AI browsers may be the best thing that ever happened to scammers

We have heard rather a lot this 12 months about AI enabling new scams, from superstar deepfakes on Fb to hackers impersonating authorities officers. Nevertheless, a brand new report means that AI additionally poses a fraud threat from the opposite course — simply falling for scams that human customers are more likely to catch.The report, titled “Scamlexity,” comes from a cybersecurity startup known as Guardio, which produces a browser extension designed to catch scams in actual time. Its findings are involved with so-called “agentic AI” browsers like Opera Neon, which browse the web for you and are available again with outcomes. Agentic AI claims to have the ability to work on advanced duties, like constructing an internet site or planning a visit, whereas customers relax.There’s an enormous drawback right here from a safety perspective: whereas people will not be at all times nice at sorting fraud from actuality, AI is even worse. A seemingly easy activity like summarizing your emails or shopping for you one thing on-line comes with myriad alternatives to slide up. Missing widespread sense, agentic AI could also be liable to bumbling into apparent traps.The researchers at Guardio examined this speculation utilizing Perplexity’s Comet AI browser, presently the one broadly accessible agentic browser. Utilizing a special AI, they spun up a pretend web site pretending to be Walmart, then navigated to it and informed Comet to purchase them an Apple Watch. Ignoring a number of clues that the location wasn’t legit, together with an clearly wonky brand and URL, Comet accomplished the acquisition, handing over monetary particulars within the course of.In one other take a look at, the research authors despatched themselves an e mail pretending to be from Wells Fargo, containing an actual phishing URL. Comet opened the hyperlink with out elevating any alarms and blithely dumped a financial institution username and password into the phishing web site. A 3rd take a look at proved Comet vulnerable to a immediate injection rip-off, through which a textual content field hid in a phishing web page ordered the AI to obtain a file.It is only one set of assessments, however the implications are sobering. Not solely are agentic AI browsers vulnerable to new forms of rip-off, they could even be uniquely weak to the oldest scams within the e-book. AI is constructed to do no matter its prompter needs, so if a human person does not discover the indicators of a rip-off the primary time they appear, the AI will not function a guardrail.This warning comes as each chief within the subject bets massive on agentic AI. Microsoft is including Copilot to Edge, OpenAI debuted its Operator instrument in January, and Google’s Challenge Mariner has been within the works since final 12 months. If builders do not begin constructing higher rip-off detection into their browsers, agentic AI dangers turning into an enormous blind spot at finest — and a brand new assault vector at worst.