Brave has identified a critical vulnerability in Perplexity’s Comet AI browser, stemming from what it calls "indirect prompt injections." This flaw allows attackers to embed malicious commands within webpages, which Comet’s AI assistant mistakenly interprets as user instructions during content analysis.
In testing, Brave demonstrated how this vulnerability can be exploited to force Comet to read and send confidential data, including email addresses and one-time passwords, to attackers.
Although Perplexity has released updates to address the issue, Brave reports that the problem remains unresolved, raising concerns about the security of AI-driven browsing tools.
Also read:
- Pasta, Bread, and Cookies: The Unlikely Culprits Behind Your Anxiety and Depression, New Study Suggests
- Unitree Unveils a Game-Changing Chinese Robot: Affordable Powerhouse or Bakery Line Intruder?
- A Dream Job Unearthed on Social Media for HR Pros: BBC Studios Hires a Head of Fandom
Thank you!
Join us on social media!
See you!
