What could go wrong when injecting AI into the web browser?
"Comet can be steered to extract a stored credential from a user’s 1Password vault and transmit it to an external attacker, operating entirely inside the user’s authenticated browser context."
In essence: If you want to get #hacked with #promptinjection via malicious content from web sites your ai browser reads and interprets ... go for #aibrowser
It may nicely serve prompts from malicious sites to e.g. send them your credit card number, stored credentials etc.
In simple words: quite close to jumping from the next bridge and expecting to stand up and walk away unharmed 🤪
------------ %< snip %< -------------
The lethal trifecta for AI agents: private data, untrusted content, and external communication
Opera Neon is an agentic AI browser: Tasks keep each workflow isolated, Neon Do acts on real pages (shopping, booking, forms), and ODRA performs multi-model deep research with citations right in your browser. 🤖
#OperaNeon #AIBrowser #AIAgents #FediverseTech
The other day I was thinking, when will infostealers start collecting information from "AI" browsers.
Today noticed that StealC has posted an update, where they added a feature of collecting Sigma AI Browser data.
''Sigma AI Browser is an AI‑first agentic browser that combines an AI agent, deep research, and AI tools to help you navigate, create, and'' sloooop
Anyways, left to find some time and energy to look for some stealc logs and see if it syphons some more juicy data from "ai" browsers.
2026: Wir leben in einer Welt, in der Überwachung und Datensammlung nicht nur die Norm sind, sondern als Privileg angesehen werden. Der Datenschutz, wie wir ihn einst kannten, ist nicht einfach nur geschwächt, er existiert nicht mehr. Die Grenzen der Privatsphäre sind längst verwischt. Du wirst nicht mehr gefragt, ob du einem Dienst deine Daten geben möchtest. Stattdessen wird dir erzählt, dass du „mit einer Datenfreigabe zur globalen Gemeinschaft - für ein besseres, gerechteres, sichereres und nachhaltigeres Miteinander - beiträgst.“
#daten #datenschutz #privacy #ueberwachung #privatsphaere #datenteilen #privileg #ki #ai #aibrowser #iot
OpenAI says AI browsers may always be vulnerable to prompt injection attacks
https://blog.jim-nielsen.com/2025/dont-use-ai-browsers-they-say
Le début du billet de Jim Nielsen’s Blog
I don’t have access to the original paper (because I’d have to pay Gartner for it), but the reporting on Gartner’s research says this:
research VP Dennis Xu, senior director analyst Evgeny Mirolyubov, and VP analyst John Watts observe “Default AI browser settings prioritize user experience over security.”
C’mon, let’s call a spade a spade: they prioritize their maker’s business model over #security
#aibrowser
#cybersecurity
Firefox has now confirmed it's implementation of a feature internally referred to as the "AI Kill Switch"
https://winfuture.de/news
#Firefox #AI #AIBrowser #firefox_ #FirefoxAI
Mozilla appoints new CEO as Firefox pivots toward AI browser: Anthony Enzor-DeMeo becomes Mozilla CEO on December 16, 2025, planning to transform Firefox into an AI-powered browser while maintaining user trust and privacy controls. https://ppc.land/mozilla-appoints-new-ceo-as-firefox-pivots-toward-ai-browser/ #Mozilla #AI #Firefox #TechNews #AIbrowser
Mozilla's new CEO promises AI features will be optional, then commits Firefox to becoming an "AI browser" in the same blog post. With Firefox at 2.3% market share (down from 30% in 2009) and 85% revenue dependent on Google, the contradiction reflects deeper strategic confusion. Company has 34 months runway if Google deal ends.
https://www.implicator.ai/mozillas-new-ceo-commits-to-ai-browser-while-promising-user-choice/
My in-depth review of Perplexity Comet is now live! 🚀
I've shared my honest experience with this AI-powered browser, covering its 'agentic' capabilities, what I genuinely liked, the significant drawbacks (including security concerns like prompt injection), and how it stacks up against my current workflow.
If you're curious about the future of web browsing, dive in: https://www.ctnet.co.uk/my-thoughts-on-perplexity-comet/
Brave tests AI browsing mode with opt-in feature flag, isolated profile & other safeguards
#bravebrowser #bravebrowsernews #tech #technews #browser #browsernews #brave #aibrowser #newfeature #technology #aibrowsing
Latest Hindi News: Open AI-OpenAI launches AI browser Atlas
https://hindi.vaartha.com/more/technology/open-ai-openai-launches-ai-browser-atlas/75578/
#LatestHindiNews #OpenAI #AIBrowser #Atlas #TechnologyNews #AITech #Innovation #TechUpdate #ArtificialIntelligence #TechNews #TechTrends #AIInnovation #DigitalIndia #FutureTech #OpenAIAtlas #TechLaunch #TrendingNow #IndiaNews #NewsUpdate #BreakingNews
Opera Neon è ora disponibile senza lista d’attesa, a €19,90 al mese.
Il browser usa agenti IA, supporta Gemini 3 Pro e GPT 5.1 e riceve aggiornamenti settimanali 🤖🌐 #operaneon #aibrowser #technews
Wait! Did ... did Gartner just say something they weren't paid to say??!?!
https://www.theregister.com/2025/12/08/gartner_recommends_ai_browser_ban/
Một không gian làm việc AI mới có tên Slate vừa ra mắt phiên bản Alpha! Được xây dựng "AI-first, web-second", tích hợp trình duyệt vào luồng nghiên cứu. Bạn trò chuyện với AI để nhận kết quả tổng hợp, sau đó duyệt các nguồn trong cùng một phiên. Nhanh chóng (WebKit), bảo mật, và quản lý phiên thông minh trên macOS.
#KhôngGianAI #TrìnhDuyệtAI #SlateBrowser #NghiênCứuAI #MacOS #AIWorkspace #AIBrowser #TechNews #SideProject #AlphaLaunch
https://www.reddit.com/r/SideProject/comments/1pd55xv/i_buil
Norton Neo claims to be the first AI‑driven browser built with security and privacy at its core. It promises agentic browsing, consistent performance, low latency and proactive vulnerability protection. Could this be the next step for safe, open‑source‑friendly web experiences? Read more to see how it stacks up. #NortonNeo #AIBrowser #Security #Privacy
🔗 https://aidailypost.com/news/norton-neo-launches-first-ai-browser-focused-security-privacy
New #HashJack attack uses the “#” in a URL to hide commands that AI browsers like Google’s Gemini, Microsoft’s Copilot, and Perplexity’s Comet can read and act on - turning any legit site into a potential attack vector.
Read: https://hackread.com/hashjack-attack-url-control-ai-browser-behavior/
"An indirect prompt injection in an implementation blog can manipulate Antigravity to invoke a malicious browser subagent in order to steal credentials and sensitive code from a user’s IDE.
Google Antigravity is susceptible to data exfiltration via indirect prompt injection through the agentic browser subagent.
Antigravity is Google’s new agentic code editor. In this article, we demonstrate how an indirect prompt injection can manipulate Gemini to invoke a malicious browser subagent in order to steal credentials and sensitive code from a user’s IDE.
Google’s approach is to include a disclaimer about the existing risks, which we address later in the article."
https://www.promptarmor.com/resources/google-antigravity-exfiltrates-data
#CyberSecurity #AI #GenerativeAI #Google #Antigravity #GoogleAntigravity #DataExfiltration #AIBrowser
