313,314,315,316,317],"faRadar",[695,781],{"@type":106,"@version":107,"tagName":323,"id":696,"meta":697,"children":698},"builder-1d8553eddcaa44d7bba9e2f4ca13af2a",{"previousId":577},[699,715,722,729,738,748,758,768,775],{"@type":106,"@version":107,"id":700,"meta":701,"component":702,"responsiveStyles":713},"builder-84fe3d7c85a743cf8cef649aa974f1ef",{"previousId":581},{"name":327,"options":703,"isRSC":118},{"title":682,"description":704,"points":705,"video":712},"\u003Cp>Push continuously monitors your environment for exposed login paths, weak credentials, and missing protections like MFA. It detects the gaps attackers exploit and helps you close them before they’re used.\u003C/p>",[706,708,710],{"item":707},"Find weak spots like reused passwords, local logins, and missing MFA",{"item":709},"Monitor how users actually log in across apps, flows, and tools",{"item":711},"Enforce secure access with in-browser guardrails","https://cdn.builder.io/o/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fdbdcf52892034f1bbddded77f753a343%2Fcompressed?apiKey=f3a1111ff5be48cdbb123cd9f5795a05&token=dbdcf52892034f1bbddded77f753a343&alt=media&optimized=true",{"large":714},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":342},{"@type":106,"@version":107,"id":716,"meta":717,"component":718,"responsiveStyles":720},"builder-b3f66f5b08054cc78a06fecfc3ae2337",{"previousId":597},{"name":346,"options":719,"isRSC":118},{"AllPartners":41,"backgroundTransparent":6},{"large":721},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":350},{"@type":106,"@version":107,"id":723,"meta":724,"component":725,"responsiveStyles":727},"builder-4c73418b84be49ed85e6e13d2625c5a0",{"previousId":604},{"name":354,"options":726,"isRSC":118},{"darkMode":41},{"large":728},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":730,"component":731,"responsiveStyles":736},"builder-dec0246085e1485c803f7152b1922a81",{"name":359,"tag":359,"options":732,"isRSC":118},{"darkMode":6,"maxWidth":363,"maxTextWidth":364,"title":733,"description":734,"image":735,"reverse":6},"\u003Ch2>Find the gaps that lead to compromise\u003C/h2>","\u003Cp>Misconfigurations don’t show up in your config files, they show up in how users actually access apps. Push monitors real login behavior in the browser, surfacing risky patterns like local login access, duplicate accounts, or missing protections that leave doors wide open.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Cp>\u003Cbr>\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F309a59bba8d247a19476bb369397460e",{"large":737},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":739,"meta":740,"component":741,"responsiveStyles":746},"builder-ebf049a645604a249550996a88f8f3b6",{"previousId":620},{"name":373,"options":742,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":376,"title":743,"description":744,"reverse":41,"image":745},"\u003Ch2>See real login behavior\u003C/h2>","\u003Cp>Push watches authentication flows as they happen, giving you a live view of how users log in, which methods they choose, and where protections like MFA are missing. Plus, uncover every app and account in use, even shadow IT you didn’t know existed, without relying on stale config files or IdP assumptions. \u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fb51f6b0357cc451b87a7a5016d984e5e",{"large":747},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"fontFamily":382,"paddingTop":383,"marginTop":384},{"@type":106,"@version":107,"id":749,"meta":750,"component":751,"responsiveStyles":756},"builder-431d175c59004669b0b2776b07d71737",{"previousId":630},{"name":373,"options":752,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":389,"title":753,"description":754,"reverse":6,"image":755},"\u003Ch2>Find and fix posture drift\u003C/h2>","\u003Cp>Security posture isn’t static. Push continuously monitors for issues like missing MFA or legacy login methods. When something falls out of policy, you know immediately with custom notifications so you can act before it turns into risk.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F324e39127dfc41e592b1183dfb39892d",{"large":757},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":395},{"@type":106,"@version":107,"layerName":373,"id":759,"meta":760,"component":761,"responsiveStyles":766},"builder-3dffdcbe0a484e2ca4c03f019b6d40ee",{"previousId":640},{"name":373,"options":762,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":400,"title":763,"description":764,"reverse":41,"image":765},"\u003Ch2>Guide users with in-browser guardrails\u003C/h2>","\u003Cp>Push doesn’t just surface problems, it helps you fix them. When users sign in without MFA, reuse a password, or use insecure credentials, Push prompts them directly in the browser to secure their access. It’s faster, more effective, and actually gets results.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fee8b75d13e45488aba55434a8b49ebb0",{"large":767},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":406},{"@type":106,"@version":107,"id":769,"meta":770,"component":771,"responsiveStyles":773},"builder-976bc222cd7647ff905f1e01cfedc453",{"previousId":650},{"name":354,"options":772,"isRSC":118},{"darkMode":6},{"large":774},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":776,"component":777,"responsiveStyles":779},"builder-8c47ec2fd0f74382bb3e6c870555632c",{"name":416,"tag":416,"options":778,"isRSC":118},{"sectionHeading":37,"customClass":418},{"large":780},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"id":782,"@type":106,"tagName":131,"properties":783,"responsiveStyles":784},"builder-pixel-7akm7dayau8",{"src":133,"aria-hidden":134,"alt":37,"role":135,"width":124,"height":124},{"large":785},{"height":124,"width":124,"display":138,"opacity":124,"overflow":139,"pointerEvents":140},{"deviceSize":142,"location":787},{"path":37,"query":788},{},{},1770892844854,1745499166112,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F6ca12bf728a045f1a31d40c0beb3bfe5",[],{"kind":438,"lastPreviewUrl":795,"breakpoints":796,"hasLinks":6,"originalContentId":562,"winningTest":118,"hasAutosaves":6},"https://pushsecurity.com/uc/attack-path-hardening?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditCode%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CeditProjects%2CmodifyMcpServers%2CmodifyWorkflowIntegrations%2CmodifyProjectSettings%2CconnectCodeRepository%2CcreateProjects%2CindexDesignSystems%2CsendPullRequests&builder.user.role.name=Developer&builder.user.role.id=developer&builder.cachebust=true&builder.preview=use-case-page&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.use-case-page=23eb48fb56d3451cab77cb6ed140ee6d&builder.overrides.23eb48fb56d3451cab77cb6ed140ee6d=23eb48fb56d3451cab77cb6ed140ee6d&builder.overrides.use-case-page:/uc/attack-path-hardening=23eb48fb56d3451cab77cb6ed140ee6d&builder.options.includeRefs=true&builder.options.enrich=true&builder.options.locale=Default",{"xsmall":57,"small":39,"medium":40},{"createdDate":798,"id":799,"name":800,"modelId":261,"published":13,"query":801,"data":804,"variations":909,"lastUpdated":910,"firstPublished":911,"testRatio":33,"screenshot":912,"createdBy":34,"lastUpdatedBy":674,"folders":913,"meta":914,"rev":440},1761675020232,"ea4f309d2ffe46c5aa97ebf0fda4e2e3","ClickFix Protection",[802],{"@type":264,"property":265,"operator":266,"value":803},"/uc/clickfix-protection",{"seoDescription":805,"fontAwesomeIcon":806,"customFonts":807,"seoTitle":812,"jsCode":37,"tsCode":37,"title":812,"blocks":813,"url":803,"state":906},"Block attacks that trick users into running malicious code.","faLaptopCode",[808],{"files":809,"subsets":810,"menu":296,"version":274,"kind":273,"family":272,"lastModified":275,"variants":811,"category":295},{"100":277,"200":278,"300":279,"500":280,"600":281,"700":282,"800":283,"900":284,"200italic":291,"800italic":285,"700italic":287,"600italic":294,"100italic":288,"italic":289,"regular":290,"300italic":293,"500italic":292,"900italic":286},[298,299],[301,302,303,304,305,306,128,307,308,309,310,311,312,313,314,315,316,317],"ClickFix protection",[814,901],{"@type":106,"@version":107,"tagName":323,"id":815,"meta":816,"children":817},"builder-d7eefdde0f2a4b2b9de3dcb2978fd6cb",{"previousId":696},[818,834,841,848,858,868,878,888,895],{"@type":106,"@version":107,"id":819,"meta":820,"component":821,"responsiveStyles":832},"builder-56e2c54bcce040a4af8b92ae03706c12",{"previousId":700},{"name":327,"options":822,"isRSC":118},{"title":812,"description":823,"points":824,"image":831},"\u003Cp>ClickFix attacks are one of the fastest-growing threats, tricking users into copying malicious code from a webpage and running it locally. This technique bypasses traditional EDR, email gateways, and network filters, leading directly to ransomware and data theft. Push stops this attack at the source, in the browser, by detecting and blocking the malicious behavior before the user can ever paste the code.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>",[825,827,829],{"item":826},"Detect ClickFix, FileFix, and fake CAPTCHA in the browser",{"item":828},"Block malicious copy-and-paste actions before code is executed",{"item":830},"See full telemetry into which users were targeted and what they saw","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F7b74af62889847ebb3927364485b0546",{"large":833},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":342},{"@type":106,"@version":107,"id":835,"meta":836,"component":837,"responsiveStyles":839},"builder-05f9614d4e3e4dc88b3ee8658f54e10e",{"previousId":716},{"name":346,"options":838,"isRSC":118},{"AllPartners":41,"backgroundTransparent":6},{"large":840},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":350},{"@type":106,"@version":107,"id":842,"meta":843,"component":844,"responsiveStyles":846},"builder-c4fb5179366243c1b6c32d368675cf47",{"previousId":723},{"name":354,"options":845,"isRSC":118},{"darkMode":41},{"large":847},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":849,"meta":850,"component":851,"responsiveStyles":856},"builder-261af50705fd445d8cca4a6ba20d5391",{"previousId":730},{"name":359,"tag":359,"options":852,"isRSC":118},{"darkMode":6,"maxWidth":363,"maxTextWidth":364,"title":853,"description":854,"reverse":6,"image":855},"\u003Ch2>Stop ClickFix-style attacks before they become a breach\u003C/h2>","\u003Cp>Traditional security tools are blind to malicious copy and paste attacks because the attack exploits a gap between the browser and the endpoint. EDR only sees the payload after it runs, and network tools see only part of the picture.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F98b2f7e08dec4eafaf8e24937605b8cf",{"large":857},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":859,"meta":860,"component":861,"responsiveStyles":866},"builder-7d21b8aab8064c40b1e5dd23c4749309",{"previousId":739},{"name":373,"options":862,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":376,"title":863,"description":864,"reverse":41,"image":865},"\u003Ch2>Discover lures at the source\u003C/h2>","\u003Cp>Push inspects page behavior to identify ClickFix attacks as they happen. By inspecting the page, its structure, and how the user interacts with it, Push can detect and block these in-browser threats in real time. This deep, TTP-based inspection spots the trap even on novel pages that are built to bypass traditional web filters and blocklists.