// ChatgptMEDIUM
ChatGPhish, a browser-based prompt injection vulnerability in ChatGPT's web summarization feature, allows unauthenticated attackers to inject malicious content into AI-generated summaries. By appending instructions to publicly accessible web pages, attackers can render phishing links, spoofed security alerts, QR codes, and passive tracking beacons inside the trusted ChatGPT interface with no origin labeling, leveraging user trust in the assistant UI.
- ChatGPhish Vulnerability Turns ChatGPT Web Summaries Into a Phis(opens in a new tab)
- New ChatGPT Vulnerability Lets Attackers Turn Web Pages Into Phi(opens in a new tab)
- New ChatGPT Vulnerability Lets Attackers Turn Web Pages Into Phi(opens in a new tab)
// Get alerts for Chatgpt