OpenAI says AI browsers may always be vulnerable to prompt injection attacks - TechCrunch

Prompt injection attacks pose a fundamental and persistent security challenge for AI agents operating within browsers like OpenAI's ChatGPT Atlas, enabling malicious actors to manipulate AI behavior through hidden instructions. OpenAI concedes that this vulnerability significantly expands the security threat surface for agentic systems and may never be fully mitigated, necessitating continuous defensive innovation.