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F665bf47e01544c75bf9ddafd3917927b",{"large":867},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"fontFamily":382,"paddingTop":383,"marginTop":384},{"@type":106,"@version":107,"id":869,"meta":870,"component":871,"responsiveStyles":876},"builder-fb91943adf6149259ed9e1e6566c9afe",{"previousId":749},{"name":373,"options":872,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":389,"title":873,"description":874,"reverse":6,"image":875},"\u003Ch2>Block the malicious action\u003C/h2>","\u003Cp>When Push detects a malicious script, it intercepts the user's action and blocks the code from being copied to the clipboard. The user is protected, the attack is stopped, and no malicious code ever reaches the endpoint. Unlike broad DLP tools, this action is surgical, targeting only malicious behavior without disrupting normal work.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F5ee68f81f1ac416685cbfe91298cf827",{"large":877},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":395},{"@type":106,"@version":107,"layerName":373,"id":879,"meta":880,"component":881,"responsiveStyles":886},"builder-bfac95fada864e5a8259b955b5b5f98b",{"previousId":759},{"name":373,"options":882,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":400,"title":883,"description":884,"reverse":41,"image":885},"\u003Ch2>Accelerate ClickFix investigations\u003C/h2>","\u003Cp>When an attack happens, knowing what the user saw or did is critical. Push provides rich browser session data for rapid investigation and containment. Security teams get detailed telemetry on which users were targeted, what lure they were served, and when the block occurred. This enables defenders to reconstruct what happened and respond quickly, even when other tools miss the activity entirely.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F6cdf2a8aeddc4e9a9023cbf974e40239",{"large":887},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":406},{"@type":106,"@version":107,"id":889,"meta":890,"component":891,"responsiveStyles":893},"builder-136892e831684a6987f87d3be67c33d1",{"previousId":769},{"name":354,"options":892,"isRSC":118},{"darkMode":6},{"large":894},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":896,"component":897,"responsiveStyles":899},"builder-dec26b739f2f42beb5a73cfc6c675b60",{"name":416,"tag":416,"options":898,"isRSC":118},{"sectionHeading":37,"customClass":418},{"large":900},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"id":902,"@type":106,"tagName":131,"properties":903,"responsiveStyles":904},"builder-pixel-zzjpxxgrc2l",{"src":133,"aria-hidden":134,"alt":37,"role":135,"width":124,"height":124},{"large":905},{"height":124,"width":124,"display":138,"opacity":124,"overflow":139,"pointerEvents":140},{"deviceSize":142,"location":907},{"path":37,"query":908},{},{},1770892881888,1761847585203,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F375467b8bef34ed1a8a1cc5b8b67d75f",[],{"lastPreviewUrl":915,"originalContentId":681,"winningTest":118,"hasLinks":6,"kind":438,"breakpoints":916,"hasAutosaves":6},"https://pushsecurity.com/uc/clickfix-protection?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditCode%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CeditProjects%2CmodifyMcpServers%2CmodifyWorkflowIntegrations%2CmodifyProjectSettings%2CconnectCodeRepository%2CcreateProjects%2CindexDesignSystems%2CsendPullRequests&builder.user.role.name=Developer&builder.user.role.id=developer&builder.cachebust=true&builder.preview=use-case-page&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.use-case-page=ea4f309d2ffe46c5aa97ebf0fda4e2e3&builder.overrides.ea4f309d2ffe46c5aa97ebf0fda4e2e3=ea4f309d2ffe46c5aa97ebf0fda4e2e3&builder.overrides.use-case-page:/uc/clickfix-protection=ea4f309d2ffe46c5aa97ebf0fda4e2e3&builder.options.includeRefs=true&builder.options.enrich=true&builder.options.locale=Default",{"xsmall":57,"small":39,"medium":40},{"createdDate":918,"id":919,"name":920,"modelId":261,"published":13,"query":921,"data":924,"variations":1029,"lastUpdated":1030,"firstPublished":1031,"testRatio":33,"screenshot":1032,"createdBy":34,"lastUpdatedBy":674,"folders":1033,"meta":1034,"rev":440},1745009743870,"a9d5556e77f84a37b5bd52310a7110c1","Incident response",[922],{"@type":264,"property":265,"operator":266,"value":923},"/uc/incident-response",{"seoDescription":925,"customFonts":926,"title":920,"jsCode":37,"fontAwesomeIcon":931,"seoTitle":932,"tsCode":37,"blocks":933,"url":923,"state":1026},"Investigate and respond faster with unique browser telemetry.",[927],{"kind":273,"subsets":928,"menu":296,"variants":929,"category":295,"family":272,"version":274,"lastModified":275,"files":930},[298,299],[301,302,303,304,305,306,128,307,308,309,310,311,312,313,314,315,316,317],{"100":277,"200":278,"300":279,"500":280,"600":281,"700":282,"800":283,"900":284,"900italic":286,"600italic":294,"200italic":291,"300italic":293,"100italic":288,"700italic":287,"800italic":285,"regular":290,"italic":289,"500italic":292},"faSatelliteDish","Browser based incident response",[934,1021],{"@type":106,"@version":107,"tagName":323,"id":935,"meta":936,"children":937},"builder-653c4aed737b4def88dc4cd2d695660a",{"previousId":696},[938,955,962,969,978,988,998,1008,1015],{"@type":106,"@version":107,"id":939,"meta":940,"component":941,"responsiveStyles":953},"builder-18190bd36518467d9154d27d7e945b9b",{"previousId":700},{"name":327,"options":942,"isRSC":118},{"title":943,"description":944,"points":945,"video":952},"Browser-based incident response","\u003Cp>Push gives you real-time visibility into what actually happened during a breach, right in the browser where the attack played out. From credential theft to session hijacking, Push captures high-fidelity telemetry so you can investigate quickly, contain confidently, and shut it down before it spreads.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>",[946,948,950],{"item":947},"Reconstruct what happened with real browser session context",{"item":949},"Investigate faster with real-world session context",{"item":951},"Trigger response actions automatically through your SIEM or SOAR","https://cdn.builder.io/o/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fd00e39d3b6e346c296261d875cf55652%2Fcompressed?apiKey=f3a1111ff5be48cdbb123cd9f5795a05&token=d00e39d3b6e346c296261d875cf55652&alt=media&optimized=true",{"large":954},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":342},{"@type":106,"@version":107,"id":956,"meta":957,"component":958,"responsiveStyles":960},"builder-8a0a8ea63f5d48dd8a6726f2d49cf0ca",{"previousId":716},{"name":346,"options":959,"isRSC":118},{"AllPartners":41,"backgroundTransparent":6},{"large":961},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":350},{"@type":106,"@version":107,"id":963,"meta":964,"component":965,"responsiveStyles":967},"builder-2df65c3f54334df2b26e7cb744886cdc",{"previousId":723},{"name":354,"options":966,"isRSC":118},{"darkMode":41},{"large":968},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":970,"component":971,"responsiveStyles":976},"builder-2c32c869efc2423ab69ef06b150e9f97",{"name":359,"tag":359,"options":972,"isRSC":118},{"darkMode":6,"maxWidth":363,"maxTextWidth":364,"title":973,"description":974,"image":975,"reverse":6},"\u003Ch2>See attacks unfold, not just their aftermath\u003C/h2>","\u003Cp>Attacks happen in the browser, not in logs. Push captures what traditional tools miss: what users clicked, what loaded, what was entered, and how attackers moved. That gives you real-world evidence, not just assumptions, when every second matters.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Cp>\u003Cbr>\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F36fc719bd1de4a38b916f4d25c81a26d",{"large":977},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":979,"meta":980,"component":981,"responsiveStyles":986},"builder-370e53c6016e432db01e9193a2ce90f6",{"previousId":739},{"name":373,"options":982,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":376,"title":983,"description":984,"reverse":41,"image":985},"\u003Ch2>Investigate faster with high-fidelity data\u003C/h2>","\u003Cp>Reconstructing an incident shouldn’t feel like guesswork. Push records detailed telemetry from inside the browser: page loads, credential inputs, DOM changes, session activity, user behavior. It’s structured, exportable, and ready to plug into your investigation workflows, so you can move fast without digging through proxy logs or relying on user reports.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fa6adda040e684e67a8d68a55c5ce5f6d",{"large":987},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"fontFamily":382,"paddingTop":384,"marginTop":384},{"@type":106,"@version":107,"id":989,"meta":990,"component":991,"responsiveStyles":996},"builder-a7f3767a8d184bd08fb24520bf210e95",{"previousId":749},{"name":373,"options":992,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":389,"title":993,"description":994,"reverse":6,"image":995},"\u003Ch2>Contain and respond in real time\u003C/h2>","\u003Cp>When something looks off, Push doesn’t just alert you, it gives you options. Guide users with in-browser prompts. Terminate sessions. Trigger SOAR workflows. Enrich SIEM alerts. Push gives you the context and control to stop spread before it starts.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fb3dedeed5aba4847a2c2d22e10d0ec12",{"large":997},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":395},{"@type":106,"@version":107,"layerName":373,"id":999,"meta":1000,"component":1001,"responsiveStyles":1006},"builder-b92036ee0ece4b32acdbdcc7c377366b",{"previousId":759},{"name":373,"options":1002,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":400,"title":1003,"description":1004,"reverse":41,"image":1005},"\u003Ch2>Prevent the next one\u003C/h2>","\u003Cp>Push helps you respond fast, but it also helps you fix what went wrong. It surfaces misconfigurations and risky behaviors that made the attack possible in the first place, then guides users in-browser to remediate. One tool. Full loop. No loose ends.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fc1ecc2d5d3814b62b072fac01827ff96",{"large":1007},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":406},{"@type":106,"@version":107,"id":1009,"meta":1010,"component":1011,"responsiveStyles":1013},"builder-5e8ae39655274de89da32ab573a2525a",{"previousId":769},{"name":354,"options":1012,"isRSC":118},{"darkMode":6},{"large":1014},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":1016,"component":1017,"responsiveStyles":1019},"builder-dfd6850cfb4741d2b8a0c16c2780f00a",{"name":416,"tag":416,"options":1018,"isRSC":118},{"sectionHeading":37,"customClass":418},{"large":1020},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"id":1022,"@type":106,"tagName":131,"properties":1023,"responsiveStyles":1024},"builder-pixel-z197gdgcmu",{"src":133,"aria-hidden":134,"alt":37,"role":135,"width":124,"height":124},{"large":1025},{"height":124,"width":124,"display":138,"opacity":124,"overflow":139,"pointerEvents":140},{"deviceSize":142,"location":1027},{"path":37,"query":1028},{},{},1770892908052,1745427419274,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fb07017bfd318431690a5bb35bda35b99",[],{"kind":438,"breakpoints":1035,"originalContentId":681,"winningTest":118,"lastPreviewUrl":1036,"hasLinks":6,"hasAutosaves":6},{"xsmall":57,"small":39,"medium":40},"https://pushsecurity.com/uc/incident-response?