{“lastseen”:”2025-12-30T12:05:12″,”description”:”_This blog is part of a series where we highlight new or fast-evolving threats in the consumer security landscape. This one looks at how the rapid rise ofArtificial Intelligence (AI) is putting users at risk._\\n\\nIn 2025 we saw an ever-accelerating race between AI providers to push out new features. We also saw manufacturers bolt AI onto products simply because it sounded exciting. In many cases, it really shouldn\u2019t have.\\n\\n## Agentic browsers\\n\\nAgentic or AI browsers that can act autonomously to execute tasks introduced a new set of vulnerabilities\u2014especially to prompt injection attacks. With great AI power comes great responsibility, and risk. If you\u2019re thinking about using an AI browser, it\u2019s worth slowing down and considering the security and privacy implications first. Even experienced AI providers like OpenAI (the makers of ChatGPT) were unable to keep their agentic browser Atlas secure. By pasting a specially crafted link into the Omnibox, attackers were able to trick Atlas into treating a URL input as a trusted command.\\n\\n## Mimicry\\n\\nThe popularity of AI chatbots created the perfect opportunity for scammers to distribute malicious apps. Even if the AI engine itself worked perfectly, attackers have another way in: fake interfaces. According to BleepingComputer, scammers are already creating spoofed AI sidebars that look identical to real ones from browsers like OpenAI\u2019s Atlas and Perplexity\u2019s Comet. These fake sidebars mimic the real interface, making them almost impossible to spot.\\n\\n## Misconfiguration\\n\\nAnd then there\u2019s this special category of using AI in products because it sounds cooler with AI or you can ask for more money from buyers.\\n\\n### Toys\\n\\nWe saw a plush teddy bear promising \u201cwarmth, fun, and a little extra curiosity\u201d that was taken off the market after researcher found its built-in AI responding with sexual content and advice about weapons. Conversations escalated from innocent to sexual within minutes. The bear didn\u2019t just respond to explicit prompts, which would have been more or less understandable. Researchers said it introduced graphic sexual concepts on its own, including BDSM-related topics, explained \u201cknots for beginners,\u201d and referenced roleplay scenarios involving children and adults.\\n\\n### Misinterpretation\\n\\nSometimes we rely on AI systems too much and forget that they hallucinate. As in the case where a school\u2019s AI system mistook a boy\u2019s empty Doritos bag for a gun and triggered a full-blown police response. Multiple police cars arrived with officers drawing their weapons, all because of a false alarm.\\n\\n### Data breaches\\n\\nAlongside all this comes a surge in privacy concerns. Some issues stem from the data used to train AI models; others come from mishandled chat logs. Two AI companion apps recently exposed private conversations because users weren’t clearly warned that certain settings would result in their conversations becoming searchable or result in targeted advertising.\\n\\n## So, what should we do?\\n\\nWe\u2019ve said it before and we\u2019ll probably say it again: We keep pushing the limits of what AI can do faster than we can make it safe. As long as we keep chasing the newest features, companies will keep releasing new integrations, whether they\u2019re safe or not.\\n\\nAs consumers, the best thing we can do is stay informed about new developments and the risks that come with them. Ask yourself: Do I really need this? What am I trusting AI with? What\u2019s the potential downside? Sometimes it\u2019s worth doing things the slower, safer way.\\n\\n* * *\\n\\n**We don ‘t just report on privacy\u2014we offer you the option to use it.**\\n\\nPrivacy risks should never spread beyond a headline. Keep your online privacy yours by using Malwarebytes Privacy VPN.”,”published”:”2025-12-30T10:02:11″,”modified”:”2025-12-30T10:02:11″,”type”:”malwarebytes”,”title”:”2025 exposed the risks we ignored while rushing AI”,”source”:””,”references”:””,”id”:”MALWAREBYTES:7B7A9F9DB5D84922D421B1156E228A1F”,”bulletinFamily”:”blog”,”cwe”:null,”cvelist”:[],”sourceData”:””,”sourceHref”:””,”cvss”:{“score”:0,”severity”:”NONE”,”vector”:”NONE”,”version”:”NONE”},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/www.malwarebytes.com\/blog\/news\/2025\/12\/2025-exposed-risks-we-ignored-while-rushing-ai”,”category_name”:”News”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:”2025-12-30T12:05:12″,”description”:”_This blog is part of a series where we highlight new or fast-evolving threats in the consumer security landscape. This one looks at how the…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[6,8,12,115,13,33,7,11,5],"class_list":["post-33263","post","type-post","status-publish","format-standard","hentry","category-category_news","tag-cve","tag-cvss","tag-exploit","tag-malwarebytes","tag-news","tag-none","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n