Incydr browser extension release notes

Updated

Overview

This page lists new features and bug fixes for the Incydr browser extension. The Incydr browser extension enables web-based preventative controls, and also works alongside the insider risk agent to improve browser activity monitoring.

Version 1.46.0

December 10, 2025

  • The Active tab signed-in user is now captured for more AI sites, including: NotebookLM, Cursor, Copilot, Gemini, Perplexity, Otter, Blackbox, and Claude.
  • Fixed an issue where attempting to upload many files at once to a blocked destination could generate multiple "upload blocked" notifications for the user.
  • Fixed an issue where the Active tab signed-in user was not captured properly for some Google sites in certain situations. This could result in trusted Google activity being incorrectly identified as untrusted, which could also generate a false-positive alert.

Version 1.45.0

October 20, 2025

  • User-facing preventative control messages now appear as temporary browser notifications instead of pop-up windows. This provides a smoother user experience and also fixes a few rare issues where users could not dismiss pop-ups on some web pages.

Version 1.44.0

September 17, 2025

  • Fixed a rare application compatibility issue for some users uploading data to SharePoint via the Edge browser.

Version 1.43.0

September 12, 2025

  • Preventative control notifications now automatically close after 1 minute if the user does not select a response. This fixes a rare issue where some web pages did not allow users to dimiss the notifcation.
  • Reduced false-positive paste events when copying and pasting an image within the same page.
  • Reduced false-positive browser upload events.
  • Fixed two issues with chatgpt.com that could result in trusted ChatGPT activity being incorrectly identified as untrusted, which could also generate a false-positive alert:
    • The Active tab signed-in user was not captured in some cases.
    • The destination username could report a duplicate value.

Firefox (early access)

July 30, 2025

  • The Incydr browser extension is now available for Firefox as an early-access release. This enables you to leverage the same insider risk detection and response capabilities in Firefox as the existing Chrome and Edge extensions. 
  • Supported on Windows and macOS devices running insider risk agent version 2.4.1 and later.
  • For deployment instructions, see Deploy the Incydr browser extension.

Version 1.42.0

July 10, 2025

  • Fixed a rare application compatibility issue for users of the Microsoft My Apps web portal.
  • Improved Active tab signed-in user detection for a few specific websites, including Slack, Dropbox, Microsoft Teams, Microsoft Designer, and ChatGPT.
  • Numerous other performance and stability improvements.

Version 1.41.0

May 23, 2025

  • Fixed an issue where the Active tab signed-in user was not captured for newer versions of some Microsoft 365 domains.

Version 1.40.0

May 1, 2025

  • Fixed a rare application compatibility issue with a few specific websites.

Version 1.39.0

April 16, 2025

  • Fixed a rare issue where the Incydr browser extension could cause the insider risk agent to restart repeatedly. This could prevent normal operation of the insider risk agent.
  • Updates to logging.

Version 1.38.0

March 24, 2025

  • A recent ChatGPT update caused the Incydr browser extension to stop capturing the Active tab signed-in user for activity on chatgpt.com. Version 1.38.0 resumes capturing the logged in user.
  • Fixed an intermittent issue where some trusted Google activity (such as uploads to corporate Google Drive) could be incorrectly identified as untrusted. This could result in a false-positive alert or cause user uploads to be unexpectedly blocked in some cases.

Version 1.37.0

March 12, 2025

  • Fixed an issue where the Active tab signed-in user was not captured for newer versions of the Microsoft Teams web app.

Version 1.36.0

March 5, 2025

  • Fixed a rare issue where pasting was not blocked as expected for users on a watchlist with paste blocking enabled.

Version 1.35.0

January 27, 2025

  • Fixed a rare issue where users were unable to upload some files to trusted local fileshare destinations.

Version 1.34.0

November 27, 2024

  • Updates to internal telemetry. There are no functional or user experience changes.

Version 1.33.0

November 13, 2024

  • Security updates.
  • Fixed a rare issue where users received a false positive Upload blocked message upon loading a few specific websites.

Version 1.32.0

November 1, 2024

  • Improved Active tab signed-in user detection for Google apps. This fixes an issue where some trusted Google activity (such as uploads to corporate Google Drive) could be incorrectly identified as untrusted and generate a false-positive alert.
  • Improvements to logging.

Version 1.31.0

October 24, 2024

  • Fixed an issue where the Active tab signed-in user was not captured for chatgpt.com in some cases. This could result in trusted ChatGPT activity being incorrectly identified as untrusted, which could also generate a false-positive alert.

Version 1.30.0

July 19, 2024

  • Fixed a rare application compatibility issue for users of the Kandji device management web app.