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditCode%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CeditProjects%2CmodifyMcpServers%2CmodifyWorkflowIntegrations%2CmodifyProjectSettings%2CconnectCodeRepository%2CcreateProjects%2CindexDesignSystems%2CsendPullRequests&builder.user.role.name=Developer&builder.user.role.id=developer&builder.cachebust=true&builder.preview=use-case-page&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.use-case-page=a9d5556e77f84a37b5bd52310a7110c1&builder.overrides.a9d5556e77f84a37b5bd52310a7110c1=a9d5556e77f84a37b5bd52310a7110c1&builder.overrides.use-case-page:/uc/incident-response=a9d5556e77f84a37b5bd52310a7110c1&builder.options.includeRefs=true&builder.options.enrich=true&builder.options.locale=Default",{"createdDate":1038,"id":1039,"name":1040,"modelId":261,"published":13,"query":1041,"data":1044,"variations":1149,"lastUpdated":1150,"firstPublished":1151,"testRatio":33,"screenshot":1152,"createdBy":34,"lastUpdatedBy":674,"folders":1153,"meta":1154,"rev":440},1746122471259,"5f118e24433d46ceb79f5099987156d7","Shadow SaaS",[1042],{"@type":264,"property":265,"operator":266,"value":1043},"/uc/shadow-saas",{"seoTitle":1045,"seoDescription":1046,"customFonts":1047,"fontAwesomeIcon":1052,"title":1053,"jsCode":37,"tsCode":37,"blocks":1054,"url":1043,"state":1146},"Find and secure shadow SaaS","See and control shadow SaaS in the browser.",[1048],{"kind":273,"variants":1049,"files":1050,"family":272,"version":274,"subsets":1051,"lastModified":275,"category":295,"menu":296},[301,302,303,304,305,306,128,307,308,309,310,311,312,313,314,315,316,317],{"100":277,"200":278,"300":279,"500":280,"600":281,"700":282,"800":283,"900":284,"300italic":293,"500italic":292,"regular":290,"900italic":286,"italic":289,"100italic":288,"200italic":291,"600italic":294,"700italic":287,"800italic":285},[298,299],"faShieldCheck","Secure shadow SaaS",[1055,1141],{"@type":106,"@version":107,"tagName":323,"id":1056,"meta":1057,"children":1058},"builder-04da805c4cd34652a2db452fcda52e1d",{"previousId":935},[1059,1075,1082,1089,1098,1108,1118,1128,1135],{"@type":106,"@version":107,"id":1060,"meta":1061,"component":1062,"responsiveStyles":1073},"builder-830d414faeaf41439142f9157e8288c8",{"previousId":939},{"name":327,"options":1063,"isRSC":118},{"title":1045,"description":1064,"points":1065,"video":1072},"\u003Cp>SaaS sprawl is one of today’s fastest-growing security blind spots because most tools monitor around the edges. Push sees it at the source, in the browser, revealing every app users access, flagging risky tools, and helping you shut down exposure before it leads to a breach. No guesswork. No nasty surprises. Just real-time visibility and control.\u003C/p>",[1066,1068,1070],{"item":1067},"Discover every SaaS app users access, managed or not",{"item":1069},"Spot accounts with weak security postures like missing MFA, unmanaged access, and no SSO",{"item":1071},"Control usage with in-browser prompts, blocks, and security guardrails","https://cdn.builder.io/o/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F3e4eece318d04d6586e691d59d0741cf%2Fcompressed?apiKey=f3a1111ff5be48cdbb123cd9f5795a05&token=3e4eece318d04d6586e691d59d0741cf&alt=media&optimized=true",{"large":1074},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":342},{"@type":106,"@version":107,"id":1076,"meta":1077,"component":1078,"responsiveStyles":1080},"builder-cd7833f966cb4c7e8adf0d6c979414a6",{"previousId":956},{"name":346,"options":1079,"isRSC":118},{"AllPartners":41,"backgroundTransparent":6},{"large":1081},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":350},{"@type":106,"@version":107,"id":1083,"meta":1084,"component":1085,"responsiveStyles":1087},"builder-49d720b45430454e8b08c526f267c19f",{"previousId":963},{"name":354,"options":1086,"isRSC":118},{"darkMode":41},{"large":1088},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":1090,"component":1091,"responsiveStyles":1096},"builder-3dde0bf6c8544e5e9ab41b18a9d68034",{"name":359,"tag":359,"options":1092,"isRSC":118},{"darkMode":6,"maxWidth":363,"maxTextWidth":364,"title":1093,"description":1094,"image":1095,"reverse":6},"\u003Ch2>Use your browser to curb Saas Sprawl\u003C/h2>","\u003Cp>Shadow SaaS isn’t hiding in your network, it’s in your browser. From AI tools to unsanctioned file-sharing sites, security risks live in the apps your users sign into every day. Push maps your organization's true SaaS footprint in real time, exposing apps and accounts with unmanaged access, poor authentication, or no security oversight.\u003C/p>\u003Cp>\u003Cbr>\u003C/p>\u003Cp>\u003Cbr>\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fb6811a214c7949b6bbe0b9a3bca62efd",{"large":1097},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":1099,"meta":1100,"component":1101,"responsiveStyles":1106},"builder-e2420451ccdc4f088d0a4904cff45935",{"previousId":979},{"name":373,"options":1102,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":376,"title":1103,"description":1104,"reverse":41,"image":1105},"\u003Ch2>Discover hidden SaaS usage\u003C/h2>","\u003Cp>Push captures live browser telemetry across every tab and session. Whether a user signs into a sanctioned app with a personal account or tries a new AI plugin, you’ll see it in real time, with no integrations or manual tagging.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fe16e301f9af94665b95d98232a863d8a",{"large":1107},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"fontFamily":382,"paddingTop":384,"marginTop":384},{"@type":106,"@version":107,"id":1109,"meta":1110,"component":1111,"responsiveStyles":1116},"builder-b36de7fce7994beea9e58d94662e7166",{"previousId":989},{"name":373,"options":1112,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":389,"title":1113,"description":1114,"reverse":6,"image":1115},"\u003Ch2>Spot risky access and unsafe usage\u003C/h2>","\u003Cp>Discovery is just the beginning. Push flags apps with risky traits, no MFA, no SSO, known vulnerabilities, or broad access scopes. You’ll know which tools introduce real risk, and which users are exposed so you can act with precision.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F6585f3c242da4d70ae3cb7d02f481bef",{"large":1117},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":395},{"@type":106,"@version":107,"layerName":373,"id":1119,"meta":1120,"component":1121,"responsiveStyles":1126},"builder-dc366b5134684fe7a508edf8913103ea",{"previousId":999},{"name":373,"options":1122,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":400,"title":1123,"description":1124,"reverse":41,"image":1125},"\u003Ch2>Close gaps before they grow\u003C/h2>","\u003Cp>Push turns insight into action. When risky SaaS use is detected, guide users to enable MFA, block high-risk apps, or apply in-browser guardrails automatically. All without deploying new infrastructure or managing dozens of integrations.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fe6d60b6d91414819bc6258a318f00557",{"large":1127},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":406},{"@type":106,"@version":107,"id":1129,"meta":1130,"component":1131,"responsiveStyles":1133},"builder-8708f6f0d8da4b3f9e17bf16cda70219",{"previousId":1009},{"name":354,"options":1132,"isRSC":118},{"darkMode":6},{"large":1134},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":1136,"component":1137,"responsiveStyles":1139},"builder-8ff4b38d60534cf28cb523ab0f754875",{"name":416,"tag":416,"options":1138,"isRSC":118},{"sectionHeading":37,"customClass":418},{"large":1140},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"id":1142,"@type":106,"tagName":131,"properties":1143,"responsiveStyles":1144},"builder-pixel-d1ul2kmxbed",{"src":133,"aria-hidden":134,"alt":37,"role":135,"width":124,"height":124},{"large":1145},{"height":124,"width":124,"display":138,"opacity":124,"overflow":139,"pointerEvents":140},{"deviceSize":142,"location":1147},{"path":37,"query":1148},{},{},1770892936802,1746714967208,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F01bfb2304521412fbd2e1a1180904d40",[],{"originalContentId":919,"winningTest":118,"lastPreviewUrl":1155,"breakpoints":1156,"kind":438,"hasLinks":6,"hasAutosaves":6},"https://pushsecurity.com/uc/shadow-saas?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditCode%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CeditProjects%2CmodifyMcpServers%2CmodifyWorkflowIntegrations%2CmodifyProjectSettings%2CconnectCodeRepository%2CcreateProjects%2CindexDesignSystems%2CsendPullRequests&builder.user.role.name=Developer&builder.user.role.id=developer&builder.cachebust=true&builder.preview=use-case-page&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.use-case-page=5f118e24433d46ceb79f5099987156d7&builder.overrides.5f118e24433d46ceb79f5099987156d7=5f118e24433d46ceb79f5099987156d7&builder.overrides.use-case-page:/uc/shadow-saas=5f118e24433d46ceb79f5099987156d7&builder.options.includeRefs=true&builder.options.enrich=true&builder.options.locale=Default",{"xsmall":57,"small":39,"medium":40},{"createdDate":1158,"id":1159,"name":1160,"modelId":261,"published":13,"query":1161,"data":1164,"variations":1268,"lastUpdated":1269,"firstPublished":1270,"testRatio":33,"screenshot":1271,"createdBy":34,"lastUpdatedBy":674,"folders":1272,"meta":1273,"rev":440},1764707470172,"b62629ce2f3741158d961cd10fe74b31","Shadow AI",[1162],{"@type":264,"property":265,"operator":266,"value":1163},"/uc/shadow-ai",{"fontAwesomeIcon":1165,"seoTitle":1166,"jsCode":37,"customFonts":1167,"title":1172,"tsCode":37,"seoDescription":1173,"blocks":1174,"url":1163,"state":1265},"faBrainCircuit","Secure AI native and AI enhanced apps. ",[1168],{"variants":1169,"category":295,"files":1170,"subsets":1171,"family":272,"kind":273,"menu":296,"lastModified":275,"version":274},[301,302,303,304,305,306,128,307,308,309,310,311,312,313,314,315,316,317],{"100":277,"200":278,"300":279,"500":280,"600":281,"700":282,"800":283,"900":284,"800italic":285,"regular":290,"700italic":287,"200italic":291,"italic":289,"500italic":292,"600italic":294,"300italic":293,"100italic":288,"900italic":286},[298,299],"Secure shadow AI","See and control shadow AI apps in the browser.",[1175,1260],{"@type":106,"@version":107,"tagName":323,"id":1176,"meta":1177,"children":1178},"builder-a6e5717a2c914d5695058e4ee201a05d",{"previousId":1056},[1179,1195,1202,1209,1219,1228,1237,1247,1254],{"@type":106,"@version":107,"id":1180,"meta":1181,"component":1182,"responsiveStyles":1193},"builder-3e0ed678683f4a0eb7aa00253cf263b2",{"previousId":1060},{"name":327,"options":1183,"isRSC":118},{"title":1172,"description":1184,"points":1185,"image":1192},"\u003Cp>Your employees are adopting AI faster than you can track it. From native features in corporate apps to unapproved shadow tools, it’s all happening in the browser. Push detects every AI interaction in real time, letting you categorize apps and enforce acceptable use policies in the browser.