Techly NewsGet the app

Get the latest tech news

Anthropic’s auto-clicking AI Chrome extension raises browser-hijacking concerns


Malicious websites can embed invisible commands that AI agents will follow blindly.

Users can grant Claude permission to perform tasks like managing calendars, scheduling meetings, drafting email responses, handling expense reports, and testing website features. "I strongly expect that the entire concept of an agentic browser extension is fatally flawed and cannot be built safely," he wrote in an earlier post on similar prompt-injection security issues recently found in Perplexity Comet. Last week, Brave's security team discovered that Perplexity's Comet browser could be tricked into accessing users' Gmail accounts and triggering password recovery flows through malicious instructions hidden in Reddit posts.

Get the Android app

Or read this on ArsTechnica

Read more on:

Photo of browser

browser

Photo of auto

auto

Photo of Anthropic

Anthropic

Related news:

News photo

Anthropic admits its AI is being used to conduct cybercrime

News photo

Anthropic agrees to settle copyright infringement class action suit - what it means

News photo

AI is becoming a core tool in cybercrime, Anthropic warns

« Apple Blocks iTorrent App From EU Alternative App Marketplace [Updated]
Chipolo, an AirTag rival, debuts rechargeable trackers with a six-month battery life »