SecurityWeek

SquareX and Perplexity Quarrel Over Alleged Comet Browser Vulnerability

Browser security firm SquareX claims to have found a potentially critical vulnerability in Perplexity’s Comet AI browser.

SquareX warns hidden API in Perplexity’s Comet browser enables full device takeover

New research out today from browser security company SquareX Ltd. is warning of a hidden application programming interface in ...

Perplexity's Comet AI browser may have some concerning security flaws which could let hacker hijack your device

Cybersecurity experts at SquareX claims to have found a major vulnerability in Comet, the AI browser built by Perplexity, ...

Obscure MCP API in Comet Browser Breaches User Trust, Enabling Full Device Control via AI Browsers

Palo Alto, California, November 19th, 2025, CyberNewsWireSquareX released critical research exposing a hidden API in Comet ...
CSO Online

Hidden API in Comet AI browser raises security red flags for enterprises

The undocumented system-level API within the Comet AI browser enables embedded extensions to execute commands and launch applications.
The Hacker News

Sneaky 2FA Phishing Kit Adds BitB Pop-ups Designed to Mimic the Browser Address Bar

Sneaky 2FA adds BitB phishing and attackers exploit passkey flaws using rogue extensions and downgrade attacks.