\u003C/p>",[1186,1188,1190],{"item":1187},"Map every AI tool used across your workforce",{"item":1189},"Review and classify apps by sensitivity, purpose, and policy status",{"item":1191},"Enforce AI usage rules directly in the browser","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F33cf153d920f4e389f3650253577cff7",{"large":1194},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":342},{"@type":106,"@version":107,"id":1196,"meta":1197,"component":1198,"responsiveStyles":1200},"builder-76968f8471d14893b8189d75b08fb426",{"previousId":1076},{"name":346,"options":1199,"isRSC":118},{"AllPartners":41,"backgroundTransparent":6},{"large":1201},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"backgroundColor":350},{"@type":106,"@version":107,"id":1203,"meta":1204,"component":1205,"responsiveStyles":1207},"builder-b55b9d4bc5a649d8839ce7f6c2043d95",{"previousId":1083},{"name":354,"options":1206,"isRSC":118},{"darkMode":41},{"large":1208},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":1210,"meta":1211,"component":1212,"responsiveStyles":1217},"builder-c3f38ef4d75d4989a29b5903175ed8a1",{"previousId":1090},{"name":359,"tag":359,"options":1213,"isRSC":118},{"darkMode":6,"maxWidth":363,"maxTextWidth":364,"title":1214,"description":1215,"image":1216,"reverse":6},"\u003Ch2>Use your browser to govern AI \u003C/h2>","\u003Cp>The AI footprint inside your company is bigger than you think. From text generators to meeting assistants and design copilots, employees test, adopt, and connect new tools constantly. Push shows you those tools and which users are accessing them, without relying on network scans or API integrations.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2F30b43bda6f1644c19478fb1efa20050c",{"large":1218},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":1220,"meta":1221,"component":1222,"responsiveStyles":1226},"builder-90ee9cb9afc44e7f885523715bf51a53",{"previousId":1099},{"name":373,"options":1223,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":376,"title":1224,"description":1225,"reverse":41,"image":1115},"\u003Ch2>Discover every AI tool users touch\u003C/h2>","\u003Cp>Push captures live telemetry from the browser, identifying every AI-native and AI-enhanced application users access. You’ll know which corporate identities are connected, how data flows, and what new AI apps appear across your environment. \u003C/p>",{"large":1227},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"fontFamily":382,"paddingTop":384,"marginTop":384},{"@type":106,"@version":107,"id":1229,"meta":1230,"component":1231,"responsiveStyles":1235},"builder-9e44539fa53c4d8e87406036c921fc46",{"previousId":1109},{"name":373,"options":1232,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":389,"title":1233,"description":1234,"reverse":6,"image":1125},"\u003Ch2>Classify and manage AI risk\u003C/h2>","\u003Cp>For apps you choose to allow, Push lets you apply custom in-browser banners. You can bulk-select categories of AI tools and require users to read and acknowledge your acceptable use policy before they proceed. This creates an auditable trail and moves policy from an easy to forget document to an active, in-workflow control.\u003C/p>",{"large":1236},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":395},{"@type":106,"@version":107,"layerName":373,"id":1238,"meta":1239,"component":1240,"responsiveStyles":1245},"builder-44c1a891926f4bdeaaa37e90721fe6ac",{"previousId":1119},{"name":373,"options":1241,"isRSC":118},{"darkMode":6,"maxWidth":363,"imageMaxWidth":375,"textPaddingTop":400,"title":1242,"description":1243,"reverse":41,"image":1244},"\u003Ch2>Enforce your AI policy in the browser\u003C/h2>","\u003Cp>When an AI tool is deemed non-compliant or too risky, Push blocks it at the source. The block happens directly in the browser, preventing the user from accessing the site or submitting data. This gives you an immediate, powerful lever to stop data exfiltration and enforce a hard line on unacceptable risk.\u003C/p>","https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fa359ac1805af4e15a8a7f84632b9bb55",{"large":1246},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125,"paddingTop":406},{"@type":106,"@version":107,"id":1248,"meta":1249,"component":1250,"responsiveStyles":1252},"builder-dcc906f9cbe54dc68b3c672668e7a38f",{"previousId":1129},{"name":354,"options":1251,"isRSC":118},{"darkMode":6},{"large":1253},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"@type":106,"@version":107,"id":1255,"component":1256,"responsiveStyles":1258},"builder-d2d64780c31b4349bc75805b23a07e38",{"name":416,"tag":416,"options":1257,"isRSC":118},{"sectionHeading":37,"customClass":418},{"large":1259},{"display":121,"flexDirection":122,"position":123,"flexShrink":124,"boxSizing":125},{"id":1261,"@type":106,"tagName":131,"properties":1262,"responsiveStyles":1263},"builder-pixel-wxx9tk70r9p",{"src":133,"aria-hidden":134,"alt":37,"role":135,"width":124,"height":124},{"large":1264},{"height":124,"width":124,"display":138,"opacity":124,"overflow":139,"pointerEvents":140},{"deviceSize":142,"location":1266},{"path":37,"query":1267},{},{},1770892957225,1764950077593,"https://cdn.builder.io/api/v1/image/assets%2Ff3a1111ff5be48cdbb123cd9f5795a05%2Fe558b8b069884037a8e6904f7ecc029c",[],{"winningTest":118,"breakpoints":1274,"originalContentId":1039,"kind":438,"lastPreviewUrl":1275,"hasLinks":6,"hasAutosaves":41},{"xsmall":57,"small":39,"medium":40},"https://pushsecurity.com/uc/shadow-ai?builder.space=f3a1111ff5be48cdbb123cd9f5795a05&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditCode%2CeditDesigns%2CeditLayouts%2CeditLayers%2CeditContentPriority%2CeditFolders%2CeditProjects%2CmodifyMcpServers%2CmodifyWorkflowIntegrations%2CmodifyProjectSettings%2CconnectCodeRepository%2CcreateProjects%2CindexDesignSystems%2CsendPullRequests&builder.user.role.name=Developer&builder.user.role.id=developer&builder.cachebust=true&builder.preview=use-case-page&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.use-case-page=b62629ce2f3741158d961cd10fe74b31&builder.overrides.b62629ce2f3741158d961cd10fe74b31=b62629ce2f3741158d961cd10fe74b31&builder.overrides.use-case-page:/uc/shadow-ai=b62629ce2f3741158d961cd10fe74b31&builder.options.includeRefs=true&builder.options.enrich=true&builder.options.locale=Default",{"_path":1277,"_dir":1278,"_draft":6,"_partial":6,"_locale":37,"sys":1279,"ogImage":118,"summary":1282,"title":1296,"subtitle":118,"metaTitle":1297,"synopsis":1298,"hashTags":118,"publishedDate":1299,"slug":1300,"tagsCollection":1301,"relatedBlogPostsCollection":1307,"authorsCollection":2382,"content":2386,"_id":3165,"_type":3166,"_source":3167,"_file":3168,"_stem":3169,"_extension":3166},"/blog/product-release-november-2025","blog",{"id":1280,"publishedAt":1281},"3ygDMHnTN58Lyb3W3k969w","2025-11-07T21:07:26.267Z",{"json":1283},{"data":1284,"content":1285,"nodeType":1295},{},[1286],{"data":1287,"content":1288,"nodeType":1294},{},[1289],{"data":1290,"marks":1291,"value":1292,"nodeType":1293},{},[],"Browser extension visibility, ClickFix detection, RBAC and more.","text","paragraph","document","Product release: November 2025","Push Security new product features for November 2025","Here’s what’s new on the Push platform for November 2025.","2025-11-04T00:00:00.000Z","product-release-november-2025",{"items":1302},[1303],{"sys":1304,"name":1306},{"id":1305},"5jk0kqjSdSK2L0YiistQjY","Release notes",{"items":1308},[1309,1889],{"__typename":1310,"sys":1311,"content":1313,"title":1873,"synopsis":1874,"hashTags":118,"publishedDate":1875,"slug":1876,"tagsCollection":1877,"authorsCollection":1881},"BlogPosts",{"id":1312},"5QZCp0CTUoF0V7yZ8WnQrr",{"json":1314},{"data":1315,"content":1316,"nodeType":1295},{},[1317,1325,1400,1406,1423,1471,1514,1523,1543,1549,1574,1603,1609,1627,1633,1640,1647,1672,1690,1697,1713,1720,1765,1771,1777,1784,1800,1818,1825,1832,1855],{"data":1318,"content":1319,"nodeType":1324},{},[1320],{"data":1321,"marks":1322,"value":1323,"nodeType":1293},{},[],"What’s new this month:","heading-1",{"data":1326,"content":1327,"nodeType":1399},{},[1328,1339,1349,1359,1369,1379,1389],{"data":1329,"content":1330,"nodeType":1338},{},[1331],{"data":1332,"content":1333,"nodeType":1294},{},[1334],{"data":1335,"marks":1336,"value":1337,"nodeType":1293},{},[],"Attack timeline, screenshots & classifications for Detections","list-item",{"data":1340,"content":1341,"nodeType":1338},{},[1342],{"data":1343,"content":1344,"nodeType":1294},{},[1345],{"data":1346,"marks":1347,"value":1348,"nodeType":1293},{},[],"Block cloned login pages",{"data":1350,"content":1351,"nodeType":1338},{},[1352],{"data":1353,"content":1354,"nodeType":1294},{},[1355],{"data":1356,"marks":1357,"value":1358,"nodeType":1293},{},[],"Block URL schema obfuscation",{"data":1360,"content":1361,"nodeType":1338},{},[1362],{"data":1363,"content":1364,"nodeType":1294},{},[1365],{"data":1366,"marks":1367,"value":1368,"nodeType":1293},{},[],"Identify browsers synced to personal profiles",{"data":1370,"content":1371,"nodeType":1338},{},[1372],{"data":1373,"content":1374,"nodeType":1294},{},[1375],{"data":1376,"marks":1377,"value":1378,"nodeType":1293},{},[],"Enhanced dashboard",{"data":1380,"content":1381,"nodeType":1338},{},[1382],{"data":1383,"content":1384,"nodeType":1294},{},[1385],{"data":1386,"marks":1387,"value":1388,"nodeType":1293},{},[],"Configure a custom data retention period",{"data":1390,"content":1391,"nodeType":1338},{},[1392],{"data":1393,"content":1394,"nodeType":1294},{},[1395],{"data":1396,"marks":1397,"value":1398,"nodeType":1293},{},[],"Debug logs for SIEM & webhooks integrations","unordered-list",{"data":1401,"content":1402,"nodeType":1324},{},[1403],{"data":1404,"marks":1405,"value":1337,"nodeType":1293},{},[],{"data":1407,"content":1408,"nodeType":1294},{},[1409,1413,1419],{"data":1410,"marks":1411,"value":1412,"nodeType":1293},{},[],"You can now get deeper context and telemetry to investigate attacks that Push intercepts in the browser using these recently released enrichments for Push’s ",{"data":1414,"marks":1415,"value":1418,"nodeType":1293},{},[1416],{"type":1417},"bold","Detections",{"data":1420,"marks":1421,"value":1422,"nodeType":1293},{},[],":",{"data":1424,"content":1425,"nodeType":1399},{},[1426,1441,1456],{"data":1427,"content":1428,"nodeType":1338},{},[1429],{"data":1430,"content":1431,"nodeType":1294},{},[1432,1437],{"data":1433,"marks":1434,"value":1436,"nodeType":1293},{},[1435],{"type":1417},"Timeline:",{"data":1438,"marks":1439,"value":1440,"nodeType":1293},{},[]," An attack timeline of where a phishing link originated, how a user interacted with the page, and how Push responded.",{"data":1442,"content":1443,"nodeType":1338},{},[1444],{"data":1445,"content":1446,"nodeType":1294},{},[1447,1452],{"data":1448,"marks":1449,"value":1451,"nodeType":1293},{},[1450],{"type":1417},"Screenshots:",{"data":1453,"marks":1454,"value":1455,"nodeType":1293},{},[]," Optional