Brave's Research Team Highlights AI Web Browsers Continued Security Struggles

By Cje95 | Just My 2 Cents | 9 hours ago

This year, the idea of AI web browsers has really taken off, with companies across the board introducing their own takes on AI web browsers. The first few that were released, though, all suffered from the same critical issue, and that was indirect prompt injections. 

 

Indirect prompt injection is an exploit that targets LLMs by relying on the model to treat the hidden commands within a trusted external context as legitimate system instructions. These could be hidden in websites, documents, or more, and do not require the attacker to be actively trying to interact with the AI interface.

 

Because of how AI is designed and functions, they have been time and time again found vulnerable to this. Recently released Mozilla Tabstack and Cotypist were tested to see if they were able to fall for these attacks or if they were secure against them. Tabstack is a cloud-hosted web execution API for AI agents, while Cotypist is a fully on-device autocomplete assistant for macOS that runs the model locally. 

 

Well, it turns out they do not, and both Mozilla Tabstack and Cotyptist teams were notified of the vulnerability prior to the Brave Researchers' research release. What was learned from this was that it does not depend on whether the model is run locally or if it is a cloud-hosted model. The same vulnerability still exists, and that is something that cannot be fully addressed with current LLM architecture. To truly fix this AI is going to need to undergo an architecture revolution to come up with new architecture that does not have this vulnerability baked in. 

 

 

 

 

 

Please know I am not a financial advisor and make sure you do your own research! If you enjoyed this article and would like to support me further below are a few referral links that if you used when signing up I would appreciate it! Also, follow me on X here 

 

GoMining

With BTC looking to rebound for $30 you can get involved actually get involved in BTC mining and it isnt the cloud mining scams of past. GoMining's partners include Binance, Bitmain, and the Bitcoin Mining Council in the effort to allow all to participate! Want to join in on the fun?!?!   

   Here you go

 

Fold App

If you are interested in getting a debit OR soon to be released credit card that pays you back in BTC Fold is the place to go! If you sign up with my referral link here once you make your first purchase with the card you get $10 worth of sats as a bonus!    

 

Stacker News

Earn Sats on your posts on Stacker News with my referral link here

 

Robinhood

Robinhood is offering an excellent signup deal if you use my link here where we will both be awarded free stock. All that you have to do is sign up and connect your bank account for the award!

Resources

  1. https://brave.com/blog/indirect-prompt-injection/
News Brave Browser AI security

How do you rate this article?

7
Cje95
Cje95

Graduated from Texas A&M in May of 2020 had dabbled in crypto since 2017 but dove in at the end of 2019. December of 2020 packed up and moved to D.C.! Huge sports fan, space nerd, and international newsreader! Follow me on Twitter @Cje95_

Just My 2 Cents
Just My 2 Cents

My personal opinions about things transpiring in the world

Send a $0.01 microtip in crypto to the author, and earn yourself as you read!

20% to author / 80% to me.
We pay the tips from our rewards pool.
Institutions already control 1 in 6 of the world's bitcoins Institutions already control 1 in 6 of the world's bitcoins
Kim03

Kim03

10 hours ago
2 minute read

Publish0x Companion App Just Out on Google Play! Publish0x Companion App Just Out on Google Play!
Publish0x PRs

Publish0x PRs

16 hours ago
1 minute read

FanForce Spotlights: Video Rebirth & Premium Commercials FanForce Spotlights: Video Rebirth & Premium Commercials
PVM

PVM

22 hours ago
2 minute read