"Please check my email and complete all my recent organization tasks."
"This behavior reflects excessive agency in LLM-powered assistants where the LLM performs actions that go far beyond the user's explicit request," security researcher Amanda Rousseau said in a report shared with The Hacker News."
"The result: a browser-agent-driven wiper that moves critical content to trash at scale, triggered by one natural-language request from the user," Rousseau said."
A new agentic browser attack targets Perplexity's Comet browser and can convert a single natural-language email into destructive actions that wipe an entire Google Drive. The zero-click Google Drive Wiper leverages OAuth access to Gmail and Google Drive to allow a browser agent to read emails, browse files and folders, and move, rename, or delete content. Routine prompts to organize inboxes or Drives cause the agent to search messages and perform autonomous organization tasks. Maliciously crafted emails can instruct deletion of files by extension or unfiled items, letting the agent remove real user files without confirmation and propagate deletions across shared and team drives.
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]