screenshots of the suspicious page, to quickly triage detections.",{"data":1457,"content":1458,"nodeType":1338},{},[1459],{"data":1460,"content":1461,"nodeType":1294},{},[1462,1467],{"data":1463,"marks":1464,"value":1466,"nodeType":1293},{},[1465],{"type":1417},"Blast radius:",{"data":1468,"marks":1469,"value":1470,"nodeType":1293},{},[]," A view of the impact of this attack and whether other apps are also compromised or at risk as a result.",{"data":1472,"content":1473,"nodeType":1294},{},[1474,1478,1483,1487,1492,1496,1501,1505,1510],{"data":1475,"marks":1476,"value":1477,"nodeType":1293},{},[],"You can also now classify a detection to record the outcome of your investigation. Options include: ",{"data":1479,"marks":1480,"value":1482,"nodeType":1293},{},[1481],{"type":1417},"true positive",{"data":1484,"marks":1485,"value":1486,"nodeType":1293},{},[],", ",{"data":1488,"marks":1489,"value":1491,"nodeType":1293},{},[1490],{"type":1417},"benign true positive",{"data":1493,"marks":1494,"value":1495,"nodeType":1293},{},[]," (such as a detection triggered by a phishing simulation exercise), and ",{"data":1497,"marks":1498,"value":1500,"nodeType":1293},{},[1499],{"type":1417},"false positive",{"data":1502,"marks":1503,"value":1504,"nodeType":1293},{},[],". The default state is ",{"data":1506,"marks":1507,"value":1509,"nodeType":1293},{},[1508],{"type":1417},"not classified",{"data":1511,"marks":1512,"value":1513,"nodeType":1293},{},[],".",{"data":1515,"content":1521,"nodeType":1522},{"target":1516},{"sys":1517},{"id":1518,"type":1519,"linkType":1520},"2IMRHDY5ShjsquyaW7hB5M","Link","Entry",[],"embedded-entry-block",{"data":1524,"content":1525,"nodeType":1294},{},[1526,1529,1540],{"data":1527,"marks":1528,"value":37,"nodeType":1293},{},[],{"data":1530,"content":1534,"nodeType":1539},{"target":1531},{"sys":1532},{"id":1533,"type":1519,"linkType":1520},"6OFdfAsoPUECeRAetWvedp",[1535],{"data":1536,"marks":1537,"value":1538,"nodeType":1293},{},[],"Learn more","entry-hyperlink",{"data":1541,"marks":1542,"value":37,"nodeType":1293},{},[],{"data":1544,"content":1545,"nodeType":1324},{},[1546],{"data":1547,"marks":1548,"value":1348,"nodeType":1293},{},[],{"data":1550,"content":1551,"nodeType":1294},{},[1552,1556,1561,1565,1570],{"data":1553,"marks":1554,"value":1555,"nodeType":1293},{},[],"You can now ",{"data":1557,"marks":1558,"value":1560,"nodeType":1293},{},[1559],{"type":1417},"Warn",{"data":1562,"marks":1563,"value":1564,"nodeType":1293},{},[]," or ",{"data":1566,"marks":1567,"value":1569,"nodeType":1293},{},[1568],{"type":1417},"Block",{"data":1571,"marks":1572,"value":1573,"nodeType":1293},{},[]," employees when Push detects that they’re visiting a cloned login page.",{"data":1575,"content":1576,"nodeType":1294},{},[1577,1582,1586,1591,1595,1599],{"data":1578,"marks":1579,"value":1581,"nodeType":1293},{},[1580],{"type":1417},"Cloned login page detection",{"data":1583,"marks":1584,"value":1585,"nodeType":1293},{},[],", which you can configure on the ",{"data":1587,"marks":1588,"value":1590,"nodeType":1293},{},[1589],{"type":1417},"Controls",{"data":1592,"marks":1593,"value":1594,"nodeType":1293},{},[]," page of the Push admin console, has become a highly effective and low false-positive control. We recommend that you move to using ",{"data":1596,"marks":1597,"value":1569,"nodeType":1293},{},[1598],{"type":1417},{"data":1600,"marks":1601,"value":1602,"nodeType":1293},{},[]," mode for your organization — if you’re not already!",{"data":1604,"content":1608,"nodeType":1522},{"target":1605},{"sys":1606},{"id":1607,"type":1519,"linkType":1520},"4auXExHqaYtu44zTFGh47s",[],{"data":1610,"content":1611,"nodeType":1294},{},[1612,1615,1624],{"data":1613,"marks":1614,"value":37,"nodeType":1293},{},[],{"data":1616,"content":1620,"nodeType":1539},{"target":1617},{"sys":1618},{"id":1619,"type":1519,"linkType":1520},"jN3GN5ddMJZiDtl0fgUVd",[1621],{"data":1622,"marks":1623,"value":1538,"nodeType":1293},{},[],{"data":1625,"marks":1626,"value":37,"nodeType":1293},{},[],{"data":1628,"content":1629,"nodeType":1324},{},[1630],{"data":1631,"marks":1632,"value":1368,"nodeType":1293},{},[],{"data":1634,"content":1635,"nodeType":1294},{},[1636],{"data":1637,"marks":1638,"value":1639,"nodeType":1293},{},[],"The Push browser extension can now identify the email address that’s used to log in to a browser, as well as whether browser sync is enabled.",{"data":1641,"content":1642,"nodeType":1294},{},[1643],{"data":1644,"marks":1645,"value":1646,"nodeType":1293},{},[],"Using this data, you can see whether any employees are signed in to work browsers with non-company identities and syncing their browsers, which can result in work credentials being synced to personal profiles. ",{"data":1648,"content":1649,"nodeType":1294},{},[1650,1654,1659,1663,1668],{"data":1651,"marks":1652,"value":1653,"nodeType":1293},{},[],"To find this data, go to the Push admin console and view the ",{"data":1655,"marks":1656,"value":1658,"nodeType":1293},{},[1657],{"type":1417},"Browsers",{"data":1660,"marks":1661,"value":1662,"nodeType":1293},{},[]," page under ",{"data":1664,"marks":1665,"value":1667,"nodeType":1293},{},[1666],{"type":1417},"Investigate",{"data":1669,"marks":1670,"value":1671,"nodeType":1293},{},[]," in the left toolbar.",{"data":1673,"content":1674,"nodeType":1294},{},[1675,1678,1687],{"data":1676,"marks":1677,"value":37,"nodeType":1293},{},[],{"data":1679,"content":1683,"nodeType":1539},{"target":1680},{"sys":1681},{"id":1682,"type":1519,"linkType":1520},"2IS6Dbz1fnJZrDfrMSTFQd",[1684],{"data":1685,"marks":1686,"value":1538,"nodeType":1293},{},[],{"data":1688,"marks":1689,"value":37,"nodeType":1293},{},[],{"data":1691,"content":1692,"nodeType":1324},{},[1693],{"data":1694,"marks":1695,"value":1696,"nodeType":1293},{},[],"Enhanced dashboard for easier monitoring",{"data":1698,"content":1699,"nodeType":1294},{},[1700,1704,1709],{"data":1701,"marks":1702,"value":1703,"nodeType":1293},{},[],"We’ve improved the data and design of the Push admin console ",{"data":1705,"marks":1706,"value":1708,"nodeType":1293},{},[1707],{"type":1417},"Dashboard",{"data":1710,"marks":1711,"value":1712,"nodeType":1293},{},[]," so you can keep track of the important developments in your environment.",{"data":1714,"content":1715,"nodeType":1294},{},[1716],{"data":1717,"marks":1718,"value":1719,"nodeType":1293},{},[],"A few of the changes:",{"data":1721,"content":1722,"nodeType":1399},{},[1723,1741,1755],{"data":1724,"content":1725,"nodeType":1338},{},[1726],{"data":1727,"content":1728,"nodeType":1294},{},[1729,1733,1737],{"data":1730,"marks":1731,"value":1732,"nodeType":1293},{},[],"A snapshot of recent ",{"data":1734,"marks":1735,"value":1418,"nodeType":1293},{},[1736],{"type":1417},{"data":1738,"marks":1739,"value":1740,"nodeType":1293},{},[]," activity",{"data":1742,"content":1743,"nodeType":1338},{},[1744],{"data":1745,"content":1746,"nodeType":1294},{},[1747,1751],{"data":1748,"marks":1749,"value":1750,"nodeType":1293},{},[],"An overview of all events on the platform, including activity related to ",{"data":1752,"marks":1753,"value":1590,"nodeType":1293},{},[1754],{"type":1417},{"data":1756,"content":1757,"nodeType":1338},{},[1758],{"data":1759,"content":1760,"nodeType":1294},{},[1761],{"data":1762,"marks":1763,"value":1764,"nodeType":1293},{},[],"Performance improvements so the page load is fast for even very large deployments",{"data":1766,"content":1770,"nodeType":1522},{"target":1767},{"sys":1768},{"id":1769,"type":1519,"linkType":1520},"4kqqwOPsN7VhLeQdrV15bH",[],{"data":1772,"content":1773,"nodeType":1324},{},[1774],{"data":1775,"marks":1776,"value":1388,"nodeType":1293},{},[],{"data":1778,"content":1779,"nodeType":1294},{},[1780],{"data":1781,"marks":1782,"value":1783,"nodeType":1293},{},[],"You can now configure how long activity data will be retained in Push by configuring a data retention period. ",{"data":1785,"content":1786,"nodeType":1294},{},[1787,1791,1796],{"data":1788,"marks":1789,"value":1790,"nodeType":1293},{},[],"From the admin console, go to ",{"data":1792,"marks":1793,"value":1795,"nodeType":1293},{},[1794],{"type":1417},"Settings > Organization > Data retention",{"data":1797,"marks":1798,"value":1799,"nodeType":1293},{},[]," and select the data retention period in years.",{"data":1801,"content":1802,"nodeType":1294},{},[1803,1806,1815],{"data":1804,"marks":1805,"value":37,"nodeType":1293},{},[],{"data":1807,"content":1811,"nodeType":1539},{"target":1808},{"sys":1809},{"id":1810,"type":1519,"linkType":1520},"4esJSEUrMN2hpbghIkXjDG",[1812],{"data":1813,"marks":1814,"value":1538,"nodeType":1293},{},[],{"data":1816,"marks":1817,"value":37,"nodeType":1293},{},[],{"data":1819,"content":1820,"nodeType":1324},{},[1821],{"data":1822,"marks":1823,"value":1824,"nodeType":1293},{},[],"Easier debugging for webhook or integration error messages",{"data":1826,"content":1827,"nodeType":1294},{},[1828],{"data":1829,"marks":1830,"value":1831,"nodeType":1293},{},[],"We’ve added a debug log to make it easier to see what’s not working when you receive an error related to your Push webhooks or SIEM integrations.",{"data":1833,"content":1834,"nodeType":1294},{},[1835,1839,1844,1847,1852],{"data":1836,"marks":1837,"value":1838,"nodeType":1293},{},[],"You can access the debug log by opening the details slideout in the Push admin console for the webhook or integration you’ve created. Go to ",{"data":1840,"marks":1841,"value":1843,"nodeType":1293},{},[1842],{"type":1417},"Settings > Webhooks",{"data":1845,"marks":1846,"value":1564,"nodeType":1293},{},[],{"data":1848,"marks":1849,"value":1851,"nodeType":1293},{},[1850],{"type":1417},"Settings > Integrations",{"data":1853,"marks":1854,"value":1513,"nodeType":1293},{},[],{"data":1856,"content":1857,"nodeType":1294},{},[1858,1861,1870],{"data":1859,"marks":1860,"value":37,"nodeType":1293},{},[],{"data":1862,"content":1866,"nodeType":1539},{"target":1863},{"sys":1864},{"id":1865,"type":1519,"linkType":1520},"2naceBODKDL3iw72wrce6E",[1867],{"data":1868,"marks":1869,"value":1538,"nodeType":1293},{},[],{"data":1871,"marks":1872,"value":37,"nodeType":1293},{},[],"Product release: September 2025","Here’s what’s new on the Push platform for September 2025.","2025-09-08T00:00:00.000Z","product-release-september-2025",{"items":1878},[1879],{"sys":1880,"name":1306},{"id":1305},{"items":1882},[1883],{"fullName":1884,"firstName":1885,"jobTitle":1886,"profilePicture":1887},"Andy Waugh","Andy","VP Product",{"url":1888},"https://images.ctfassets.net/y1cdw1ablpvd/3Rf76rJn6S9inMb4dUnAIJ/0a787f8141d05b95300e2fe77c4493fa/DSC_6868.jpg",{"__typename":1310,"sys":1890,"content":1892,"title":2370,"synopsis":2371,"hashTags":118,"publishedDate":2372,"slug":2373,"tagsCollection":2374,"authorsCollection":2378},{"id":1891},"20xOvhmIKW7E0e1g5q7D2h",{"json":1893},{"data":1894,"content":1895,"nodeType":1295},{},[1896,1903,1976,1982,1998,2005,2011,2029,2035,2051,2058,2065,2090,2096,2102,2118,2125,2131,2149,2155,2171,2178,2185,2191,2209,2215,2230,2237,2243,2260,2266,2299,2315,2321,2337,2343,2358,2364],{"data":1897,"content":1898,"nodeType":1324},{},[1899],{"data":1900,"marks":1901,"value":1902,"nodeType":1293},{},[],"What's