A UW team studied seven popular agentic AI browsers and found that four create ways for malicious actors to bypass a fundamental cybersecurity protocol called the “same-origin policy,” which makes websites open in a browser unable to interact with each other’s information. Researchers ran a successful proof-of-concept cyberattack on one browser.
