October 28, 2025 1 min read

New ChatGPT Atlas browser exploit allows hidden commands

A new cybersecurity vulnerability has been found in OpenAI's ChatGPT Atlas web browser, and it’s raising some serious alarms. Researchers say this exploit lets attackers inject harmful commands into the AI’s memory, which could lead to all sorts of trouble. Or Eshed, the CEO of LayerX Security, explained that hackers could use this flaw to plant malware, gain access to privileges, or even take control of your devices when you're just trying to use ChatGPT.

The issue stems from a cross-site request forgery (CSRF) flaw, which allows these malicious instructions to stick around across sessions and devices. So, if you're logged into ChatGPT, you might unknowingly become a target. This vulnerability is a reminder that while AI tech can be super helpful, it also comes with risks that you need to stay aware of. Keep an eye on updates from OpenAI, and be cautious about your online activities.

Share this article

Twitter LinkedIn Email

More insights from the team

Continue exploring adjacent research and threat briefings selected for their relevance to this topic.

View all articles

Nov 07, 2025 • 1 min

U.S. Congressional Budget Office faces suspected cyberattack

The U.S. Congressional Budget Office is in hot water after a suspected foreign cyberattack breached its network. The CBO recently confirmed the incident, raising concerns about the potential exposu...

Researchers uncover vulnerabilities in ChatGPT that expose data

Hey there! If you’re a fan of ChatGPT, you might want to pay attention. Researchers just uncovered a bunch of vulnerabilities in OpenAI's latest models, GPT-4o and GPT-5. These issues could let att...

Gootloader malware resurfaces with new tactics after seven months

Gootloader malware is back in the game after a seven-month hiatus, and it’s got some new tricks up its sleeve. This sneaky malware loader is once again using SEO poisoning to push fake websites tha...