Skip to main content

4 posts tagged with "News"

Lab news and announcements.

View All Tags

Agent Data Injection: An arbitrary click attack against web agents

· One min read
Woohyuk Choi
PhD Student, CompSec Lab @ SNU

By planting a single fake product review on a shopping page, we made three web agents, Claude for Chrome (Anthropic), Antigravity (Google), and Nanobrowser, click buttons their users never intended. On Claude for Chrome, a request as harmless as "summarize the reviews on this page" ended with a one-click order placed for a product the user never asked for, and it still works on the latest models, including Claude Opus 4.8.

DualView: Defending personal AI agents like OpenClaw against indirect prompt injection

· One min read
Juhee Kim
Postdoctoral Researcher, CompSec Lab @ SNU

We introduce DualView, a system for defending personal AI agents like OpenClaw against indirect prompt injection attacks. DualView protects agents that read files, run commands, browse the web, and write back into the user's environment, where attacker-controlled text can otherwise persist and be re-read later.

Welcome to the CompSec Blog

· One min read
Woohyuk Choi
PhD Student, CompSec Lab @ SNU

We are starting a blog for the CompSec Lab at Seoul National University.

Expect lab news, paper writeups, and notes on the systems and AI security work we are doing.