OpenAI Rolls Out Web Agent, Raises Privacy Warnings

This update enables the assistant to perform tasks such as signing in to accounts, reading emails, making bookings, uploading files, and even connecting with services like Gmail, Google Drive, and GitHub.

However, OpenAI stated in a July 25 blog post that using the agent might put personal data at risk, particularly due to "prompt injection". This type of attack happens when someone adds hidden instructions to content that the chatbot might read, like a blog post, website text, or an email.

Did you know?

Want to get smarter & wealthier with crypto?

Subscribe - We publish new crypto explainer videos every week!

What Are Oracles in Crypto? (Beginner Friendly Animation)

SUBSCRIBE

ON YOUTUBE

If the chatbot follows those instructions, it could take actions the user never intended, such as sharing private information or changing account settings.

In a blog post, OpenAI explained that once the agent is allowed to access connected websites, it may also be able to view sensitive information, such as emails, files, or login data.

The post also noted that attackers could try to trick the assistant by hiding commands in everyday text. If that works, the assistant might send data to an unauthorized user or perform actions without the user’s knowledge.

OpenAI first announced the agent on July 17. At the time, the full launch was planned for a few days later, but it ended up being released on July 24, along with an update to the ChatGPT app.

Recently, xAI, Elon Musk's artificial intelligence (AI) company, fixed the problems with Grok 4’s offensive responses. What did the company say? Read the full story.