TrendKia
AllLiveNational
World
All World
PakistanChinaAmericaEuropeAsiaMiddle EastLatin America
Politics
Uttar Pradesh
Uttar Pradesh
Uttar PradeshBiharMadhya PradeshRajasthanDelhiMaharashtraGujaratPunjabHaryanaWest BengalTamil NaduKeralaKarnatakaTelanganaAndhra PradeshJharkhandChhattisgarhOdishaAssamUttarakhandHimachal PradeshJammu & KashmirGoaChandigarhPuducherry
Travel
Travel
Business
MarketMoneyAutoBenefitsSuccess StoriesCryptoAI
Sports
CricketTennisFootball
EntertainmentMovies, TV & celebrities
BollywoodOTTBhojpuriMovie ReviewsTVHollywood
TechnologyGadgets, apps & innovation
AccessoriesLaunch & ReviewDIY
HealthHealth, fitness & wellness
LifestyleFashion, relationships & lifestyle
Fashion & BeautyCultureRelationshipsTrendsParenting
FoodRecipes, food & restaurants
ReligionFaith, belief & spirituality
FestivalsVastuSpirituality
Astrology
AriesTaurusGeminiCancerLeoVirgoLibraScorpioSagittariusCapricornAquariusPisces
TravelDestinations & travel guides
Travel Tips
EducationJobs, exams & results
VacanciesAdmissionExamResultsCareer
Live
National
World
Pakistan China America Europe Asia Middle East Latin America
Politics
Business
Market Money Auto Benefits Success Stories Crypto AI
Sports
Cricket Tennis Football
Entertainment
Bollywood OTT Bhojpuri Movie Reviews TV Hollywood
Technology
Accessories Launch & Review DIY
Health
Lifestyle
Fashion & Beauty Culture Relationships Trends Parenting
Food
Religion
Festivals Vastu Spirituality
Astrology
Aries Taurus Gemini Cancer Leo Virgo Libra Scorpio Sagittarius Capricorn Aquarius Pisces
Travel
Travel Tips
Education
Vacancies Admission Exam Results Career
Uttar Pradesh Bihar Madhya Pradesh Rajasthan Delhi Maharashtra Gujarat Punjab Haryana West Bengal Tamil Nadu Kerala Karnataka Telangana Andhra Pradesh Jharkhand Chhattisgarh Odisha Assam Uttarakhand Himachal Pradesh Jammu & Kashmir Goa Chandigarh Puducherry
About Contact Privacy Cookies Terms Advertise
TrendKia logo Hindi • English News Platform

TrendKia

Fast • Fresh • Always Trending

TrendKia is a free bilingual Hindi–English news platform — trending stories from India and around the world. Sign in with Google to comment and follow topics.

About Us
TrendKia news app preview
TrendKia
AboutContactPrivacyCookiesTermsAdvertise
How to Use AI Browsers Safely: The Ultimate Guide to Protecting Your Personal Data from Modern HacksGuides
2 hours ago· 3

How to Use AI Browsers Safely: The Ultimate Guide to Protecting Your Personal Data from Modern Hacks

AI-driven browsers expose users to severe security vulnerabilities like prompt injection; here is how to lock down settings in Atlas, Comet, and Dia to keep your data secure.

Ravikash GuptaRavikash GuptaSenior Correspondent 7 min read For AI
Share

A paradigm shift is occurring in how we interact with the web, driven by the emergence of AI-powered browsers. Platforms like Perplexity Comet, ChatGPT Atlas, and the new Arc-developed Dia browser are moving beyond traditional page rendering. They can conduct deep research, manage complex multi-step workflows, and even navigate through e-commerce checkout funnels autonomously. However, this level of automation introduces unprecedented security vulnerabilities that most users are unprepared for. If you plan to incorporate AI browsers into your daily workflow, understanding these vectors and configuring your browser settings is critical to protecting your identity and sensitive credentials.

The Architecture of Vulnerability in AI Browsers

Traditional web browsers act strictly on user request. When you click a hyperlink or enter an address, the browser displays the target page, leaving actions and interactions entirely to you. AI browsers like Atlas or Comet, however, parse the document structure, summarize content, and interact with web elements in agent mode. While highly convenient, this active posture means that malicious third parties can compromise your accounts and steal data simply by manipulating how the browser interprets a web page.

