Research: AI browsers pose a systemic risk of "indirect prompt injection"

PA一线
PA一线

PANews reported on October 24th that, according to simonwillison.net, research has revealed a systemic "indirect prompt injection" risk in AI browsers. The Brave team demonstrated that Perplexity's Comet browser could be tricked into automatically accessing account details and exfiltrating data through external links via invisible commands embedded in screenshots. Fellou, however, was even more serious, with page text tricking it into opening Gmail and sending the latest email headers to an external site. Both instances involved executing without user confirmation and involved concerns about email and financial security. Brave has not clarified whether these vulnerabilities have been addressed by the vendor.

OpenAI's Chief Information Security Officer, Dane Stuckey, published a lengthy article revealing the ChatGPT Atlas agent's protection against prompt injection: through red team testing, training rewards to ignore malicious commands, overlapping security fences, and attack detection blocking; he proposed "defense in depth" and acknowledged that prompt injection remains an unsolved cutting-edge problem.

Share to:

Author: PA一线

This content is for informational purposes only and does not constitute investment advice.

AIXAISafety
Follow PANews official accounts, navigate bull and bear markets together
Telegram Discussion Group
Telegram News Channel
@PANewsCN
Recommended Reading
PA一线PA一线36 minute ago
ETH breaks through $4,000, up 3.44% on the day
PA一线PA一线36 minute ago
BTC breaks through $112,000, up 1.91% on the day
PA一线PA一线44 minute ago
Web3 community verification platform Me3 completes $3 million in financing, with participation from Outlier Ventures and others
PA一线PA一线1 hour ago
Tether releases QVAC Genesis I, a synthetic dataset for training AI models, and launches QVAC Workbench, an AI application.
链上观链上观1 hour ago
Written on the eve of the x402 narrative explosion: PING is just an appetizer, the bigger hype is yet to come
PA一线PA一线3 hour ago
X Layer mainnet will undergo a technical upgrade on October 27th

Popular Articles

Industry News
Market Trends
Curated Readings
Subscribe

Curated Series

Pioneer's View: Crypto Celebrity Interviews

Pioneer's View: Crypto Celebrity Interviews

Exclusive interviews with crypto celebrities, sharing unique observations and insights

PAData: Web3 in Data

PAData: Web3 in Data

Data analysis and visual communication of industry hot spots help users understand the meaning and opportunities behind each data.

A complete review of the 1011 encryption storm

A complete review of the 1011 encryption storm

An in-depth review of the epic liquidation events of October 11: from the Trump tariff black swan event to high-leverage margin calls, stablecoin depegging, and market maker liquidity depletion.

AI Agent: The Journey to Web3 Intelligence

AI Agent: The Journey to Web3 Intelligence

The AI Agen innovation wave is sweeping the world. How will it take root in Web3? Let’s embark on this intelligent journey together

Memecoin Supercycle: The hype around attention tokenization

Memecoin Supercycle: The hype around attention tokenization

From joke culture to the trillion-dollar race, Memecoin has become an integral part of the crypto market. In this Memecoin super cycle, how can we seize the opportunity?

Real-time tracking of Bybit attack

Real-time tracking of Bybit attack

Bybit suffered a security incident, and funds worth $1.44 billion were withdrawn. A North Korean hacker group was accused of being the perpetrator.

App内阅读