Until last month, attackers could've stolen info from Perplexity Comet users just by sending a calendar invite
Summary
Until recently, attackers could exploit a vulnerability in Perplexity's Comet AI browsing agent to steal local files from users by sending them a malicious calendar invite. The vulnerability allowed attackers to potentially exfiltrate data by tricking the AI into accessing specific local files. Perplexity has since patched this security flaw.
IFF Assessment
This is bad news for defenders as it highlights a new attack vector targeting AI-powered tools, allowing for unauthorized data exfiltration.
Severity
Defender Context
This incident underscores the need for rigorous security testing of AI applications, especially those with access to local system resources. Defenders should be vigilant about the potential for novel attack vectors emerging from the integration of AI into everyday tools and applications, and ensure robust data access controls are in place.