Also read
Opening, Managing and Closing Trades on MT4: A Full Walkthrough
Comprehensive Guide to Form DRC-01B and Rule 88C for Taxpayers Facing GST Liability Mismatches

The primary threat vector is prompt injection. This occurs when attackers embed malicious instructions within a website's HTML source code or a browser extension. Official OpenAI documentation explicitly warns against utilizing ChatGPT Atlas with sensitive corporate data due to prompt injection risks. This type of attack is particularly dangerous because it requires zero user action. Simply navigating to an infected web page is enough; the browser reads the invisible directives hidden in the code and executes them without prompt verification or user consent.

Real-World Exploits: CometJacking and Atlas Flaws

Security researchers have demonstrated how easily these systems can be exploited. In a process termed CometJacking, researchers manipulated Perplexity Comet by prompting it to summarize a Reddit thread that contained hidden instructions. The browser went into the user's active inbox, grabbed a one-time password (OTP), and forwarded it to an external server without triggering any visible warnings.

Similarly, ChatGPT Atlas is susceptible to input manipulation. Researcher Johann Rehberger successfully changed the browser UI from light to dark mode by directing it to read a Word document embedded with hidden layout commands. Furthermore, security firm LayerX notes that Atlas is vulnerable to cross-site request forgery (CSRF), which allows a rogue web page to send commands directly to your browser session. Since AI browsers lack the robust, established blocklists that traditional browsers use to screen phishing sites, LayerX estimates that Atlas users are 90% more vulnerable to credential-harvesting scams than Chrome or Edge users. Even retail giants are reacting to these risks; Amazon successfully secured a court injunction blocking Comet from automating checkouts on its domain, citing concerns over bypassed financial security measures.

Step 1: Terminate Automatic Model Training

By default, most AI browsers send your browsing habits and history to their developers to train subsequent generations of their machine learning models. This means your personal data is continuously harvested unless you explicitly opt out. Fortunately, major platforms allow you to disable this feature, particularly on paid tiers. This should be your first configuration step.

  • ChatGPT Atlas: Open Settings, click on Data Controls, and disable the toggle for Improve model for everyone. You can also individually opt out of sharing chat history and audio files for training purposes in this menu.
  • Perplexity Comet: Navigate to the New Tab Page, select Account, and open Preferences. From there, switch off the toggle for AI data retention.
  • Dia: Access your browser's primary Settings, navigate to Privacy, and turn off the setting labeled Share content data to improve Dia.

Step 2: Restrict Access to Logged-In Web Sessions

Because AI browsers can read active cookies, they can execute commands within your logged-in accounts, such as drafting emails, downloading sensitive documents, or sending unauthorized messages. You must limit the agent's ability to act on your pre-existing login states.

  • ChatGPT Atlas: When launching a new session, select Agent mode from the + menu. Right next to this menu, use the dropdown to switch from Logged in to Logged out. This restricts the agent from using your active session cookies, forcing it to ask you for manual credentials when access to an account is required.
  • Perplexity Comet: Comet lacks a direct global switch to disable session cookie access. While it cannot access passwords saved in your operating system's vault, it can still use active browser sessions to harvest data. To mitigate this risk, always use Incognito mode when logging into any web services through Comet so your sessions expire immediately upon closing the app.
  • Dia: Dia is similarly vulnerable to CSRF and prompt hijacking across active sessions. It does not offer a dedicated logged-out state, meaning the agent reads active sessions by default. Keep your logins limited to incognito sessions, or clear your local cookies regularly by navigating to dia://settings/, choosing Privacy and security, and selecting Delete browsing data.

Step 3: Defeat Memory Poisoning

While standard prompt injections run once, memory poisoning is a persistent attack. In this scenario, hackers inject malicious commands directly into your AI's account-specific memory. This malicious payload then runs during every subsequent session across all your synced devices. For instance, a poisoned memory could quietly forward your daily emails to a third party indefinitely. This cross-device threat is heightened on multi-platform browsers like Comet and Dia.