new this month:",{"data":1904,"content":1905,"nodeType":1399},{},[1906,1916,1926,1936,1946,1956,1966],{"data":1907,"content":1908,"nodeType":1338},{},[1909],{"data":1910,"content":1911,"nodeType":1294},{},[1912],{"data":1913,"marks":1914,"value":1915,"nodeType":1293},{},[],"Streamline investigations with Detections page",{"data":1917,"content":1918,"nodeType":1338},{},[1919],{"data":1920,"content":1921,"nodeType":1294},{},[1922],{"data":1923,"marks":1924,"value":1925,"nodeType":1293},{},[],"New Labs feature: Employee verification codes",{"data":1927,"content":1928,"nodeType":1338},{},[1929],{"data":1930,"content":1931,"nodeType":1294},{},[1932],{"data":1933,"marks":1934,"value":1935,"nodeType":1293},{},[],"Enforce strong passwords with in-browser guardrails",{"data":1937,"content":1938,"nodeType":1338},{},[1939],{"data":1940,"content":1941,"nodeType":1294},{},[1942],{"data":1943,"marks":1944,"value":1945,"nodeType":1293},{},[],"Merge related employee records",{"data":1947,"content":1948,"nodeType":1338},{},[1949],{"data":1950,"content":1951,"nodeType":1294},{},[1952],{"data":1953,"marks":1954,"value":1955,"nodeType":1293},{},[],"Customize your webhook events",{"data":1957,"content":1958,"nodeType":1338},{},[1959],{"data":1960,"content":1961,"nodeType":1294},{},[1962],{"data":1963,"marks":1964,"value":1965,"nodeType":1293},{},[],"Create rules for phishing tool detection and MFA enforcement",{"data":1967,"content":1968,"nodeType":1338},{},[1969],{"data":1970,"content":1971,"nodeType":1294},{},[1972],{"data":1973,"marks":1974,"value":1975,"nodeType":1293},{},[],"New integration for Microsoft Sentinel",{"data":1977,"content":1978,"nodeType":1324},{},[1979],{"data":1980,"marks":1981,"value":1915,"nodeType":1293},{},[],{"data":1983,"content":1984,"nodeType":1294},{},[1985,1989,1994],{"data":1986,"marks":1987,"value":1988,"nodeType":1293},{},[],"You can now receive and triage detections in the Push admin console (or get them via the Push REST API, webhooks or ChatOps), giving you a ",{"data":1990,"marks":1991,"value":1993,"nodeType":1293},{},[1992],{"type":1417},"single view of all the security events that Push has detected",{"data":1995,"marks":1996,"value":1997,"nodeType":1293},{},[],", such as AiTM phishing, stolen creds, or blocked URLs being visited by employees.",{"data":1999,"content":2000,"nodeType":1294},{},[2001],{"data":2002,"marks":2003,"value":2004,"nodeType":1293},{},[]," Use the additional telemetry about each detection, such as timestamp, detection URL, type of phishkit detected, Push response action, etc., to understand how to triage the incident. ",{"data":2006,"content":2010,"nodeType":1522},{"target":2007},{"sys":2008},{"id":2009,"type":1519,"linkType":1520},"53BOccCQ72Yo3oCSUWVFXn",[],{"data":2012,"content":2013,"nodeType":1294},{},[2014,2017,2026],{"data":2015,"marks":2016,"value":37,"nodeType":1293},{},[],{"data":2018,"content":2022,"nodeType":1539},{"target":2019},{"sys":2020},{"id":2021,"type":1519,"linkType":1520},"6jbLw9Wi2JuddCXL6ncrCV",[2023],{"data":2024,"marks":2025,"value":1538,"nodeType":1293},{},[],{"data":2027,"marks":2028,"value":37,"nodeType":1293},{},[],{"data":2030,"content":2031,"nodeType":1324},{},[2032],{"data":2033,"marks":2034,"value":1925,"nodeType":1293},{},[],{"data":2036,"content":2037,"nodeType":1294},{},[2038,2042,2047],{"data":2039,"marks":2040,"value":2041,"nodeType":1293},{},[],"Employees can now get a 6-digit verification code via the Push browser extension that you can use to ",{"data":2043,"marks":2044,"value":2046,"nodeType":1293},{},[2045],{"type":1417},"validate that your help desk is speaking to someone from your organization",{"data":2048,"marks":2049,"value":2050,"nodeType":1293},{},[],".  ",{"data":2052,"content":2053,"nodeType":1294},{},[2054],{"data":2055,"marks":2056,"value":2057,"nodeType":1293},{},[],"The verification code is the same for all employees at a given organization, and resets every 24 hours. If your help desk needs to verify that they’re speaking to an employee, they can ask them to open the details tray for their Push extension and verify the code.",{"data":2059,"content":2060,"nodeType":1294},{},[2061],{"data":2062,"marks":2063,"value":2064,"nodeType":1293},{},[],"Employee verification codes is a Labs feature, which means it’s available on an early-access basis and we're particularly interested in hearing from you if this is a problem you're interested in solving using Push. ",{"data":2066,"content":2067,"nodeType":1294},{},[2068,2072,2077,2081,2086],{"data":2069,"marks":2070,"value":2071,"nodeType":1293},{},[],"You can enable Labs features by going to the ",{"data":2073,"marks":2074,"value":2076,"nodeType":1293},{},[2075],{"type":1417},"Settings",{"data":2078,"marks":2079,"value":2080,"nodeType":1293},{},[]," page of the Push admin console and choosing the ",{"data":2082,"marks":2083,"value":2085,"nodeType":1293},{},[2084],{"type":1417},"Labs",{"data":2087,"marks":2088,"value":2089,"nodeType":1293},{},[]," tab.",{"data":2091,"content":2095,"nodeType":1522},{"target":2092},{"sys":2093},{"id":2094,"type":1519,"linkType":1520},"19Baqh5QwbonzsR0EcaDS8",[],{"data":2097,"content":2098,"nodeType":1324},{},[2099],{"data":2100,"marks":2101,"value":1935,"nodeType":1293},{},[],{"data":2103,"content":2104,"nodeType":1294},{},[2105,2109,2114],{"data":2106,"marks":2107,"value":2108,"nodeType":1293},{},[],"Prompt your employees to change an insecure password using Push’s new in-browser guardrail, ",{"data":2110,"marks":2111,"value":2113,"nodeType":1293},{},[2112],{"type":1417},"Strong password enforcement",{"data":2115,"marks":2116,"value":2117,"nodeType":1293},{},[],". ",{"data":2119,"content":2120,"nodeType":1294},{},[2121],{"data":2122,"marks":2123,"value":2124,"nodeType":1293},{},[],"You can select which password security issues you want to remediate, and which apps you want to target using the configuration rules for this control. Then, when Push observes a password issue, it will automatically display a banner to end-users prompting them to change their password.",{"data":2126,"content":2130,"nodeType":1522},{"target":2127},{"sys":2128},{"id":2129,"type":1519,"linkType":1520},"6ZcsdzYPxLAE1K170mQPHE",[],{"data":2132,"content":2133,"nodeType":1294},{},[2134,2137,2146],{"data":2135,"marks":2136,"value":37,"nodeType":1293},{},[],{"data":2138,"content":2142,"nodeType":1539},{"target":2139},{"sys":2140},{"id":2141,"type":1519,"linkType":1520},"2dAP36chda6ZDGKzw0Itfs",[2143],{"data":2144,"marks":2145,"value":1538,"nodeType":1293},{},[],{"data":2147,"marks":2148,"value":37,"nodeType":1293},{},[],{"data":2150,"content":2151,"nodeType":1324},{},[2152],{"data":2153,"marks":2154,"value":1945,"nodeType":1293},{},[],{"data":2156,"content":2157,"nodeType":1294},{},[2158,2162,2167],{"data":2159,"marks":2160,"value":2161,"nodeType":1293},{},[],"If you have employees using multiple email addresses, you can ",{"data":2163,"marks":2164,"value":2166,"nodeType":1293},{},[2165],{"type":1417},"now merge those records in the Push platform",{"data":2168,"marks":2169,"value":2170,"nodeType":1293},{},[]," so they can be treated as a single employee. ",{"data":2172,"content":2173,"nodeType":1294},{},[2174],{"data":2175,"marks":2176,"value":2177,"nodeType":1293},{},[],"A common use case for merging employee records is when you have employees with a user account and an administrator account. By merging records in cases like this, you can resolve incorrect shared account findings and correct your license usage so only the primary employee record consumes a license. ",{"data":2179,"content":2180,"nodeType":1294},{},[2181],{"data":2182,"marks":2183,"value":2184,"nodeType":1293},{},[],"You can also merge records programmatically via the Push REST API. This is helpful if you have a predictable pattern for usernames you're mapping.",{"data":2186,"content":2190,"nodeType":1522},{"target":2187},{"sys":2188},{"id":2189,"type":1519,"linkType":1520},"3xcEqhSUZ1VmZTsgSOS4xH",[],{"data":2192,"content":2193,"nodeType":1294},{},[2194,2197,2206],{"data":2195,"marks":2196,"value":37,"nodeType":1293},{},[],{"data":2198,"content":2202,"nodeType":1539},{"target":2199},{"sys":2200},{"id":2201,"type":1519,"linkType":1520},"3RIMjhmhJcHC2V7Lkrhvj2",[2203],{"data":2204,"marks":2205,"value":1538,"nodeType":1293},{},[],{"data":2207,"marks":2208,"value":37,"nodeType":1293},{},[],{"data":2210,"content":2211,"nodeType":1324},{},[2212],{"data":2213,"marks":2214,"value":1955,"nodeType":1293},{},[],{"data":2216,"content":2217,"nodeType":1294},{},[2218,2221,2226],{"data":2219,"marks":2220,"value":1555,"nodeType":1293},{},[],{"data":2222,"marks":2223,"value":2225,"nodeType":1293},{},[2224],{"type":1417},"select which events you want when creating a webhook",{"data":2227,"marks":2228,"value":2229,"nodeType":1293},{},[]," in the Push platform. For example, if you want to build an automation around specific Push events or send only Push detection alerts to your SIEM, you can elect to send just those events to your configured destinations. ",{"data":2231,"content":2232,"nodeType":1294},{},[2233],{"data":2234,"marks":2235,"value":2236,"nodeType":1293},{},[],"You can select which events you want to consume when configuring a new webhook via the Push admin console.",{"data":2238,"content":2242,"nodeType":1522},{"target":2239},{"sys":2240},{"id":2241,"type":1519,"linkType":1520},"755nABuK9KGdHHwWNqDtmS",[],{"data":2244,"content":2245,"nodeType":1294},{},[2246,2249,2257],{"data":2247,"marks":2248,"value":37,"nodeType":1293},{},[],{"data":2250,"content":2252,"nodeType":2256},{"uri":2251},"https://pushsecurity.redoc.ly/webhooks-v1",[2253],{"data":2254,"marks":2255,"value":1538,"nodeType":1293},{},[],"hyperlink",{"data":2258,"marks":2259,"value":37,"nodeType":1293},{},[],{"data":2261,"content":2262,"nodeType":1324},{},[2263],{"data":2264,"marks":2265,"value":1965,"nodeType":1293},{},[],{"data":2267,"content":2268,"nodeType":1294},{},[2269,2273,2278,2282,2287,2291,2296],{"data":2270,"marks":2271,"value":2272,"nodeType":1293},{},[],"We’re continuing to ",{"data":2274,"marks":2275,"value":2277,"nodeType":1293},{},[2276],{"type":1417},"add configuration rule capabilities to security controls",{"data":2279,"marks":2280,"value":2281,"nodeType":1293},{},[]," in the Push platform, including for ",{"data":2283,"marks":2284,"value":2286,"nodeType":1293},{},[2285],{"type":1417},"phishing tool detection",{"data":2288,"marks":2289,"value":2290,"nodeType":1293},{},[]," and ",{"data":2292,"marks":2293,"value":2295,"nodeType":1293},{},[2294],{"type":1417},"MFA enforcement",{"data":2297,"marks":2298,"value":2117,"nodeType":1293},{},[],{"data":2300,"content":2301,"nodeType":1294},{},[2302,2306,2311],{"data":2303,"marks":2304,"value":2305,"nodeType":1293},{},[],"With these config rules, you can scope a control to specific employees or employee groups, and carve out exemptions if you like. You can also set the control to apply to specific apps, or set the ",{"data":2307,"marks":2308,"value":2310,"nodeType":1293},{},[2309],{"type":1417},"Mode",{"data":2312,"marks":2313,"value":2314,"nodeType":1293},{},[]," (e.g. Monitor, Warn, or