Proofpoint Browser Extension

Proofpoint Browser Extension is an optional module that does not require an additional license. It is built as a Chromium-based extension utilizing the Chrome API.

From version 3.6, the following are provided:

• Detection and prevention when submitting text prompts to Generative AI (GenAI) websites. (See GenAI Prompt Submit Detection and Prevention.)

• New method to detect web browsing activities. (See Detect Browser Activities .)

Installing and Enabling Proofpoint Browser Extension

Proofpoint Browser Extension is supported for Agent 3.6 or higher.

You can install the Browser Extension on a single endpoint or deploy on multiple endpoints (GPO). For details on GPO installation.

You must install Proofpoint Browser Extension from Chrome Web store to use this feature. Link to download.

Installing Proofpoint Browser Extension on an Endpoint

This describes how to install the Browser Extension on a single endpoint.

Do the following to install:

1. Install the Agent 3.6 or higher

2. Close Chrome.

3. Open Chrome and Link to download to open the Proofpoint Browser Extension.

4. Click Add to Chrome.

5. When prompted, click Add extension.

   Optionally, you can add the icon to your Chrome address bar.

Installing Proofpoint Browser Extension Microsoft Edge

1. Download the Edge ADMX Files (see Configure Microsoft Edge policy settings on Windows devices.)

2. Complete the steps described in Installing Proofpoint Browser Extension on an Endpoint.

3. Configure the extension at:

   User Configuration > Administrative Templates > Microsoft Edge > Extensions

Deploying Proofpoint Browser Extension on Multiple Endpoints

This topic describes how to install the Browser Extension on multiple targets. You will need to create a policy using Group Policy Management and apply this policy to a group of endpoints.

1. Install the Agent 3.6 or higher

2. Download the Google Administrative Templates from: https://dl.google.com/dl/edgedl/chrome/policy/policy_templates.zip

3. Open Group Policy Management on your Domain Controller.

4. Create a new GPO for the policy (or add to an existing policy). (Group Policy Management > Domains > Create a GPO in this domain, and Link it here...)

   

5. From Group Policy Objects, right-click on your Group Policy Object and select Edit.

   

   The Group Policy Management Editor displays.

6. Expand the Computer/User Configuration tree on the left. RIght-click Administrative Templates and select Add/Remove Templates. and click Add.

7. Browse to the windows.adm template from the templates you downloaded in policy_templates.zip. Select the template that is relevant to your operating system and language and upload chrome.adm.

8. Expand the path on the left of the Group Policy Management Editor: Computer/User Configuration > Policies > Administrative Templates > Classic Administrative Templates > Google > Google Chrome > Extensions.

9. From the right-side, select Configure the list of force-installed extensions.

   

10. Right-click and select Edit.

11. In Configure the list of force-installed apps and extensions, select Enabled and click Show.

    

12. In the Value column, specify the value: dioefchpekkdigjeiecepnlhpdcgnmml;https://clients2.google.com/service/update2/crx

    

13. Click OK, then click OK again.

14. Policy is created.

15. Apply the policy to the group of endpoints you want.

Detection and Prevention of Submitting Text Prompt to GenAI Websites

In version 3.6 the supported GenAI websites are ChatGPT (by OpenAI) and Gemini (by Google).

GenAI websites are an additional exit point from which data can be leaked unintentionally by users.

The following features are supported from Browser release 1.4.3:

Supported Browsers

The following Windows Browsers are currently supported:

• Google Chrome

• Chromium-based browsers: Edge, Island, Brave, Opera

Supported GenAI Sites

• ChatGPT by OpenAI: https://chatgpt.com/

• Gemini by Google: https://gemini.google.com/app

• Copilot by Microsoft: https://copilot.microsoft.com/

• Claude (by Antrophic): https://claude.ai/chats

• Perplexity: https://www.perplexity.ai/

• character.ai: https://www.perplexity.ai/

• AnonChatGPT: https://anonchatgpt.com/

• Rytr: https://app.rytr.me/create/

• YouChat: https://you.com/

Examples

Some examples include:

• Employees submit text to be rephrased, such as grammar or translation improvements

• Employees submit meeting notes to summarize them

• Developers submit code snippets to find bugs

When Proofpoint Browser Extension is installed and enabled, it can be used to:

Detect and prevent text submitted to GenAI websites based on content scanning of the text prompt.

Enabling the Browser

You must enable the Proofpoint Browser Extension from the Agent Realm. To enable, from the Administration application, select Endpoints > Agent Realms. In the Advanced Settings of the Agent Realm, in the Browser Extension area, turn on Enable Interaction with Agent. Select Detect Text Submit in Websites (GenAI) (for detection) and/or Prevent Text Submit in Websites (GenAI) for prevention.

Other exfiltration methods to GenAI website such as, File Upload or Pasting Text Clipboard are already supported by previous agent versions.

Any text prompt is scanned when it is submitted, and a new activity categorized as GenAI Prompt Submit is sent to the back end and is used in Explorations and DLP Detectors found in snippets (if enabled) as shown in the example.

Detection Rules can be created based on this new category to get Alerts.

Prevention Rules based on the User Name, Group Name, Indicator/Detector Name. In this version, only Block action is supported. Prompt and Allow actions are planned for future versions.

Detect Browser Activities

Proofpoint Browser Extension is a method used to detect browsing activities.

You must enable the Proofpoint Browser Extension from the Agent Realm. To enable, from the Administration application, select Endpoints > Agent Realms. In the Advanced Settings of the Agent Realm in the Browser Extension area, turn on Enable Interaction with Agent. When turned on, select the activities you want: 

• Detect File Upload Activity

• Detect Web Browsing Activity

• Detect Text Submit in Websites (GenAI)

• Prevent Text Submit in Websites (GenAI)

File Upload is limited to 1000 files.

Currently, without Browser Extension, Proofpoint Agent initially tries to extract the URL during Web activity from Web Accessibility.

If Web Accessibility cannot be used, URL is extracted directly from the Browser Address Bar. Extraction from the Browser Address Bar is less accurate and may contain a partial URL if it currently being typed - and not the actual URL that was opened. This can cause latency to the browser experience.

Proofpoint Browser Extension provides a new and accurate and independent method using Web Accessibility. When the Proofpoint Browser Extension is installed and enabled, URL is extracted accurately and independently during Web activity using Web Accessibility.

Incognito Mode

Browser extensions cannot work in Incognito mode without explicit permission by the user. If there’s no need to maintain privacy when employees are using Incognito mode, then one of the following can be done:

• Ask the monitored employees to approve Proofpoint Browser Extension each time they get such request prompt.

• Block users from using Incognito mode based on policy set by organization’s IT