  • ChatGPT Atlas: Navigate to Settings > Personalization and switch off Reference browser memories. While Atlas has native filters to block the recording of highly sensitive items like social security numbers, credit cards, and government IDs, disabling browser memory entirely is the safest approach. If you prefer to keep the feature active, routinely audit what has been saved by going to Settings > Personalization > View browser memories to delete suspicious items.
  • Perplexity Comet: Flush your history and cache by visiting comet://settings/ > Privacy and security > Delete browsing data. To manage saved profile memory, go to New Tab Page > Account > Preferences > Memory. Turn off the toggles for Use search history and Notes, and use Manage memories to delete stored attributes.
  • Dia: Click the Personalization setting on a new tab page. Disable Personalize new chats to prevent the browser from drawing on past conversation threads. To wipe out existing profile memories, navigate to Settings > Memory and click Reset Memory or Disable Memory.

Step 4: Block AI Agents on Sensitive Domains

To fully protect high-value assets like bank accounts, investments, and health portals, you should block AI agents from viewing or acting on these specific domains. While Atlas has built-in limits against executing local code, other browsers are more permissive, making domain-level restriction essential.

  • ChatGPT Atlas: Go to Settings > Personalization and select ChatGPT page visibility. Here, you can compile a blocklist of URLs. The agent will be unable to scan or interact with these pages, though you will still be able to navigate them manually.
  • Perplexity Comet: Open Settings > Privacy and security. Under the Comet Assistant settings, use the option Block personal search for these websites to prevent the agent from accessing financial or healthcare domains.
  • Dia: Configure domain settings under dia://settings/ > Privacy and security > Site settings. Keep in mind that this controls individual site permissions but does not completely hide active page content from the agent; avoiding standard logins on these pages outside of incognito mode remains your best line of defense.

Essential Security Habits for the AI Browser Era

Technical settings must be paired with smart browsing habits to ensure complete protection. Implement these practices to minimize your exposure

  • Use a traditional, secure browser like Google Chrome or Mozilla Firefox for your primary web traffic. Dedicate AI browsers to a separate user profile with no active web logins, using them only for isolated research tasks.
  • Never download AI browsers, utilities, or browser extensions from untrusted third-party hubs. Only obtain installation packages from official development portals to avoid malware.
  • Avoid using AI browsers on platforms that host user-generated content, such as Reddit, which are primary targets for prompt injection attacks. If you must use them on these sites, restrict agent permissions beforehand.
  • Be cautious when copying and pasting long passages of text or complex URLs. Attackers frequently conceal prompt injection strings in lengthy URLs to target features like the Atlas Omnibox.
  • When executing multi-step agent actions, monitor the browser's progress step-by-step. Use the manual pause or stop commands immediately if the browser initiates unexpected navigations or requests.
  • Implement two-factor authentication (2FA) across all your digital services. Even if an AI agent is manipulated into attempting an unauthorized login or transaction, the secondary authentication step will keep your account secure.

What this means for you

Impact on Users:

  • Users of AI-powered browsers must immediately audit and tighten their privacy and data retention settings to protect active login cookies from hijacking.
  • Failing to disable model training and persistent memory features leaves personal databases and sensitive financial sessions exposed to invisible prompt injection attacks.

Questions & Answers

What is prompt injection and how does it target AI browsers?
Prompt injection is an attack where malicious instructions are hidden inside a website's HTML source code. When an AI browser scans the page, it reads and executes those invisible commands automatically without the user's consent.
What is CometJacking?
CometJacking is a specific exploit demonstrated on the Perplexity Comet browser where prompt injection allows attackers to extract sensitive data, like one-time passwords from the user's inbox, and send it to an external server.
Are AI browsers safe to use for banking or shopping?
No, they carry significant risks due to active session access and automated workflows. It is highly recommended to block AI agents from sensitive domains and use traditional secure browsers for financial tasks.
How can I stop AI browsers from using my data to train their models?
You must manually opt out in settings. For ChatGPT Atlas, go to Settings > Data Controls and disable model training. For Perplexity Comet, turn off AI data retention in Preferences.
Ravikash Gupta
About the authorRavikash GuptaSenior Correspondent Lucknow
ExpertiseIndia News, Global Business, Financial Markets, Cryptocurrency, Blockchain, Stock Market Analysis, Corporate News, Startups, Economic Trends, Digital Assets, Investment Insights

Ravikash Gupta is a Senior Correspondent and Editor covering India news, global business, financial markets, and cryptocurrency. He reports on economic trends, crypto developments, and major market-moving events worldwide.

