Apps, Access & AI: The Modern CIO Briefing

AI agents look powerful on paper, but many of today’s consumer-focused tools give those agents full access to the open internet with no guardrails. Recent research has shown how these agentic browsers and extensions can cross security boundaries, leak sensitive data, and act with broader permissions than any enterprise would ever grant a human user.In this episode, Jeff and DM unpack why this architecture is fundamentally incompatible with enterprise security, and why IT leaders need a safer way to adopt AI-driven automation. They walk through real incidents, including hidden prompt attacks inside everyday websites and cross-tab breaches that break the same-origin policy.The conversation then turns toward a better path forward: automation that runs inside a private, contained environment with step-by-step explainability and consistent governance.You’ll learn:Why open-internet access makes AI agents unpredictable and unsafeHow hidden prompts on sites like Reddit can quietly hijack an agentWhat actually happened in recent cross-tab browser exploitsWhy containment and isolation matter more than everHow “policy parity” creates a unified governance model for people and AIHow to start with small, safe, high-impact Vision Agent use casesIf you’re under pressure to deliver meaningful AI wins without expanding your attack surface, this episode gives you the framework to do it safely, securely, and with confidence.Want to learn more? Check out our Vision Agents Resource Center.Thinking about where AI actually fits in your environment? Explore how Vision Agents can safely automate the apps you already use → go.sonet.io/secure-ai-automation

Legacy Windows and desktop applications still quietly run the business, often sitting at the center of revenue, operations, and compliance. But the way those apps are delivered today (VPN, VDI, RDP, and endpoint installs) is creating unnecessary risk, complexity, and cost, especially with the Windows 10 end-of-support date fast approaching. In this episode, Jeff and DM walk through why “just working” isn’t good enough anymore. They explore how Windows 10 EOL, expensive ESUs, forced hardware refreshes, and fragile legacy access stacks collide to create both a security and budget problem for CIOs and IT leaders. Then they outline a different path: modernizing delivery instead of rewriting apps using secure, browser-based access with built-in zero trust, DLP, and full session visibility. This episode is for you if you’re responsible for a large Windows 10 estate, rely on legacy apps that can’t easily be rewritten, and need to find a more resilient way to support distributed users without blowing up your security posture or your budget. In this episode, you’ll learn:Why traditional methods like VPN, VDI/Citrix, RDP, and endpoint installs no longer align with zero-trust principles or modern work patterns. How Windows 10 end of life, ESU costs, and hardware refresh requirements stack up into a multi-year financial and operational burden. What changes when you decouple app delivery from endpoint trust and move to secure, browser-based access with fine-grained controls, DLP, and session recording. How this approach can extend hardware life, reduce infrastructure complexity, and improve audit-ready visibility while keeping mission-critical legacy apps in place.For more resources, visit our Modernize Legacy Applications Resource Center.Thinking about where AI actually fits in your environment? Explore how Vision Agents can safely automate the apps you already use → go.sonet.io/secure-ai-automation