Cybersecurity is entering a phase where speed defines survival. In an interview with Philippa Cogswell, managing partner for JAPAC at Palo Alto Networks Unit 42, a clear message emerged: attackers are now moving faster than most organizations can realistically respond, and artificial intelligence is accelerating both sides of the battlefield.

Cogswell pointed to findings from Unit 42’s latest global incident response research, which shows that modern cyberattacks can progress from initial compromise to data exfiltration in as little as 72 minutes. With hundreds of real-world cases analyzed globally, she explained that this speed is no longer an outlier but a growing norm. “We’re seeing a consistent trend where the window between intrusion and impact is shrinking dramatically. That changes everything about how security teams need to operate,” she noted.

One of the key challenges, she said, is the combination of speed and complexity. Security teams are not only dealing with faster attacks but also a growing shortage of skilled professionals. As a result, Cogswell stressed that automation and AI-driven security operations are becoming essential rather than optional. Traditional human-led response models, she explained, cannot realistically match machine-speed adversaries without assistance from intelligent systems capable of detecting and responding in real time.

The interview also highlighted a major shift in how organizations should think about security architecture. According to Cogswell, many businesses still rely heavily on perimeter-based defenses, even though modern threats frequently bypass traditional boundaries through cloud services, remote work tools, and browser-based applications. She emphasized that detection and early containment must now become the primary focus, supported by AI systems that can correlate large volumes of data far faster than human analysts.

A significant portion of the discussion centered on the browser as the new frontline of cybersecurity. With employees now spending most of their working hours in web-based applications, Cogswell noted that the browser has effectively become the modern operating environment for business. This shift has also made it one of the most targeted attack surfaces.

Her comments align with the broader direction of Palo Alto Networks, which recently introduced Prisma Browser for Business, a secure workspace designed specifically for small businesses. The solution reflects the growing reality that most work now happens inside the browser, where employees access business tools, manage data, and increasingly interact with AI systems.

Cogswell explained that this evolution has introduced new risks that traditional browsers were never designed to handle. Today, small businesses rely on dozens of browser-based applications, yet most security incidents now originate within the browser itself. She highlighted that phishing, ransomware, and fraud attempts are increasingly being delivered through web-based workflows, making browser security a critical layer of defense.

In addition, she pointed to the rising challenge of AI-powered attacks. Threat actors are now using generative AI to create more convincing phishing messages, automate reconnaissance, and even simulate trusted voices or identities. “AI is making social engineering significantly more scalable and more believable. It’s no longer just about spotting bad grammar or suspicious links. The attacks are far more contextual and adaptive,” she said.