A new report out today from Zenity Labs, the research arm of agentic security company Zenity Ltd., details a family of vulnerabilities affecting agentic browsers, including Perplexity AI Inc.’s Comet browser, that can enable zero-click agent hijacking, local file exfiltration and even password vault takeover within authenticated sessions. The vulnerabilities, dubbed “PleaseFix,” target a new class of AI-powered browsers that go beyond rendering webpages and instead interpret instructions and autonomously execute tasks across applications.

Source: SiliconANGLE