TechTakes

2129 readers

77 users here now

Big brain tech dude got yet another clueless take over at HackerNews etc? Here's the place to vent. Orange site, VC foolishness, all welcome.

This is not debate club. Unless it’s amusing debate.

For actually-good tech, you want our NotAwfulTech community

founded 2 years ago

MODERATORS

dgerard@awful.systems

Perplexity’s AI browser Comet can be prompt-injected by any website (pivot-to-ai.com)

submitted 3 days ago by dgerard@awful.systems to c/techtakes@awful.systems

3 comments fedilink hide all child comments

https://www.youtube.com/watch?v=Ji3nP9EHINo&list=UU9rJrMVgcXTfa8xuMnbhAEA - video
https://pivottoai.libsyn.com/20250825-perplexitys-ai-web-browser-prompt-injected-by-any-website - podcast

top 3 comments

sorted by: hot top controversial new old

[–] blakestacey@awful.systems 16 points 2 days ago (1 children)

This exploit was discovered by two security guys at the Brave web browser.

Heartbreaking.jpg

[–] self@awful.systems 10 points 2 days ago

I have yet to see any roving Brave infosec mall ninjas react to the fact that they plan to do this agentic AI shit too:

Brave gets credit for finding this exploit in Comet, so well done! But how did they find it? Well, Brave is trying to do its own AI agent web browser. Even though this is a fundamentally stupid idea that cannot be secured.

[–] BlueMonday1984@awful.systems 6 points 2 days ago

It would be extremely funny if your prompt injection near the end actually caught someone using the Comet Assistant.

(It probably won't, given the Venn diagram of "Comet assistant users" and "Pivot to AI readers" is two circles places a mile apart)