Block), where applicable.",{"data":2316,"content":2320,"nodeType":1522},{"target":2317},{"sys":2318},{"id":2319,"type":1519,"linkType":1520},"2eKYcSet4tkd6UEffzdaaa",[],{"data":2322,"content":2323,"nodeType":1294},{},[2324,2327,2334],{"data":2325,"marks":2326,"value":37,"nodeType":1293},{},[],{"data":2328,"content":2330,"nodeType":2256},{"uri":2329},"/help/10121/#how-to-create-a-configuration-rule",[2331],{"data":2332,"marks":2333,"value":1538,"nodeType":1293},{},[],{"data":2335,"marks":2336,"value":37,"nodeType":1293},{},[],{"data":2338,"content":2339,"nodeType":1324},{},[2340],{"data":2341,"marks":2342,"value":1975,"nodeType":1293},{},[],{"data":2344,"content":2345,"nodeType":1294},{},[2346,2350,2354],{"data":2347,"marks":2348,"value":2349,"nodeType":1293},{},[],"Push now offers a Microsoft Sentinel integration to make it easier to send Push data to your Sentinel SIEM. You can start setting up your integration by going to ",{"data":2351,"marks":2352,"value":1851,"nodeType":1293},{},[2353],{"type":1417},{"data":2355,"marks":2356,"value":2357,"nodeType":1293},{},[]," in the Push admin console and selecting the Sentinel tile.",{"data":2359,"content":2363,"nodeType":1522},{"target":2360},{"sys":2361},{"id":2362,"type":1519,"linkType":1520},"5l5TIPvbOoNgauV7gUj7fy",[],{"data":2365,"content":2366,"nodeType":1294},{},[2367],{"data":2368,"marks":2369,"value":37,"nodeType":1293},{},[],"Product release: June 2025","Here’s what’s new on the Push platform for June 2025.","2025-06-09T00:00:00.000Z","product-release-june-2025",{"items":2375},[2376],{"sys":2377,"name":1306},{"id":1305},{"items":2379},[2380],{"fullName":1884,"firstName":1885,"jobTitle":1886,"profilePicture":2381},{"url":1888},{"items":2383},[2384],{"fullName":1884,"firstName":1885,"jobTitle":1886,"profilePicture":2385},{"url":1888},{"json":2387,"links":3095},{"data":2388,"content":2389,"nodeType":1295},{},[2390,2396,2469,2475,2482,2507,2531,2564,2570,2588,2594,2601,2608,2641,2647,2665,2671,2687,2694,2718,2725,2732,2755,2771,2777,2783,2790,2806,2813,2866,2873,2879,2897,2903,2919,2926,2949,2972,2978,2985,3089],{"data":2391,"content":2392,"nodeType":1324},{},[2393],{"data":2394,"marks":2395,"value":1902,"nodeType":1293},{},[],{"data":2397,"content":2398,"nodeType":1399},{},[2399,2409,2419,2429,2439,2449,2459],{"data":2400,"content":2401,"nodeType":1338},{},[2402],{"data":2403,"content":2404,"nodeType":1294},{},[2405],{"data":2406,"marks":2407,"value":2408,"nodeType":1293},{},[],"Get visibility for all installed browser extensions in your environment",{"data":2410,"content":2411,"nodeType":1338},{},[2412],{"data":2413,"content":2414,"nodeType":1294},{},[2415],{"data":2416,"marks":2417,"value":2418,"nodeType":1293},{},[],"New detection for ClickFix-style malicious copy-paste attacks",{"data":2420,"content":2421,"nodeType":1338},{},[2422],{"data":2423,"content":2424,"nodeType":1294},{},[2425],{"data":2426,"marks":2427,"value":2428,"nodeType":1293},{},[],"New Labs feature: Experimental detections",{"data":2430,"content":2431,"nodeType":1338},{},[2432],{"data":2433,"content":2434,"nodeType":1294},{},[2435],{"data":2436,"marks":2437,"value":2438,"nodeType":1293},{},[],"RBAC for the Push admin console",{"data":2440,"content":2441,"nodeType":1338},{},[2442],{"data":2443,"content":2444,"nodeType":1294},{},[2445],{"data":2446,"marks":2447,"value":2448,"nodeType":1293},{},[],"URLscan.io and domain registration enrichment for detections",{"data":2450,"content":2451,"nodeType":1338},{},[2452],{"data":2453,"content":2454,"nodeType":1294},{},[2455],{"data":2456,"marks":2457,"value":2458,"nodeType":1293},{},[],"Filter events by entities",{"data":2460,"content":2461,"nodeType":1338},{},[2462],{"data":2463,"content":2464,"nodeType":1294},{},[2465],{"data":2466,"marks":2467,"value":2468,"nodeType":1293},{},[],"And a few other things … ",{"data":2470,"content":2471,"nodeType":1324},{},[2472],{"data":2473,"marks":2474,"value":2408,"nodeType":1293},{},[],{"data":2476,"content":2477,"nodeType":1294},{},[2478],{"data":2479,"marks":2480,"value":2481,"nodeType":1293},{},[],"You can now use Push to see other browser extensions installed on your employees’ browsers.",{"data":2483,"content":2484,"nodeType":1294},{},[2485,2489,2494,2498,2503],{"data":2486,"marks":2487,"value":2488,"nodeType":1293},{},[],"You can enable this feature by going to ",{"data":2490,"marks":2491,"value":2493,"nodeType":1293},{},[2492],{"type":1417},"Settings > Organization",{"data":2495,"marks":2496,"value":2497,"nodeType":1293},{},[]," in the Push admin console and toggling on ",{"data":2499,"marks":2500,"value":2502,"nodeType":1293},{},[2501],{"type":1417},"Browser extension visibility",{"data":2504,"marks":2505,"value":2506,"nodeType":1293},{},[],". There is no end-user impact when you enable this feature.",{"data":2508,"content":2509,"nodeType":1294},{},[2510,2514,2519,2523,2527],{"data":2511,"marks":2512,"value":2513,"nodeType":1293},{},[],"You’ll see browser extension data populate a new ",{"data":2515,"marks":2516,"value":2518,"nodeType":1293},{},[2517],{"type":1417},"Browser extensions",{"data":2520,"marks":2521,"value":2522,"nodeType":1293},{},[]," page in the admin console under ",{"data":2524,"marks":2525,"value":1667,"nodeType":1293},{},[2526],{"type":1417},{"data":2528,"marks":2529,"value":2530,"nodeType":1293},{},[],". With this information, you can see:",{"data":2532,"content":2533,"nodeType":1399},{},[2534,2544,2554],{"data":2535,"content":2536,"nodeType":1338},{},[2537],{"data":2538,"content":2539,"nodeType":1294},{},[2540],{"data":2541,"marks":2542,"value":2543,"nodeType":1293},{},[],"Which extensions have been installed for each employee and browser.",{"data":2545,"content":2546,"nodeType":1338},{},[2547],{"data":2548,"content":2549,"nodeType":1294},{},[2550],{"data":2551,"marks":2552,"value":2553,"nodeType":1293},{},[],"How they were installed (e.g. by policy, manually, or sideloaded).",{"data":2555,"content":2556,"nodeType":1338},{},[2557],{"data":2558,"content":2559,"nodeType":1294},{},[2560],{"data":2561,"marks":2562,"value":2563,"nodeType":1293},{},[],"Which permissions they have.",{"data":2565,"content":2569,"nodeType":1522},{"target":2566},{"sys":2567},{"id":2568,"type":1519,"linkType":1520},"5J5jdmwugy7yU8GGwxe7iH",[],{"data":2571,"content":2572,"nodeType":1294},{},[2573,2576,2585],{"data":2574,"marks":2575,"value":37,"nodeType":1293},{},[],{"data":2577,"content":2581,"nodeType":1539},{"target":2578},{"sys":2579},{"id":2580,"type":1519,"linkType":1520},"3ibVBa6u0XfcXXDVtON5th",[2582],{"data":2583,"marks":2584,"value":1538,"nodeType":1293},{},[],{"data":2586,"marks":2587,"value":37,"nodeType":1293},{},[],{"data":2589,"content":2590,"nodeType":1324},{},[2591],{"data":2592,"marks":2593,"value":2418,"nodeType":1293},{},[],{"data":2595,"content":2596,"nodeType":1294},{},[2597],{"data":2598,"marks":2599,"value":2600,"nodeType":1293},{},[],"Push can now detect malicious copy and paste attacks like ClickFix, FileFix, and other fake CAPTCHA-style techniques.",{"data":2602,"content":2603,"nodeType":1294},{},[2604],{"data":2605,"marks":2606,"value":2607,"nodeType":1293},{},[],"These techniques have become one of the most prevalent attack types this year, and rely on deceiving users into manually or automatically copying malicious code and running it locally.",{"data":2609,"content":2610,"nodeType":1294},{},[2611,2615,2620,2624,2628,2632,2637],{"data":2612,"marks":2613,"value":2614,"nodeType":1293},{},[],"You can enable ",{"data":2616,"marks":2617,"value":2619,"nodeType":1293},{},[2618],{"type":1417},"Malicious copy and paste detection",{"data":2621,"marks":2622,"value":2623,"nodeType":1293},{},[]," from the ",{"data":2625,"marks":2626,"value":1590,"nodeType":1293},{},[2627],{"type":1417},{"data":2629,"marks":2630,"value":2631,"nodeType":1293},{},[]," page of the Push admin console. Add a configuration rule to set the detection to ",{"data":2633,"marks":2634,"value":2636,"nodeType":1293},{},[2635],{"type":1417},"Monitor",{"data":2638,"marks":2639,"value":2640,"nodeType":1293},{},[],". You can also add an exception for any staff who routinely handle malicious scripts, such as security team members, or add domains to the ignore list as needed.",{"data":2642,"content":2646,"nodeType":1522},{"target":2643},{"sys":2644},{"id":2645,"type":1519,"linkType":1520},"2fPaiwRCAUd8lMvsVO03HZ",[],{"data":2648,"content":2649,"nodeType":1294},{},[2650,2653,2662],{"data":2651,"marks":2652,"value":37,"nodeType":1293},{},[],{"data":2654,"content":2658,"nodeType":1539},{"target":2655},{"sys":2656},{"id":2657,"type":1519,"linkType":1520},"1u8RJxC00HbBhCBVxcDnkK",[2659],{"data":2660,"marks":2661,"value":1538,"nodeType":1293},{},[],{"data":2663,"marks":2664,"value":37,"nodeType":1293},{},[],{"data":2666,"content":2667,"nodeType":1324},{},[2668],{"data":2669,"marks":2670,"value":2428,"nodeType":1293},{},[],{"data":2672,"content":2673,"nodeType":1294},{},[2674,2678,2683],{"data":2675,"marks":2676,"value":2677,"nodeType":1293},{},[],"Get early access to new detections from the Push research team by enabling ",{"data":2679,"marks":2680,"value":2682,"nodeType":1293},{},[2681],{"type":1417},"Experimental detections",{"data":2684,"marks":2685,"value":2686,"nodeType":1293},{},[],", a Labs feature.",{"data":2688,"content":2689,"nodeType":1294},{},[2690],{"data":2691,"marks":2692,"value":2693,"nodeType":1293},{},[],"Labs features are new features Push is testing before releasing them. Early access detections are designed to catch emerging attacker techniques, but may also produce more false positives while we finetune them. These early access detections do not block any user actions.",{"data":2695,"content":2696,"nodeType":1294},{},[2697,2701,2705,2709,2714],{"data":2698,"marks":2699,"value":2700,"nodeType":1293},{},[],"Enable ",{"data":2702,"marks":2703,"value":2682,"nodeType":1293},{},[2704],{"type":1417},{"data":2706,"marks":2707,"value":2708,"nodeType":1293},{},[]," by going to ",{"data":2710,"marks":2711,"value":2713,"nodeType":1293},{},[2712],{"type":1417},"Settings > Labs",{"data":2715,"marks":2716,"value":2717,"nodeType":1293},{},[]," in the admin console.",{"data":2719,"content":2720,"nodeType":1324},{},[2721],{"data":2722,"marks":2723,"value":2724,"nodeType":1293},{},[],"RBAC for the Push platform",{"data":2726,"content":2727,"nodeType":1294},{},[2728],{"data":2729,"marks":2730,"value":2731,"nodeType":1293},{},[],"You can now provide read-only access to the Push admin console to facilitate investigations, review detections, check app usage by department, help with employee offboarding — or anything else you need.",{"data":2733,"content":2734,"nodeType":1294},{},[2735,2739,2743,2747,2752],{"data":2736,"marks":2737,"value":2738,"nodeType":1293},{},[],"To add a read-only admin, go to ",{"data":2740,"marks":2741,"value":2493,"nodeType":1293},{},[2742],{"type":1417},{"data":2744,"marks":2745,"value":2746,"nodeType":1293},{},[]," in the admin console. Enter the email address of the admin you want to invite and set the role to ",{"data":2748,"marks":2749,"value":2751,"nodeType":1293},{},[2750],{"type":1417},"Read