Cybersecurity firm LayerX has identified a critical vulnerability in OpenAI’s ChatGPT Atlas browser that allows malicious actors to inject harmful instructions into ChatGPT’s memory and execute remote code.
This security flaw poses significant risks to users across all browsers but presents particularly severe dangers for those using the new ChatGPT Atlas browser.
Cross-Site Request Forgery Exploits ChatGPT Access
The vulnerability leverages a Cross-Site Request Forgery (CSRF) attack to compromise ChatGPT users. Attackers can piggyback on victims’ ChatGPT authentication credentials to inject malicious instructions into the AI assistant’s memory feature.
https://gbhackers.com/openai-atlas-brow ... erability/