Brave Browser Team Forced OpenAI to Acknowledge Injection Prompt Issues, Gets A Shout Out From Simon Willison and Flags Opera Neon

By Cje95 | Just My 2 Cents | 5 Nov 2025

It turns out all the noise that Brave Browser's Research Team made with its disclosure of AI Browser issues caused OpenAI to come out and address this after announcing the launch of their browser. OpenAI's Chief Information Officer Dane Stuckey Twitted out about the issue and what was being done. In it he said

 

One emerging risk we are very thoughtfully researching and mitigating is prompt injections, where attackers hide malicious instructions in websites, emails, or other sources, to try to trick the agent into behaving in unintended ways. The objective for attackers can be as simple as trying to bias the agent’s opinion while shopping, or as consequential as an attacker trying to get the agent to fetch and leak private data, such as sensitive information from your email, or credentials.

Our long-term goal is that you should be able to trust ChatGPT agent to use your browser, the same way you’d trust your most competent, trustworthy, and security-aware colleague or friend.

 

For OpenAI this is pretty big news as they tend to not directly address flaws in their systems or downplay the negative effects that they could have on users. Simon Willison gave Brave a direct shout out for the research that they have done and the issues that they have identified. Willison is a well known developer who created known products like the Django Web framework used by Python and Lanyrd. He currently serves the board of the Python Software Foundation and in September 2022 actually coined the term prompt injection identifying the issue with LLMs years before it became the issue we are seeing it become now. 

 

A couple of days ago Brave identified a new Browser with an issue and in doing so acknowledged that they had found this issue earlier and reported it to Opera who asked them to not disclose it as they worked to patch it. It is great to see these companies working together to correct these issues instead of just publicly blasting each other. 

  

Following up from our blog post last week on additional vulnerabilities in AI browsers, we’re now sharing details on a prompt injection attack we found in Opera Neon. We responsibly disclosed this vulnerability to Opera, but withheld sharing publicly at Opera’s request, to give them time to fix the vulnerability. Attackers can embed malicious instructions in hidden HTML elements and other non-rendered markup that remains invisible to users but is fully accessible to the AI assistant.

 

This just goes to show that there continue to be critical issues with AI web browsers and the solution isn't simple. Each web browser has had different ways that the attack had to go to get past the AI but all of them have the same underlying issue in that there is an issue. Be safe out there if you are using these types of browsers! They still seem to have a ways to go before they are as safe as other options!

 

 

 

Please know I am not a financial advisor and make sure you do your own research! If you enjoyed this article and would like to support me further below are a few referral links that if you used when signing up I would appreciate it! Also, follow me on X here 

 

GoMining

With BTC’s rise and #Uptober in full swing for $25 you can get involved actually get involved in BTC mining and it isnt the cloud mining scams of past. GoMining's partners include Binance, Bitmain, and the Bitcoin Mining Council in the effort to allow all to participate! Want to join in on the fun?!?!       Here you go

 

Fold App

If you are interested in getting a debit OR soon to be released credit card that pays you back in BTC Fold is the place to go! If you sign up with my referral link here once you make your first purchase with the card you get $10 worth of sats as a bonus!    

 

Stacker News

Earn Sats on your posts on Stacker News with my referral link here

 

Robinhood

Robinhood is offering an excellent signup deal if you use my link here where we will both be awarded free stock. All that you have to do is sign up and connect your bank account for the award! With commission-free crypto trading and the ability to set limit orders, it is a great hybrid offering in my opinion! Not to forget the addition of wallets and the ability to send and receive crypto!

 

Unstoppable Domains

Sign up using my link here and get a free $10 credit towards

Resources

  1. https://simonwillison.net/2025/Oct/22/openai-ciso-on-atlas/
  2. https://brave.com/blog/prompt-injection-flaw-opera-neon/
News Brave Browser Artificial Intelligence security OpenAI

How do you rate this article?

24
Cje95
Cje95

Graduated from Texas A&M in May of 2020 had dabbled in crypto since 2017 but dove in at the end of 2019. December of 2020 packed up and moved to D.C.! Huge sports fan, space nerd, and international newsreader! Follow me on Twitter @Cje95_

Just My 2 Cents
Just My 2 Cents

My personal opinions about things transpiring in the world

Send a $0.01 microtip in crypto to the author, and earn yourself as you read!

20% to author / 80% to me.
We pay the tips from our rewards pool.
USD/JPY My Personal Take on the 160 Level Struggle USD/JPY My Personal Take on the 160 Level Struggle
Muhammad Rizqi Musthofa Maruf

Muhammad Rizqi Musthofa Maruf

11 hours ago
1 minute read

FanForce Spotlight Connects Founders With Their Earliest Believers FanForce Spotlight Connects Founders With Their Earliest Believers
PVM

PVM

17 hours ago
4 minute read

X: The World’s Largest Digital Psychiatric Experiment - How Elon Musk Turned Twitter Into a Real-Time Study of Human Psychology X: The World’s Largest Digital Psychiatric Experiment - How Elon Musk Turned Twitter Into a Real-Time Study of Human Psychology
Cryptonator`s

Cryptonator`s

1 Jun 2026
2 minute read