only",{"data":2753,"marks":2754,"value":1513,"nodeType":1293},{},[],{"data":2756,"content":2757,"nodeType":1294},{},[2758,2762,2767],{"data":2759,"marks":2760,"value":2761,"nodeType":1293},{},[],"Note that existing Push admins now have the role of ",{"data":2763,"marks":2764,"value":2766,"nodeType":1293},{},[2765],{"type":1417},"Full access",{"data":2768,"marks":2769,"value":2770,"nodeType":1293},{},[],". You can adjust that role as needed from the Organization page, too.",{"data":2772,"content":2776,"nodeType":1522},{"target":2773},{"sys":2774},{"id":2775,"type":1519,"linkType":1520},"7kraCfSP2YwdEEwZ8FxM1t",[],{"data":2778,"content":2779,"nodeType":1324},{},[2780],{"data":2781,"marks":2782,"value":2448,"nodeType":1293},{},[],{"data":2784,"content":2785,"nodeType":1294},{},[2786],{"data":2787,"marks":2788,"value":2789,"nodeType":1293},{},[],"You can now enrich detections in Push with information from urlscan.io, and see when the domain was first registered. This information gives you domain-relevant context to support investigations.",{"data":2791,"content":2792,"nodeType":1294},{},[2793,2797,2802],{"data":2794,"marks":2795,"value":2796,"nodeType":1293},{},[],"To enable this feature, go to ",{"data":2798,"marks":2799,"value":2801,"nodeType":1293},{},[2800],{"type":1417},"Settings > Advanced > Domain enrichment",{"data":2803,"marks":2804,"value":2805,"nodeType":1293},{},[]," in the Push admin console or enable it from any existing detection event.",{"data":2807,"content":2808,"nodeType":1294},{},[2809],{"data":2810,"marks":2811,"value":2812,"nodeType":1293},{},[],"With this enrichment, you can quickly see:",{"data":2814,"content":2815,"nodeType":1399},{},[2816,2826,2836,2846,2856],{"data":2817,"content":2818,"nodeType":1338},{},[2819],{"data":2820,"content":2821,"nodeType":1294},{},[2822],{"data":2823,"marks":2824,"value":2825,"nodeType":1293},{},[],"The timestamp for when a domain was first registered",{"data":2827,"content":2828,"nodeType":1338},{},[2829],{"data":2830,"content":2831,"nodeType":1294},{},[2832],{"data":2833,"marks":2834,"value":2835,"nodeType":1293},{},[],"The number of times a domain was scanned on urlscan",{"data":2837,"content":2838,"nodeType":1338},{},[2839],{"data":2840,"content":2841,"nodeType":1294},{},[2842],{"data":2843,"marks":2844,"value":2845,"nodeType":1293},{},[],"The first time a domain was scanned",{"data":2847,"content":2848,"nodeType":1338},{},[2849],{"data":2850,"content":2851,"nodeType":1294},{},[2852],{"data":2853,"marks":2854,"value":2855,"nodeType":1293},{},[],"The last time a domain or IP was scanned",{"data":2857,"content":2858,"nodeType":1338},{},[2859],{"data":2860,"content":2861,"nodeType":1294},{},[2862],{"data":2863,"marks":2864,"value":2865,"nodeType":1293},{},[],"A urlscan verdict (e.g. “potentially malicious”)",{"data":2867,"content":2868,"nodeType":1294},{},[2869],{"data":2870,"marks":2871,"value":2872,"nodeType":1293},{},[],"You’ll see the enrichment data on the details slideout for an individual detection.",{"data":2874,"content":2878,"nodeType":1522},{"target":2875},{"sys":2876},{"id":2877,"type":1519,"linkType":1520},"563fJFSgoLDOwSXSQ9Y0MM",[],{"data":2880,"content":2881,"nodeType":1294},{},[2882,2885,2894],{"data":2883,"marks":2884,"value":37,"nodeType":1293},{},[],{"data":2886,"content":2890,"nodeType":1539},{"target":2887},{"sys":2888},{"id":2889,"type":1519,"linkType":1520},"19qsIXEG6EN9EK0VRH3pw9",[2891],{"data":2892,"marks":2893,"value":1538,"nodeType":1293},{},[],{"data":2895,"marks":2896,"value":37,"nodeType":1293},{},[],{"data":2898,"content":2899,"nodeType":1324},{},[2900],{"data":2901,"marks":2902,"value":2458,"nodeType":1293},{},[],{"data":2904,"content":2905,"nodeType":1294},{},[2906,2910,2915],{"data":2907,"marks":2908,"value":2909,"nodeType":1293},{},[],"You can now filter the ",{"data":2911,"marks":2912,"value":2914,"nodeType":1293},{},[2913],{"type":1417},"Events",{"data":2916,"marks":2917,"value":2918,"nodeType":1293},{},[]," page in the Push admin console by entities such as employees and apps to make triage more efficient.",{"data":2920,"content":2921,"nodeType":1294},{},[2922],{"data":2923,"marks":2924,"value":2925,"nodeType":1293},{},[],"With this option, you can do quick searches such as:",{"data":2927,"content":2928,"nodeType":1399},{},[2929,2939],{"data":2930,"content":2931,"nodeType":1338},{},[2932],{"data":2933,"content":2934,"nodeType":1294},{},[2935],{"data":2936,"marks":2937,"value":2938,"nodeType":1293},{},[],"See all recent events associated with an employee",{"data":2940,"content":2941,"nodeType":1338},{},[2942],{"data":2943,"content":2944,"nodeType":1294},{},[2945],{"data":2946,"marks":2947,"value":2948,"nodeType":1293},{},[],"See all recent logins for a given app",{"data":2950,"content":2951,"nodeType":1294},{},[2952,2956,2960,2964,2969],{"data":2953,"marks":2954,"value":2955,"nodeType":1293},{},[],"From the ",{"data":2957,"marks":2958,"value":2914,"nodeType":1293},{},[2959],{"type":1417},{"data":2961,"marks":2962,"value":2963,"nodeType":1293},{},[]," page, go to ",{"data":2965,"marks":2966,"value":2968,"nodeType":1293},{},[2967],{"type":1417},"Filters > Entity type",{"data":2970,"marks":2971,"value":1513,"nodeType":1293},{},[],{"data":2973,"content":2974,"nodeType":1324},{},[2975],{"data":2976,"marks":2977,"value":2468,"nodeType":1293},{},[],{"data":2979,"content":2980,"nodeType":1294},{},[2981],{"data":2982,"marks":2983,"value":2984,"nodeType":1293},{},[],"Other new features or improvements to the platform include:",{"data":2986,"content":2987,"nodeType":1399},{},[2988,3025,3047,3057,3079],{"data":2989,"content":2990,"nodeType":1338},{},[2991],{"data":2992,"content":2993,"nodeType":1294},{},[2994,2998,3008,3011,3021],{"data":2995,"marks":2996,"value":2997,"nodeType":1293},{},[],"You can now configure exceptions for ",{"data":2999,"content":3003,"nodeType":1539},{"target":3000},{"sys":3001},{"id":3002,"type":1519,"linkType":1520},"4oOTN6FXPpZg9MLgQUujys",[3004],{"data":3005,"marks":3006,"value":3007,"nodeType":1293},{},[],"MFA findings",{"data":3009,"marks":3010,"value":2290,"nodeType":1293},{},[],{"data":3012,"content":3016,"nodeType":1539},{"target":3013},{"sys":3014},{"id":3015,"type":1519,"linkType":1520},"2eOzRGosD2Ghaipao7NY8W",[3017],{"data":3018,"marks":3019,"value":3020,"nodeType":1293},{},[],"reused password",{"data":3022,"marks":3023,"value":3024,"nodeType":1293},{},[]," findings. This is useful if you purposefully reuse passwords between systems or enforce MFA through a third-party provider.",{"data":3026,"content":3027,"nodeType":1338},{},[3028],{"data":3029,"content":3030,"nodeType":1294},{},[3031,3035,3044],{"data":3032,"marks":3033,"value":3034,"nodeType":1293},{},[],"We’ve added several first-class SIEM integrations. ",{"data":3036,"content":3040,"nodeType":1539},{"target":3037},{"sys":3038},{"id":3039,"type":1519,"linkType":1520},"2M73i6A90S9MY6Pe8uVjVv",[3041],{"data":3042,"marks":3043,"value":1538,"nodeType":1293},{},[],{"data":3045,"marks":3046,"value":1513,"nodeType":1293},{},[],{"data":3048,"content":3049,"nodeType":1338},{},[3050],{"data":3051,"content":3052,"nodeType":1294},{},[3053],{"data":3054,"marks":3055,"value":3056,"nodeType":1293},{},[],"We’ve expanded the limit for URLs you can block using the URL blocking control to 2,000.",{"data":3058,"content":3059,"nodeType":1338},{},[3060],{"data":3061,"content":3062,"nodeType":1294},{},[3063,3067,3076],{"data":3064,"marks":3065,"value":3066,"nodeType":1293},{},[],"You can now set a time period after which to automatically un-license inactive employees, to make license management easier. ",{"data":3068,"content":3072,"nodeType":1539},{"target":3069},{"sys":3070},{"id":3071,"type":1519,"linkType":1520},"6Ad43w7Cjz2L5fZN2klIOn",[3073],{"data":3074,"marks":3075,"value":1538,"nodeType":1293},{},[],{"data":3077,"marks":3078,"value":1513,"nodeType":1293},{},[],{"data":3080,"content":3081,"nodeType":1338},{},[3082],{"data":3083,"content":3084,"nodeType":1294},{},[3085],{"data":3086,"marks":3087,"value":3088,"nodeType":1293},{},[],"Push now supports Prisma Access browser.\n",{"data":3090,"content":3091,"nodeType":1294},{},[3092],{"data":3093,"marks":3094,"value":37,"nodeType":1293},{},[],{"entries":3096},{"inline":3097,"hyperlink":3098,"block":3135},[],[3099,3105,3109,3114,3119,3124,3130],{"sys":3100,"__typename":3101,"title":3102,"slug":3103,"articleId":3104},{"id":2580},"HelpArticle","Can Push detect and disable other installed browser extensions?","can-push-detect-other-installed-browser-extensions",10138,{"sys":3106,"__typename":1310,"title":3107,"slug":3108},{"id":2657},"Introducing malicious copy and paste detection","introducing-malicious-copy-paste-detection",{"sys":3110,"__typename":3101,"title":3111,"slug":3112,"articleId":3113},{"id":2889},"How does Push enrich detections with domain analysis data?","how-does-push-enrich-detections-with-domain-analysis-data",10136,{"sys":3115,"__typename":3101,"title":3116,"slug":3117,"articleId":3118},{"id":3002},"How do I create an exception for MFA findings?","how-do-i-create-an-exception-for-mfa-findings",10140,{"sys":3120,"__typename":3101,"title":3121,"slug":3122,"articleId":3123},{"id":3015},"How do I create an exception for reused password findings?","how-do-i-create-an-exception-for-reused-password-findings",10139,{"sys":3125,"__typename":3126,"linkedFromParent":118,"title":3127,"slug":3128,"audience":3129},{"id":3039},"DocumentationPage","Connect to SIEM or SOAR","connect-to-siem-or-soar","administrators",{"sys":3131,"__typename":3101,"title":3132,"slug":3133,"articleId":3134},{"id":3071},"Can I automatically remove licenses from inactive employees?","can-i-automatically-remove-licenses-from-inactive-employees",10143,[3136,3144,3151,3158],{"sys":3137,"__typename":3138,"title":3139,"caption":118,"layoutMode":118,"file":3140},{"id":2568},"Image","Extension enumeration - KB 10138",{"url":3141,"width":3142,"height":3143},"https://images.ctfassets.net/y1cdw1ablpvd/1dByBmqYgpC9KhPkZoUbGN/0d65ee5ce5abceed6e8538319d83d761/extension_data_table_20251216.png",1480,826,{"sys":3145,"__typename":3138,"title":3146,"caption":118,"layoutMode":118,"file":3147},{"id":2645},"Clickfix detection example - KB 10141",{"url":3148,"width":3149,"height":3150},"https://images.ctfassets.net/y1cdw1ablpvd/5oWnKQFQqPdcsh93DCXji0/14d90366c354312349e5a664e2a0821a/clickfix_example_detection_20251009.png",1940,1696,{"sys":3152,"__typename":3138,"title":3153,"caption":118,"layoutMode":118,"file":3154},{"id":2775},"My team - Settings - docs - Administering Push",{"url":3155,"width":3156,"height":3157},"https://images.ctfassets.net/y1cdw1ablpvd/6TN6jkKngLWXBSe80jte2k/05a740c839e8eae4989622f4c9c2198b/org_page_settings_20250929.png",1980,1232,{"sys":3159,"__typename":3138,"title":3160,"caption":118,"layoutMode":118,"file":3161},{"id":2877},"Detection details slideout w/ timeline etc. - KB 10136",{"url":3162,"width":3163,"height":3164},"https://images.ctfassets.net/y1cdw1ablpvd/6qMAmnkXcJpsp19n7YANTV/b89b76929cc68387121c60ee3c48b0f2/detection_enrichment_example.png",977,758,"content:blog:product-release-november-2025.json","json","content","blog/product-release-november-2025.json","blog/product-release-november-2025",1776359982721]