Malicious browser extensions can impersonate AI sidebar interfaces, making users vulnerable to phishing and malware attacks. These threats affect multiple browsers, including Edge, Brave, Firefox, and AI-specific browsers like ChatGPT Atlas and Perplexityβs Comet. #AI Sidebar Spoofing #Phishing #MaliciousExtensions
Keypoints
- Malicious extensions can inject fake AI sidebar interfaces that look identical to legitimate ones.
- The attack exploits common permissions like host and storage access granted to browser extensions.
- Fake sidebars send malicious prompts or redirect users to phishing sites or malware downloads.
- OpenAI has implemented safeguards, but social engineering can still bypass protections.
- The vulnerability affects not only AI browsers but also mainstream browsers like Edge and Chrome.