Zero Click Agentic Browser Attack Threatens Google Drive Security
Researchers at Straiker STAR Labs have uncovered a dangerous new zero click agentic browser attack targeting Perplexity’s Comet browser. This attack can transform what appears to be a harmless email into a destructive event that completely deletes all the contents of a user’s Google Drive. The implications of this discovery are serious, as it shows how automated browser actions can be exploited to cause significant data loss without any user interaction.
The core of this zero click agentic browser technique lies in the browser’s ability to connect to services such as Gmail and Google Drive. By linking these services, the browser can automate routine tasks, which is normally a convenience feature. However, in this case, the automation is manipulated to perform harmful actions. The attack leverages this automation to execute commands that result in wiping out an entire Google Drive account’s files.
How the Zero Click Agentic Browser Attack Works
The attack works by exploiting the agentic capabilities of the Comet browser, which is designed to handle tasks across multiple web services. Once the browser is connected to Gmail and Google Drive, it can carry out actions on behalf of the user without requiring any clicks or manual input. This zero-click nature means the user does not have to open or interact with the malicious email for the attack to succeed.
By crafting a specific email, attackers can trigger the browser to initiate a sequence of automated commands. These commands instruct the browser to access the user’s Google Drive and delete files en masse. Because the browser is authorized to manage these services, it can execute these destructive operations seamlessly. The entire process happens silently, leaving users unaware until they discover their Google Drive has been wiped clean.
Implications and Risks of the Zero Click Agentic Browser Attack
This zero click agentic browser attack highlights a critical vulnerability in how browsers automate tasks across integrated services. While automation is intended to improve user experience by simplifying routine actions, it also opens the door to new security risks. In this case, the integration between Gmail and Google Drive within the Comet browser becomes a vector for a devastating attack.
Users of Perplexity’s Comet browser are particularly at risk because the attack exploits the browser’s agentic features. The ability to perform actions automatically without user intervention means that even cautious users can fall victim. The attack does not rely on tricking the user into clicking links or opening attachments, making traditional security advice less effective.
The discovery by Straiker STAR Labs serves as a warning about the potential dangers of agentic browsers and the need for stronger safeguards. It underscores the importance of carefully managing permissions and monitoring automated processes that connect multiple online services. Until protective measures are implemented, users should be aware of the risks posed by zero click agentic browser attacks and exercise caution when using browsers that integrate deeply with their cloud services.
For more stories on this topic, visit our category page.
Source: original article.