New BioShocking attack manipulates AI browser into data theft

New BioShocking attack manipulates AI browser into data theft
LayerX researchers uncovered “BioShocking,” a prompt injection technique that can make AI-powered browsers treat dangerous real-world actions as if they were part of a fictional game scenario. The PoC worked against six major agentic browser products, with OpenAI’s ChatGPT Atlas being the only one to receive a working fix so far. #BioShocking #LayerX #ChatGPTAtlas #Comet #Fellou #GensparkBrowser #SigmaBrowser #ClaudeChromeplugin

Keypoints

  • BioShocking is a prompt injection attack against AI-powered browsers.
  • The attack uses a fake BioShock-themed puzzle to weaken safety boundaries.
  • The final step can push agents to expose sensitive data like passwords.
  • Six mainstream agentic browser products failed the PoC test.
  • OpenAI fixed the issue in ChatGPT Atlas, while other vendors did not provide effective remediation.

Read More: https://www.bleepingcomputer.com/news/security/new-bioshocking-attack-manipulates-ai-browser-into-data-theft/