Agent Data Injection: An arbitrary click attack against web agents
A single planted product review can make web agents like Claude for Chrome click attacker-chosen buttons. We show an XSS-like attack against web agents.
News, research notes, and writeups from the CompSec Lab at Seoul National University.
A single planted product review can make web agents like Claude for Chrome click attacker-chosen buttons. We show an XSS-like attack against web agents.
We introduce DualView, a system for protecting personal AI agents like OpenClaw from immediate and stored indirect prompt injection attacks.
A race-condition use-after-free in the Linux kernel epoll subsystem that gains root on Linux, and that Anthropic's Mythos missed. More details at badepoll.com.
Kicking off the CompSec Lab blog with news, research notes, and writeups.