MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
browser
Search

Perplexity's AI Browser Comet Vulnerable To Prompt Injection Attacks That Hijack User Accounts

Monday August 25, 2025. 06:54 PM , from Slashdot
Perplexity's AI Browser Comet Vulnerable To Prompt Injection Attacks That Hijack User Accounts
Security researchers have uncovered critical vulnerabilities in Perplexity's Comet browser that enable attackers to hijack user accounts and execute malicious code through the browser's AI summarization features. The flaws, discovered independently by Brave and Guardio Labs, exploit indirect prompt injection attacks that bypass traditional web security mechanisms when users request webpage summaries.

Brave demonstrated account takeover through a malicious Reddit post that compromised Perplexity accounts when summarized. The vulnerability allows attackers to embed commands in webpage content that the browser's large language model executes with full user privileges across authenticated sessions.

Guardio's testing found the browser would complete phishing transactions and prompt users for banking credentials without warning indicators. The paid browser, available to Perplexity Pro and Enterprise Pro subscribers since July, processes untrusted webpage content without distinguishing between legitimate instructions and attacker payloads.

Read more of this story at Slashdot.
Read more at Slashdot
https://it.slashdot.org/story/25/08/25/1654220/perplexitys-ai-browser-comet-vulnerable-to-prompt-inj...

Related News

browser Japanese Media Groups Sue AI Search Engine Perplexity Over Alleged Copyright Infringement SlashdotAug 26
accounts Perplexity Launches Subscription Program That Includes Revenue Sharing With Publishers SlashdotAug 25
prompt Google is making it easier to switch your default browser to Chrome BetaNewsAug 25
user Apple has protected against seven zero-day attacks this year ComputerWorldAug 22
comet KPMG Wrote 100-Page Prompt To Build Agentic TaxBot SlashdotAug 22
webpage Amazon quietly fixed Q Developer flaws that made AI agent vulnerable to prompt injection, RCE TheRegisterAug 20
perplexity's Perplexity's Comet browser naively processed pages with evil instructions TheRegisterAug 20
hijack KPMG wrote 100-page prompt to build agentic TaxBot TheRegisterAug 20
injection Preventing domain-resurrection attacks (PyPI blog) LWN.netAug 19
attacks Browser wars are back, predicts Palo Alto, thanks to AI TheRegisterAug 19
without Lenovo's Lena AI chatbot had weakness that let attackers hijack sessions BetaNewsAug 18
browser's Boffins say tool can sniff 5G traffic, launch 'attacks' without using rogue base stations TheRegisterAug 18
when Seth Godin's AI-powered "Prompt Decks" launch on Kickstarter BoingBoingAug 15
pro Researchers uncover fake Netflix recruiter scheme targeting Facebook accounts BetaNewsAug 15
perplexity CrowdStrike debuts unified identity security for human, non-human, and AI accounts BetaNewsAug 14
browser Over 80 percent of organizations knowingly ship vulnerable code BetaNewsAug 14
accounts Crooks can't let go: Active attacks target Office vuln patched 8 years ago TheRegisterAug 13
prompt AI firm Perplexity makes ridiculous bid to buy Chrome from Google BetaNewsAug 13
user Why browser security is increasingly essential for the enterprise [Q&A] BetaNewsAug 13
comet Some users report their Firefox browser is scoffing CPU power TheRegisterAug 13
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
Aug, Tue 26 - 09:02 CEST