@ai6yr It's funny how security orgs frequently talk up emails/phishing attacks as a common attack vector - but never talk about the ubiquity of browser-based attacks. Glad to see a shift here in the right direction. https://www.cisa.gov/sites/default/files/publications/Capacity_Enhancement_Guide-Securing_Web_Browsers_and_Defending_Against_Malvertising-Guidance_for_Non-Federal_Organizations.pdf