Security Advisory: Perplexity Comet Browser Vulnerable to Data Leakage Security Vulnerability

BlockBeats News, August 26th, According to security company Brave Software, Perplexity AI's browser called Comet has a serious security vulnerability. Attackers can embed hidden commands in a webpage to induce the AI assistant to leak user's private data, including emails and code.

Brave researchers demonstrated that when users ask Comet to summarize a Reddit page containing hidden commands, the AI assistant executes these commands. Although Perplexity claims that the issue was fixed before it was discovered and states that no user data was leaked, Brave insists that the vulnerability remained exploitable weeks after the fix and warned that Comet's design architecture makes it susceptible to further attacks. (Decrypt)