Version 1.29.0

July 15, 2024

  • Fixed an issue where paste activity was not blocked as expected under specific circumstances.
  • The Active tab signed-in user is now captured for chatgpt.com. Previously, only chat.openai.com was captured. This ensures users signed in to chatgpt.com with an account on a trusted domain won’t be blocked or prompted to temporarily allow upload and paste activity (if they’re on a watchlist with those preventative controls enabled).

Version 1.28.0

April 11, 2024

  • The Active tab signed-in user is now captured for ChatGPT, Airtable, and Google Sites. This ensures users signed in to these sites with an account on a trusted domain won’t be blocked or prompted to temporarily allow upload and paste activity (if they’re on a watchlist with those preventative controls enabled).

Version 1.27.0

April 8, 2024

  • The Active tab signed-in user is now captured for console.cloud.google.com. This ensures a user signed in to the Google console with an account on a trusted domain won't be blocked or prompted to temporarily allow upload and paste activity (if they're on a watchlist with those preventative controls enabled).
  • Fixed a rare issue where some events could detect and apply the Active tab signed-in user to the incorrect domain.

Version 1.26.0

March 14, 2024

  • Fixed an issue where uploads to trusted destinations were incorrectly blocked in specific circumstances.

Version 1.25.0

March 8, 2024

  • Fixed a rare issue where some administrative pages in Google Cloud Platform (GCP) did not load properly.

Version 1.24.0

February 15, 2024

  • Fixed a rare issue where file download events from the Slack web app did not include the Slack workspace name in some cases.
  • Updates to logging.
  • Other minor performance improvements and bug fixes.

Version 1.23.0

February 6, 2024

Bug fixes

  • Fixed a rare application compatibility issue with a few specific websites.

Version 1.22.0

January 23, 2024

Updates

  • Users on a watchlist with paste blocking enabled can now paste into the Google Drive page requesting access to a file (when signed in to a trusted Google account).

Version 1.21.0

January 5, 2024

Updates

  • Users on a watchlist with paste blocking enabled can now paste into Google Meet chat when signed in to a trusted Google account. Pasting to a personal Google Meet is still blocked.

Bug fixes

  • Fixed a rare issue where users could not temporarily allow uploads or pasting to a specific destination.

Version 1.20.0

December 22, 2023

Bug fixes

  • Fixed a rare issue where the fingerprint scanner on some devices was not accessible from the Edge browser.

Version 1.19.0

Bug fixes

December 7, 2023

  • Fixed intermittent performance and stability issues in Google Chrome for devices running Windows 10.

Version 1.18.0

November 17, 2023

Bug fixes

  • Fixed intermittent performance and stability issues in Google Chrome.

Version 1.17.0

November 9, 2023

Bug fixes

Fixed issues where:

  • Slack workspace names were missing for some events.
  • Some activity was intermittently being incorrectly blocked on trusted (corporate) Google domains, Slack workspaces, and other specific trusted locations.
  • The Active tab signed-in user was not captured in some Microsoft Teams browser windows.

Version 1.16.0

September 21, 2023

Bug fixes

  • Fixed a rare issue where users with no preventative controls applied were unable to upload files to specific locations.

Version 1.15.0

September 20, 2023

Updates

  • Users on a preventative watchlist with paste blocking enabled are no longer automatically allowed to paste content under 50 characters.
  • The Active tab signed-in user is now captured for Amazon S3.
  • The Active tab signed-in user is no longer captured for Google Meet.

Bug fixes

  • Fixed an issue where Active tab signed-in user did not appear in Forensic Search event details for some activity on Microsoft Office domains.

Version 1.14.0

August 30, 2023

Updates

  • Users on a preventative watchlist with paste blocking enabled are no longer blocked from pasting into username fields.
  • When composing an email message in an Outlook Web App (OWA) pop-up window, Incydr now detects the user signed in to the Microsoft account.
  • Selecting Other as the reason to temporarily allow an upload now requires the user’s explanation to be at least 5 characters. Previously, only one character was required.
  • The Active tab signed-in user is now captured for more Google Workspace tools, including Analytics, Chat, Cloud, Contacts, Developers, Groups, Hangouts, Meet, and Scholar.

Bug fixes

  • Fixed an issue where the message "Contact security with any questions" could appear twice in the notification dialog users see when they are blocked from uploading, pasting, and using removable media.

Version 1.13.0

August 22, 2023

Updates

  • Custom end-user messaging for blocked uploads now supports line breaks.
  • Pasting into an embedded document on a trusted site is now blocked. For example, users on a watchlist with paste blocking enabled can no longer paste into a Google Doc embedded in a corporate Confluence page.

Bug fixes

Fixed issues where:

  • Uploads were blocked to trusted GitHub URLs in some circumstances.
  • In rare situations, pasting to untrusted locations was not blocked.
  • Uploading an image to a web page with an embedded WYSIWYG editor could delete existing text in some cases.
Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.