Our latest updates on Security

Welcome to our Dia Security Bulletin. Here you’ll find the most up to date information on recent security fixes. We get into the weeds a little here, if you have any questions you can always find us on [email protected].

October 15, 2025

Introducing Dia’s Security Bulletin

Hi there, Cory here! I’m the Head of Security at The Browser Company. With the general availability of Dia being announced, the security team is introducing Dia’s Security Bulletin page.

Security has been at the core of how we built Dia. Being an AI Browser introduces novel security considerations—from prompt injection and model supply chain risks to client hardening and safe integrations. We’re committed to transparent, actionable communication when there’s something users or admins need to do.

This page will host:

Advisories: Clear guidance on vulnerabilities affecting Dia and steps to remediate.
CVE Notices: Disclosures aligned with our CNA policy and assignment process.
Security-impacting Release Notes: Highlights of patches, mitigations, and hardening work.
Enterprise Updates: Admin controls, policy changes, and audit-related information.

Publishing cadence will be event-driven: when there’s user- or admin-action to take, you’ll see it here first, with severity, affected versions, and fix paths.

If you believe you’ve found a security issue, please report it through our bug bounty program or responsible disclosure channels listed on the Dia Security Center. Thank you for helping us keep users safe.