BlockBeats news, on August 26, reported by security company Brave Software, that Perplexity AI's browser named Comet has a serious security vulnerability, allowing attackers to embed hidden instructions in web pages to trick the AI assistant into leaking users' private data, including emails and codes.
Brave researchers have demonstrated that when users ask Comet to summarize Reddit pages containing hidden commands, the AI assistant executes those commands. Although Perplexity claims the issue was fixed before it was discovered and states that no user data was leaked, Brave insists that the vulnerability could still be exploited weeks after the fix and warns that Comet's design architecture makes it susceptible to further attacks. (Decrypt)