Ravikash Gupta is a Senior Correspondent and Editor specializing in India-focused reporting and global coverage of business, financial markets, and cryptocurrency. He covers breaking news, economic developments, corporate affairs, stock markets, blockchain innovation, and digital asset trends shaping the modern financial ecosystem. With a strong focus on clarity, analysis, and timely reporting, Ravikash delivers insights into global economic shifts, emerging technologies, startup ecosystems, and the evolving crypto landscape. His work connects macroeconomic trends with real-world market impact, helping readers understand both traditional finance and the rapidly changing world of digital assets.

View full profile ↗
#Guides#AIBrowsers#Cybersecurity#ChatGPTAtlas#PerplexityComet#PromptInjection#DataPrivacy#CometJacking

Comments 0

Sign in to join the conversation.

Sign in

No comments yet — be the first.

Wall Street's Big Bet on AMZN: Where Could Amazon Stock Land Between 2026 and 2028?Market1
Wall Street's Big Bet on AMZN: Where Could Amazon Stock Land Between 2026 and 2028?
Three Indian Sailors Killed in Gulf of Oman Strike: Shashi Tharoor Tears Into US Over 'Insensitive' Statement, Presses Jaishankar TooPolitics2
Three Indian Sailors Killed in Gulf of Oman Strike: Shashi Tharoor Tears Into US Over 'Insensitive' Statement, Presses Jaishankar Too
FCC's 'Know Your Customer' Plan Could End Anonymous Phones — Plus the Week's Biggest Breaches and BustsSecurity3
FCC's 'Know Your Customer' Plan Could End Anonymous Phones — Plus the Week's Biggest Breaches and Busts

Latest news straight to your inbox

The day's big stories, in one email.

TrendKia बाज़ारAdvertisementमानसून सेल — हर चीज़ पर 50% तक छूटTrendKia बाज़ारअभी खरीदें →
Citizen journalism

Become a TrendKia journalist

Voice of the people

Share news, photos and videos from your area with TrendKia and let your voice reach the nation. Every citizen a journalist.

Join now
CH 01 LIVE
TrendKia TV ON AIR

Related stories

Tired of YouTube Ads? Here Are 10 Free Ways to Watch Without ThemGuides 2
Tired of YouTube Ads? Here Are 10 Free Ways to Watch Without Them
33 min ago
How to Actually Regulate Your Nervous System: Science vs. Social Media TrendsGuides 2
How to Actually Regulate Your Nervous System: Science vs. Social Media Trends
22 hours ago
10 Hidden Preview Hacks Every Apple User Should KnowGuides 3
10 Hidden Preview Hacks Every Apple User Should Know
23 hours ago
Crop Protection and Sustainable Farming: A Long-Term Trade Idea Driven by Food SecurityGuides 2
Crop Protection and Sustainable Farming: A Long-Term Trade Idea Driven by Food Security
1 day ago
How to Acclimate to Exercising in the Heat: 3 Proven StrategiesGuides 2
How to Acclimate to Exercising in the Heat: 3 Proven Strategies
2 days ago
How to Use Ayushman Sarathi on WhatsApp for PM-JAY Card: Application and eKYC GuideGuides 2
How to Use Ayushman Sarathi on WhatsApp for PM-JAY Card: Application and eKYC Guide
2 days ago
Voter List Verification Begins in Karnataka After Two Decades: Step-by-Step Guide to Online Form SubmissionGuides 2
Voter List Verification Begins in Karnataka After Two Decades: Step-by-Step Guide to Online Form Submission
2 days ago
Unlock Your Suunto Run Capabilities with These 5 Essential Configuration HacksGuides 2
Unlock Your Suunto Run Capabilities with These 5 Essential Configuration Hacks
3 days ago