Security researchers at Cato Networks have uncovered a new indirect prompt injection technique that can force popular AI browsers and assistants to deliver phishing links or disinformation (e.g., incorrect medicine dosage guidance or investment advice), send sensitive data to the attacker, or push users to perform risky actions. They call the technique HashJack, because it relies on malicious instructions being hidden in the #fragment of a URL that points to a legitimate (and otherwise innocuous) … More →
The post New “HashJack” attack can hijack AI browsers and assistants appeared first on Help Net Security.
NCSC called in as London councils grapple with cyber attacks
In what looks likely to be a supply chain attack, councils are warning residents of service disruption
