Ars Technica

New hack uses prompt injection to corrupt Gemini’s long-term memory

In the nascent field of AI hacking, indirect prompt injection has become a basic building block for inducing chatbots to exfiltrate sensitive data or perform other malicious actions. Developers of ...
The Hacker News

ChatGPT Atlas Browser Can Be Tricked by Fake URLs into Executing Hidden Commands

The extension, which uses JavaScript to overlay a fake sidebar over the legitimate one on Atlas and Perplexity Comet, can trick users into "navigating to malicious websites, running data exfiltration ...