AutoJack attack hijacks AI agents for code execution

The Hacker News

Microsoft researchers detail AutoJack, an exploit chain that turns an AI browsing agent into a remote code execution vector. By steering the agent to a malicious web page, the page's JavaScript can reach a privileged local service and spawn arbitrary code.

AgentsSecurityautojack

The Hacker News

3 hours ago