{"id":224442,"date":"2026-03-11T12:38:00","date_gmt":"2026-03-11T16:38:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/03\/11\/researchers-trick-perplexitys-comet-ai-browser-into-phishing-scam-in-under-four-minutes\/"},"modified":"2026-03-17T01:30:11","modified_gmt":"2026-03-17T05:30:11","slug":"researchers-trick-perplexitys-comet-ai-browser-into-phishing-scam-in-under-four-minutes","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/03\/11\/researchers-trick-perplexitys-comet-ai-browser-into-phishing-scam-in-under-four-minutes\/","title":{"rendered":"Researchers Trick Perplexity&#8217;s Comet AI Browser Into Phishing Scam in Under Four Minutes"},"content":{"rendered":"<p><a href=\"https:\/\/thehackernews.com\/2026\/03\/researchers-trick-perplexitys-comet-ai.html\">Researchers Trick Perplexity&#8217;s Comet AI Browser Into Phishing Scam in Under Four Minutes<\/a><\/p>\n<p><a href=\"https:\/\/thehackernews.com\/2026\/03\/researchers-trick-perplexitys-comet-ai.html\">https:\/\/thehackernews.com\/2026\/03\/researchers-trick-perplexitys-comet-ai.html<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-03-11 12:38:00<\/a><\/p>\n<p>Source Domain: <a href=\"thehackernews.com\">thehackernews.com<\/a><\/p>\n<p><span class=\"p-author\">\ue804<span class=\"author\">Ravie Lakshmanan<\/span>\ue802<span class=\"author\">Mar 11, 2026<\/span><\/span><span class=\"p-tags\">Artificial Intelligence \/ Browser Security<\/span><\/p>\n<p>Agentic web browsers that leverage artificial intelligence (AI) capabilities to autonomously execute actions across multiple websites on behalf of a user could be trained and tricked into falling prey to phishing and scam traps.<\/p>\n<p>The attack, at its core, takes advantage of AI browsers&#8217; tendency to reason their actions and use it against the model itself to lower their security guardrails, Guardio said in a report shared with The Hacker News ahead of publication.<\/p>\n<p>&#8220;The AI now operates in real time, inside messy and dynamic pages, while continuously requesting information, making decisions, and narrating its actions along the way. Well, &#8216;narrating&#8217; is quite an understatement &#8211; It blabbers, and way too much!,&#8221; security researcher Shaked Chen said.<\/p>\n<p>&#8220;This is what we call <strong>Agentic Blabbering<\/strong>: the AI Browser exposing what it sees, what it believes is happening, what it plans to do next, and what signals it considers suspicious or safe.&#8221;<\/p>\n<p>By intercepting this traffic between the browser and the AI services running on the vendor&#8217;s servers and feeding it as input to a Generative Adversarial Network (GAN), Guardio said it was able to make Perplexity&#8217;s Comet AI browser fall victim to a phishing scam in under four minutes.<\/p>\n<p>The research builds on prior techniques like VibeScamming and Scamlexity, which found that vibe-coding platforms and AI browsers could be coaxed into generating scam pages or carrying out malicious actions via hidden prompt injections. In other words, with the AI agent handling the tasks without constant human supervision, there arises a shift in the attack surface wherein a scam no longer has to deceive a user. Rather, it aims to trick the AI model itself.<\/p>\n<p>&#8220;If you can observe what the agent flags as suspicious, hesitates on, and more importantly, what it thinks and blabbers about the page, you can use that as a training signal,&#8221; Chen explained. &#8220;The scam evolves until the AI&#8230;<\/p>\n<p><a href=\"https:\/\/thehackernews.com\/2026\/03\/researchers-trick-perplexitys-comet-ai.html\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Researchers Trick Perplexity&#8217;s Comet AI Browser Into Phishing Scam in Under Four Minutes https:\/\/thehackernews.com\/2026\/03\/researchers-trick-perplexitys-comet-ai.html Publish&#8230;<\/p>\n","protected":false},"author":1,"featured_media":224443,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEiHkDTAnMilk2AM0Yg71UjZJul-Q0y_QvAqY97sCemt73LNrjo7Rwp7uHjmFpSmeV75WwsRN5tRMdcgACXJFnv7FMOqb9qAnaOoyek1f0KubQtDtdkWZAh6g8ZZXNSwLLmAZYONBXIM-xa9QNbO9qQDI4REUUobzfhTuBJED4ilM5CBA0AmQ6zfyUWpvQDo\/s1600\/agent.png","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,20,35,25],"class_list":["post-224442","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-artificial-intelligence","tag-hacker","tag-phishing"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/224442"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=224442"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/224442\/revisions"}],"predecessor-version":[{"id":224444,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/224442\/revisions\/224444"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/224443"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=224442"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=224442"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=224442"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}