Security Agency: Perplexity Comet browser has a data leakage security vulnerability

ChainCatcher news, according to the security company Brave Software, Perplexity AI has a browser named Comet that contains a serious security vulnerability. Attackers can embed hidden commands in web pages to trick the AI assistant into leaking users' private data, including emails and code.

Brave researchers demonstrated that when users asked Comet to summarize a Reddit page containing hidden commands, the AI assistant executed those commands. Although Perplexity claims the issue was fixed before it was discovered and states that no user data was leaked, Brave insists that the vulnerability could still be exploited weeks after the fix and warns that Comet's design architecture makes it susceptible to further attacks. (Decrypt)