By Kezia Jungco
Publication Date: 2026-03-04 17:55:00
A security flaw in Perplexity’s AI-powered Comet browser could have allowed attackers to access files on a user’s computer using something as routine as a calendar invitation.
Researchers say the issue shows how AI browser agents can accidentally follow malicious instructions that are hidden within everyday content. While Perplexity has since patched the vulnerability, the incident highlights a bigger security challenge as agentic browsers gain traction.
These AI tools can read data, follow instructions, and act on behalf of users, but security experts warn they may introduce new attack paths if guardrails are not carefully designed.
Researchers warn of risks tied to AI browser agents
Security researchers from Zenity Labs disclosed the vulnerability as part of a wider set of issues they call PleaseFix, which affects agentic browsers, including Perplexity’s Comet.
As reported by Business Wire on Yahoo Finance, these AI-powered browsers work differently from traditional ones.
“Unlike traditional browsers that primarily display content, agentic systems interpret instructions, retain authenticated context, and autonomously execute actions across applications and services,” according to Business Wire.
This wider range of capabilities also brings new security risks. Since the AI agent can read content, follow instructions, and act while staying logged in, harmful prompts hidden in everyday life can…
