Our latest news & blog posts

We are facing an AI Safety Crisis. Traditional techniques, post-training and AI firewalls can't stop AI from causing harm. Realm monitors the AI's internal "mind palace" to catch harmful thoughts before they become words. We built "Sherlock"—a challenge to break our mind-reading defense. Can you outsmart it?

We discovered that Perplexity’s Comet Browser executes flagged prompt injections with live user data. Attackers can exfiltrate emails, calendar events, saved passwords, and other sensitive data across all open tabs—without authentication. Comet evaluates suspicious prompts in full user context rather than isolating them, turning safety checks into an exfiltration channel.

AI agents operating inside agentic browsers have full visibility across tabs, origins, and even windows. They retain long-term context, maintain memory, and make decisions based on everything they’ve seen, even if that spans multiple unrelated domains. What was once a loosely connected browsing session now becomes a unified data space under the agent’s control.

Lack of trust in agents has the potential to slow down adoption of this technology and is a serious concern for the agent ecosystem.If we wish to ensure that consumers and enterprises benefit from AI Agents, the security community must step up.

A recent survey shows 45% of organizations using AI chatbots have experienced leaks, and 80% cite security and privacy concerns as the biggest barrier to wider adoption.