Dark Reading

Prompt Injections Loom Large Over ChatGPT's Atlas Browser

It's the law of unintended consequences: equipping browsers with agentic AI opens the door to an exponential volume of prompt ...
Windows Report

Microsoft to Block External Script Injection in Entra ID Sign-In for Stronger Security

Microsoft has announced that it's working on a major security update for Entra ID that will block external script injection during authentication.

Microsoft to secure Entra ID sign-ins from script injection attacks

Starting in mid-to-late October 2026, Microsoft will enhance the security of the Entra ID authentication system against ...
Infosecurity Magazine

HashJack Indirect Prompt Injection Weaponizes Websites

A new threat dubbed “HashJack” could enable attackers to booby trap websites when they interact with AI browsers ...

Use AI browsers? Be careful. This exploit turns trusted sites into weapons - here's how

ZDNET's key takeaways Researchers disclosed a HashJack attack that manipulates AI browsers.Cato CTRL examined Comet, Copilot for Edge, and Gemini for Chrome.Could lead to data theft, phishing, and ...