Agentic Browser Security: Indirect Prompt Injection in Perplexity Comet - Brave

A critical indirect prompt injection vulnerability was discovered in Perplexity's Comet AI assistant, allowing malicious instructions hidden in webpage content to be executed. This exploit enables the AI, operating with the user's full privileges, to bypass traditional web security and exfiltrate sensitive data like login credentials and OTPs from authenticated sessions across various services.