AI browsers wide open to attack via prompt injection - theregister.com

Prompt injection vulnerabilities enable attackers to embed malicious commands within seemingly innocuous content, leading AI browsers and chatbots to perform unauthorized actions such as data exfiltration or arbitrary command execution. This inherent flaw, described as an "unsolved security problem," becomes increasingly critical with the rise of agentic AI, which grants these systems broader access to user data and the ability to act autonomously.